Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF67C638A4BD11EF81A1F37D762E951A.roa
File: AF67C638A4BD11EF81A1F37D762E951A.roa (raw, json)
Hash identifier: zPTMbo2aAy0Mpw7ChIQ4Oc7vSsA70+QIkbbs3MyAekI=
Subject key identifier: 48:85:29:A1:5D:BE:BE:B0:61:D2:B7:7C:AD:C9:21:6B:9D:43:E5:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF67C638A4BD11EF81A1F37D762E951A.roa
Signing time: Sun 17 Nov 2024 08:26:47 +0000
ROA not before: Sun 17 Nov 2024 08:26:43 +0000
ROA not after: Tue 17 Dec 2024 08:26:43 +0000
asID: 53803
IP address blocks: 154.195.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69212 (0x10e5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 08:26:43 2024 GMT
Not After : Dec 17 08:26:43 2024 GMT
Subject: CN=6739a8c7-f7c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2a:71:40:b7:ce:86:5f:59:d1:18:b6:ef:a5:
90:1c:3d:27:a3:14:af:7b:57:50:e1:f4:c2:51:c7:
e1:4a:d0:8d:05:87:90:a9:26:c8:ce:81:2e:32:73:
bd:b8:aa:fe:f5:81:1f:de:0a:fb:be:14:5a:64:a8:
1f:72:2f:a4:8a:e8:47:9e:eb:02:c5:7c:d2:6b:c9:
16:11:a3:1c:bb:f3:cb:34:f8:b1:1e:7f:35:e6:49:
b1:dd:37:24:73:0a:6d:b6:45:9b:5e:d1:40:5b:4c:
13:3f:57:74:dc:8d:9c:7f:4a:8b:fa:fa:81:94:c7:
0c:63:62:74:c8:3b:c0:d6:8f:23:b8:32:2b:9d:3a:
56:9e:df:51:3a:da:45:b4:63:28:10:80:29:84:45:
47:df:61:c2:bb:1d:ec:38:fb:d1:77:b3:d0:75:06:
0e:35:32:78:2d:9f:0d:00:83:f0:d3:df:1f:bf:88:
7f:55:49:3b:b8:25:da:f0:d1:ef:9b:6a:fb:c9:d8:
92:71:cf:ac:68:2e:ad:7d:29:ed:b9:02:57:03:40:
1e:1a:24:5d:41:4b:ce:85:df:97:bd:9b:71:2f:a2:
a8:52:7c:f1:31:33:d7:83:81:bf:50:90:b0:30:73:
11:01:64:e7:91:18:03:96:78:0f:08:15:21:a5:c2:
92:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:85:29:A1:5D:BE:BE:B0:61:D2:B7:7C:AD:C9:21:6B:9D:43:E5:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF67C638A4BD11EF81A1F37D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a7:a8:a5:32:4a:a6:d7:e5:95:0f:04:bd:e6:3e:17:ff:4b:
34:b0:39:60:8b:0f:7a:43:7a:da:a6:e2:59:2a:6c:ca:00:63:
cd:2e:7b:83:98:b9:08:f4:eb:9d:b9:a9:cf:21:f3:d2:f4:58:
4a:5a:e3:86:bc:92:fc:e1:91:20:13:7c:1a:b6:f4:0e:0a:46:
43:aa:99:7e:36:bf:8e:4f:8e:a6:34:ef:b6:f9:a7:56:ca:b2:
7f:0e:cd:5b:9c:ad:90:6d:22:cb:02:67:3e:5e:24:86:69:78:
cc:e5:03:53:d1:56:63:3c:15:46:d6:34:84:0a:4e:1a:bc:f9:
62:86:eb:10:31:8a:dd:bc:ba:df:19:fc:bb:fe:02:80:cd:fb:
6f:de:65:75:48:18:9d:61:ad:54:14:02:06:0c:ae:d9:e7:e0:
aa:4a:73:e2:c1:3b:63:ea:82:e7:ba:aa:ae:d9:1a:3a:af:a9:
ed:27:ab:b1:ba:67:9b:81:aa:a6:01:05:ef:e0:73:60:7c:6e:
7e:48:90:f6:0b:74:04:35:8e:3a:05:14:ed:76:02:89:4a:58:
c4:91:e0:04:2f:43:7f:f5:3c:c9:dd:cd:02:0d:b1:f2:09:cd:
75:f5:b6:ee:13:92:90:07:e6:28:9c:36:49:e1:dc:94:6d:15:
76:58:30:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:29 2024 by rpki-client on console-ams.rpki-client.org