Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB898286725911EF9964A373762E951A.roa
File: AB898286725911EF9964A373762E951A.roa (raw, json)
Hash identifier: v5MtnAEw62o+LW6r+wWiYalSO/BuN6RXhwAjuAGftpI=
Subject key identifier: BC:58:D3:46:35:B0:00:17:C5:87:5A:E3:8A:BC:D1:6E:34:55:A0:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EDF0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB898286725911EF9964A373762E951A.roa
Signing time: Sat 14 Sep 2024 05:24:53 +0000
ROA not before: Sat 14 Sep 2024 05:24:49 +0000
ROA not after: Tue 31 Dec 2024 05:24:49 +0000
asID: 17561
IP address blocks: 154.217.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60912 (0xedf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 05:24:49 2024 GMT
Not After : Dec 31 05:24:49 2024 GMT
Subject: CN=66e51e25-0fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e1:ae:08:71:14:7d:89:0c:d3:b9:6d:83:87:
0f:a7:0b:4b:8d:1a:ec:f4:d2:3a:ed:18:6c:34:4b:
a8:ee:0e:d7:c1:bd:2b:ee:8e:62:51:56:0c:cb:1f:
4b:f5:9a:6f:43:a8:38:8b:68:55:31:52:7f:1c:48:
32:5f:bf:dc:31:8f:db:44:f0:1b:46:ca:81:d9:3f:
be:96:a1:e2:a4:ec:87:c0:31:1b:c3:1f:b3:db:30:
d7:ff:e5:cb:cd:56:6e:f8:3b:a5:0a:82:88:54:64:
07:dc:c0:46:49:0d:6c:87:d3:7a:b4:72:aa:ec:52:
9f:35:4e:74:5b:fe:04:7e:c9:a5:21:96:67:87:09:
e8:f2:0d:a3:c3:00:3b:66:0e:f2:42:b0:33:13:58:
60:39:d9:a9:1d:66:72:fe:29:e9:9f:a1:22:b0:74:
49:5b:05:a7:e8:cc:6a:c0:15:3a:c8:63:d9:25:b2:
e6:a5:7e:69:96:10:f1:b0:6e:aa:8d:dc:99:28:d5:
70:48:6c:05:79:02:16:ec:57:57:02:07:2a:83:f2:
50:c9:99:8e:00:b7:33:50:a6:a7:a1:64:f0:3e:1f:
ed:51:0d:bb:b0:a2:ad:b4:d1:e8:35:7f:b8:37:65:
f0:b4:3c:8c:8d:a4:57:cc:63:10:6e:27:43:64:41:
37:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:58:D3:46:35:B0:00:17:C5:87:5A:E3:8A:BC:D1:6E:34:55:A0:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB898286725911EF9964A373762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.92.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:86:6a:bb:fc:eb:bb:7e:a0:bc:ca:e6:25:33:0e:93:c8:f2:
8b:14:78:1a:aa:ba:06:a9:99:d0:b8:55:2e:83:b0:f4:76:8f:
e1:1d:58:39:57:10:5d:e9:bf:17:ae:9f:06:1d:04:af:0c:24:
8b:ec:1c:2e:c8:06:67:c2:09:e6:62:c9:12:f8:99:b8:9e:f2:
cc:68:22:cf:74:7d:83:44:9d:85:4b:cc:1c:e6:62:27:e3:9a:
40:19:17:29:da:c9:4e:66:d7:32:32:6a:aa:14:45:9f:06:92:
cb:aa:99:4f:ef:60:0e:a9:06:b3:01:34:02:16:2e:47:81:c3:
da:6c:c3:9d:b1:83:e3:f9:be:8e:af:8d:59:f1:48:7d:82:80:
1e:1e:c1:81:88:94:ee:42:79:41:4d:c9:7f:25:0d:0e:a8:23:
56:33:a1:c2:36:1c:0a:0c:6c:2c:75:02:91:15:cc:c2:65:74:
f0:cd:4a:ce:5a:a8:72:36:43:15:2a:17:2d:c5:7d:90:b3:d7:
e5:37:da:6b:ad:ec:2d:0c:e6:42:7d:23:3d:6e:8b:74:92:82:
53:66:50:ff:e9:c5:65:f3:5c:25:52:f9:94:a1:ca:80:af:16:
92:f0:e3:c6:ca:4e:51:c6:a4:ea:f3:2b:c8:96:fa:41:87:6b:
95:40:72:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org