Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A83AAE1AA8EC11EFA6191B47762E951A.roa
File: A83AAE1AA8EC11EFA6191B47762E951A.roa (raw, json)
Hash identifier: 3c5H3ip8AIOzgP5myS1V899W2ToEWGYLcG0ARGXQaT4=
Subject key identifier: 63:40:2A:AD:72:A5:46:AF:34:28:40:24:7F:61:EE:1C:A7:97:8D:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01111F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A83AAE1AA8EC11EFA6191B47762E951A.roa
Signing time: Fri 22 Nov 2024 16:13:06 +0000
ROA not before: Fri 22 Nov 2024 16:13:02 +0000
ROA not after: Tue 03 Dec 2024 16:13:02 +0000
asID: 62240
IP address blocks: 154.195.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69919 (0x1111f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:13:02 2024 GMT
Not After : Dec 3 16:13:02 2024 GMT
Subject: CN=6740ad92-3fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:2e:f4:f5:74:3d:00:2e:39:21:18:72:02:ae:
63:6b:cd:d7:d5:68:33:54:d7:6f:46:89:a3:01:f1:
e4:b4:b6:6f:36:cb:c1:fd:f9:bb:4e:8c:d5:8b:5d:
27:ee:1b:b7:97:17:c4:21:38:2c:7d:b5:79:fb:d5:
65:fc:6b:7b:c6:62:6a:8e:5b:11:f0:f2:c3:37:d4:
0d:0d:b4:ec:93:80:dd:52:33:62:8d:f6:a6:32:d1:
6c:bc:b4:ac:84:80:19:4e:01:34:cf:32:e2:e4:ca:
5a:59:6e:e1:1d:9a:59:68:a5:4f:f4:45:58:98:ad:
a0:fc:6f:62:af:a6:73:3b:71:a4:8f:c3:42:12:8f:
1b:60:07:c5:29:57:2b:7a:a8:ac:2a:3d:63:5b:61:
8e:d0:04:ef:87:65:7c:6e:c8:2a:27:8d:89:55:e1:
79:69:93:a1:26:66:85:b2:70:fd:68:18:bb:20:b3:
8e:c4:7d:b9:d3:97:32:0e:a3:3f:5d:40:db:50:d9:
75:d4:a2:6d:c9:87:75:e2:8c:1c:59:8a:f7:f7:76:
9b:7f:32:73:b5:41:53:14:f2:ac:86:71:72:0e:f5:
41:21:49:c0:f2:58:58:b1:29:26:7b:10:a0:72:da:
16:a8:aa:9d:30:27:33:c1:2b:a7:f7:c8:f0:6f:92:
f1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:40:2A:AD:72:A5:46:AF:34:28:40:24:7F:61:EE:1C:A7:97:8D:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A83AAE1AA8EC11EFA6191B47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.138.0/24
Signature Algorithm: sha256WithRSAEncryption
02:43:0e:c5:72:cb:99:17:39:a2:aa:48:cb:f4:4b:f9:21:8a:
0b:f1:85:3f:64:f0:35:38:5f:43:7c:d2:5c:6a:61:1b:7f:cb:
56:d7:1f:d1:56:7e:ed:79:94:ff:6d:b9:d3:eb:12:d1:2e:6f:
0f:2c:8f:35:0a:2a:c7:ff:08:cb:5f:b2:63:81:e6:a1:a3:e7:
e9:07:48:45:a0:e9:92:35:d7:28:84:dd:14:1b:45:46:47:c2:
03:cd:e0:70:6a:e7:ef:c7:b5:4d:12:8a:95:df:55:28:8a:71:
c0:dc:8b:6d:e5:85:79:44:1b:35:47:50:0f:c2:d3:2b:48:3c:
ca:f9:0f:9a:a5:b9:3b:34:38:9e:27:86:13:c3:55:c3:63:88:
86:88:0b:07:25:14:81:d7:b5:77:cd:f3:51:e5:c2:18:e8:35:
28:bc:a1:ef:98:c6:b2:bd:09:01:13:4a:24:72:da:8f:d9:d3:
cc:1e:bf:fb:e6:5c:91:9f:45:88:75:ad:eb:da:79:5f:0d:05:
20:d1:c6:6b:1b:3f:88:6f:70:51:65:3a:b3:8e:c8:c2:e1:a1:
46:a0:fd:57:39:8a:bc:84:8d:8f:c5:e8:f6:51:9a:0c:19:8b:
03:1d:c0:64:84:d2:15:07:b4:16:df:e0:01:cc:b7:50:d0:1d:
c9:2e:42:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:27 2024 by rpki-client on console-ams.rpki-client.org