Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF79CD8904E11EF81EAAB95762E951A.roa
File: AEF79CD8904E11EF81EAAB95762E951A.roa (raw, json)
Hash identifier: EoB95CH5FOGgua/OmGZVphEIoIQVgUujRnM6Kca3Xa4=
Subject key identifier: 21:37:AF:B1:C7:5F:46:21:26:09:A8:67:15:2F:FC:0E:6D:78:64:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010077
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF79CD8904E11EF81EAAB95762E951A.roa
Signing time: Tue 22 Oct 2024 08:21:49 +0000
ROA not before: Tue 22 Oct 2024 08:21:45 +0000
ROA not after: Sun 24 Nov 2024 08:21:45 +0000
asID: 52263
IP address blocks: 154.194.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65655 (0x10077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:21:45 2024 GMT
Not After : Nov 24 08:21:45 2024 GMT
Subject: CN=6717609d-d68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a7:1f:7d:b5:a8:25:d9:37:f8:df:9b:07:b7:
2a:ac:04:a7:03:45:2a:f0:69:fd:cb:e0:1b:2b:58:
58:0f:92:81:d8:6f:ac:d7:86:dd:34:ef:bc:cd:c1:
2a:e1:48:9e:ed:d0:5e:8a:d2:28:02:e1:91:1b:26:
2f:a9:f9:d3:de:b6:2f:20:ad:0f:31:aa:04:ad:04:
fc:0d:0a:8f:08:fd:9c:48:c8:55:51:6f:19:90:96:
a4:81:c7:d1:21:af:c8:0f:3e:d1:a4:6f:d9:b7:ee:
cb:6c:9b:fa:9d:d1:c8:8e:f1:dd:59:fb:b1:bc:17:
d6:ba:34:d8:c3:e3:a2:e0:2f:74:d1:d8:e7:15:48:
c0:99:7a:bf:f9:2a:ab:6a:76:39:19:db:da:5e:2c:
7b:3a:be:e3:96:8c:74:7a:69:9f:51:c1:18:96:02:
3c:03:9d:51:35:dc:99:03:f9:b9:4a:69:f3:3d:87:
a3:12:91:d5:31:1f:67:8d:d4:17:65:45:0d:9a:10:
37:9d:7f:e0:ea:18:24:a4:76:2b:8e:8e:5a:e1:1e:
9d:b2:94:d6:53:f3:31:da:6c:44:73:bc:f4:f6:50:
67:b5:54:98:80:e2:24:29:53:49:49:11:ba:f2:f5:
a3:d3:1f:09:35:d9:b9:55:17:cb:a7:81:42:e7:71:
4a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:37:AF:B1:C7:5F:46:21:26:09:A8:67:15:2F:FC:0E:6D:78:64:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF79CD8904E11EF81EAAB95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.69.0/24
Signature Algorithm: sha256WithRSAEncryption
89:bb:fe:d0:86:e6:b3:f1:3f:78:3d:20:9a:1a:f3:8e:9b:b5:
b3:f5:a5:39:2b:7d:28:62:2c:9a:2e:8b:1b:b5:88:c2:46:7e:
97:54:03:d7:c6:ea:60:c1:9d:4d:87:9e:67:42:38:50:30:a4:
12:ea:d1:bc:a8:5a:61:e3:c3:fa:2e:90:8e:16:09:dc:1d:74:
3e:e7:41:27:3d:21:af:eb:fb:2f:7e:2b:04:a2:0a:92:1b:79:
be:a6:ed:7f:c3:50:ff:4f:eb:13:db:10:be:94:af:f4:97:01:
8e:08:82:cb:50:95:d1:12:02:df:a7:01:eb:74:b3:03:4e:40:
60:46:d2:ce:68:f7:39:0c:71:58:27:6e:29:53:a9:0b:bf:2d:
a7:dc:8d:ab:28:7d:24:20:ce:67:69:4b:c2:be:96:df:9e:e8:
97:a9:cf:20:57:03:f3:8f:55:0b:83:fa:ec:61:a6:57:fe:ba:
43:55:ba:1a:53:f1:37:c4:7c:06:12:05:e4:c6:45:cf:98:ed:
ea:56:0e:ec:0d:51:f4:3b:97:e3:3c:f2:89:3b:1f:cc:e9:0d:
c0:f4:6a:57:93:c9:5d:94:41:b7:09:04:fa:64:80:e6:f9:43:
fb:6a:08:d9:29:3e:69:02:49:af:85:db:d8:2f:bd:bf:78:66:
d2:31:c8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org