Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA61C902986211EFA8209877762E951A.roa
File: AA61C902986211EFA8209877762E951A.roa (raw, json)
Hash identifier: uKTkRGvlzwOPhZ4X9r6QHY/3/p2inTQoI4OuaeAOqU4=
Subject key identifier: 00:A7:A7:88:AD:21:9D:1F:49:2B:E6:8F:9B:64:7D:7E:A0:88:28:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010505
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA61C902986211EFA8209877762E951A.roa
Signing time: Fri 01 Nov 2024 15:05:00 +0000
ROA not before: Fri 01 Nov 2024 15:04:57 +0000
ROA not after: Tue 03 Dec 2024 15:04:57 +0000
asID: 203020
IP address blocks: 154.207.224.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66821 (0x10505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 15:04:57 2024 GMT
Not After : Dec 3 15:04:57 2024 GMT
Subject: CN=6724ee1c-9525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5f:3f:1b:4a:d0:3a:79:25:39:89:47:de:2c:
08:e0:a9:0b:fc:d8:ef:52:79:7f:d5:98:17:e9:34:
47:54:58:33:a4:9c:cc:42:61:de:42:da:a7:b2:98:
3e:bf:39:0f:b8:37:cd:46:b4:18:f8:15:25:cf:a8:
2b:72:79:3d:2c:63:82:07:c9:95:49:da:b7:91:ca:
c6:23:27:7f:fe:c3:9b:53:0b:10:79:9a:6c:7e:21:
4a:da:df:a3:1b:13:cf:bb:6b:ce:fb:1c:7a:d7:f5:
41:54:f2:9d:c9:a5:7f:f1:b9:44:5b:40:31:b7:58:
6b:c9:24:76:30:86:72:b0:2a:ea:97:91:04:9d:19:
ed:db:1d:bc:2d:c3:95:3c:84:96:c6:8f:a3:81:3f:
a0:7f:38:35:cc:f6:9a:52:cb:fb:3c:1f:0b:6e:b3:
e4:49:a2:4f:d9:9c:c4:77:98:a6:f6:d9:66:06:3c:
a5:36:e8:2e:1b:84:d4:86:b6:7e:6d:ec:55:6a:d6:
3c:40:fe:9f:a5:a1:5f:15:8a:2b:8e:77:5f:f6:5a:
42:86:0c:5b:df:47:1c:a5:e5:d4:72:a1:64:9b:d7:
e7:72:e9:83:c6:76:c5:36:e5:39:e3:1e:85:a2:f5:
2b:c7:74:12:66:db:91:f9:f3:af:9e:33:70:32:0b:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A7:A7:88:AD:21:9D:1F:49:2B:E6:8F:9B:64:7D:7E:A0:88:28:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA61C902986211EFA8209877762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.224.0/23
Signature Algorithm: sha256WithRSAEncryption
18:6d:1d:85:75:39:24:02:41:a7:c5:43:ae:3c:0a:40:f1:87:
34:cc:69:11:e2:9d:ab:27:83:e7:0c:9a:96:8d:21:ef:a5:16:
4c:16:02:1e:79:bc:a2:de:ab:85:d8:ab:5c:4a:cf:df:e3:21:
59:e9:12:1b:0a:61:98:d1:50:5a:82:f6:e8:a8:68:aa:28:88:
51:60:6e:9c:93:75:e6:09:3c:19:26:5e:f9:92:8d:42:10:91:
40:f9:68:64:d6:a1:d7:2f:f5:58:15:9e:0d:ea:ae:d1:ec:0d:
0b:8b:36:ef:bd:e2:d4:29:b6:59:f7:e1:f1:c1:f9:58:63:83:
9d:1a:71:ad:49:4f:75:ed:54:60:d5:82:f0:1d:7e:93:61:b6:
00:86:24:22:65:41:9e:f7:e5:94:74:5a:b5:c9:3d:82:ad:a5:
8c:f6:e7:fa:0b:36:ae:26:e0:04:d9:6e:ef:ce:46:89:c6:cd:
93:b8:e0:86:06:aa:a2:bc:ae:df:49:3c:9b:ed:0f:b9:e4:4b:
3a:01:79:2b:b0:0e:55:52:eb:8f:6e:c2:ad:ca:71:c3:95:bf:
26:46:49:d9:93:df:64:76:17:48:41:fe:31:74:46:58:e4:d1:
da:84:3c:00:6c:0b:e7:7c:ae:48:a0:0e:46:3a:2b:4c:91:1f:
24:a7:88:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org