Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADDAD10AA4BF11EF82A6C68B762E951A.roa
File: ADDAD10AA4BF11EF82A6C68B762E951A.roa (raw, json)
Hash identifier: z+xNVx/BasGz/EscQz/ojt/m5v0M2ipndBlXxNcHjPk=
Subject key identifier: B4:6E:99:88:29:77:61:84:12:16:42:35:AE:0F:8B:B4:BA:32:0C:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E6A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADDAD10AA4BF11EF82A6C68B762E951A.roa
Signing time: Sun 17 Nov 2024 08:41:03 +0000
ROA not before: Sun 17 Nov 2024 08:41:00 +0000
ROA not after: Fri 20 Dec 2024 08:41:00 +0000
asID: 22724
IP address blocks: 154.89.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69226 (0x10e6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 08:41:00 2024 GMT
Not After : Dec 20 08:41:00 2024 GMT
Subject: CN=6739ac1f-0b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3e:10:04:70:86:0c:ba:b4:4b:1d:f5:65:ea:
92:f9:4b:37:22:6b:80:57:a6:29:4d:d7:b7:bc:37:
96:5b:cc:98:42:8b:c3:ed:aa:f6:79:99:64:a1:e9:
ed:25:cc:65:94:6d:1a:4a:ab:a0:f7:bd:f2:47:67:
c5:e1:f3:f2:79:f6:47:fe:ea:89:b2:62:0e:a0:78:
0c:39:40:19:2b:b5:df:12:af:a4:dd:f6:68:a6:b1:
29:40:27:a0:af:66:53:67:76:88:58:c1:8c:9f:72:
5c:2e:3d:7c:fd:ca:b4:5b:e6:53:12:4f:e2:b5:42:
59:2e:dd:64:e9:a7:d7:f1:74:0c:f1:ce:4e:92:dd:
77:69:92:c0:29:d6:b2:b0:1d:49:4a:d3:17:32:21:
3e:e8:68:f0:15:68:ef:52:e8:1a:b5:c3:a7:54:96:
25:9c:bb:c8:cf:18:de:2b:1a:71:fb:c1:a7:fc:bd:
cb:8b:77:7a:dc:91:81:a4:b5:6c:31:f4:c0:c3:28:
c3:5b:a1:1e:1e:e3:63:3f:36:aa:c0:ad:d8:63:e4:
f6:e9:23:d2:84:fa:c8:a0:9d:70:fc:e3:17:9d:44:
ef:47:58:95:7e:de:83:81:cc:f1:0a:29:80:28:32:
b6:00:6b:47:02:9c:13:f4:67:00:ce:cc:34:a5:21:
46:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6E:99:88:29:77:61:84:12:16:42:35:AE:0F:8B:B4:BA:32:0C:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADDAD10AA4BF11EF82A6C68B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ca:45:7d:13:83:12:00:dd:e3:69:57:5d:6c:54:1d:88:3a:33:
4c:88:bb:5c:8e:eb:a2:c4:6c:2a:b3:da:6e:08:4f:88:b5:7d:
3d:91:e8:6a:3d:0c:7e:57:f4:ce:92:8a:f2:35:3d:28:c6:e1:
89:a2:0d:54:aa:3e:d1:60:5b:12:31:b4:2e:0d:3d:fb:cb:72:
f1:1f:af:1a:15:0f:0c:16:50:bf:7c:5d:d2:1b:29:b6:fe:58:
26:34:7a:18:fe:84:2c:c3:71:df:42:53:0e:5a:cb:0b:ea:63:
ab:cc:1b:bc:10:02:d4:db:fb:06:19:1b:9f:c1:76:c5:df:12:
c0:19:fa:aa:2a:bd:e9:92:aa:8d:50:ff:f1:fc:e5:46:6a:df:
7e:66:3f:a5:3b:66:c9:d7:dc:c9:4f:22:dc:7d:58:e5:07:d0:
d3:ea:f0:0b:e3:34:a6:0b:e8:76:66:f0:24:40:5e:7e:13:83:
f2:48:33:b2:ca:5e:21:71:25:0f:08:ab:e2:a3:a2:63:ee:a3:
4b:0f:75:e7:b6:60:6b:cd:f3:fe:3d:e3:1c:c4:a0:9b:13:54:
90:3d:7b:d9:60:4f:cc:da:22:20:4c:f1:62:4b:30:83:fe:f0:
62:30:e7:4f:16:d6:d0:ba:b2:f4:ff:ab:d9:f8:e5:d0:2a:3c:
8a:c5:52:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:00 2024 by rpki-client on console-ams.rpki-client.org