Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0658430A8E611EFAF92EFA0762E951A.roa
File: B0658430A8E611EFAF92EFA0762E951A.roa (raw, json)
Hash identifier: O99KI8OKIU/BqB/tYNJH00KBCGtZ35TBsqit+sofjzY=
Subject key identifier: 76:E6:B2:5B:4C:4F:DD:D7:EA:13:92:59:0E:7E:41:D6:64:9B:DF:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0658430A8E611EFAF92EFA0762E951A.roa
Signing time: Fri 22 Nov 2024 15:30:23 +0000
ROA not before: Fri 22 Nov 2024 15:30:19 +0000
ROA not after: Tue 03 Dec 2024 15:30:19 +0000
asID: 62240
IP address blocks: 154.194.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69847 (0x110d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:30:19 2024 GMT
Not After : Dec 3 15:30:19 2024 GMT
Subject: CN=6740a38f-edf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:96:f1:1c:dd:db:aa:43:5f:3c:a9:86:ff:1a:
02:d5:c7:eb:6b:d3:86:7d:cb:ca:15:c5:4c:63:49:
df:bb:50:1c:2c:53:4f:71:fe:af:65:a8:90:b2:b6:
25:80:1e:49:64:87:bc:54:14:91:37:02:34:3b:56:
96:39:47:e7:55:dd:c8:7f:a2:3f:85:4a:d6:87:15:
bc:bc:c4:32:20:b8:96:05:52:df:7c:9c:b1:a9:31:
8f:44:76:89:7e:c3:12:96:a3:63:e0:13:68:d7:e3:
c5:21:06:1e:fc:b0:83:7b:d6:46:82:39:05:ed:b7:
6c:7a:e4:91:47:10:34:63:07:12:2b:ea:c6:95:c1:
84:3b:8e:e0:e9:45:e6:21:7f:87:26:7c:ac:4b:cb:
d1:90:f8:e3:4a:cb:fb:d8:64:2f:1f:05:83:ef:02:
90:4b:23:cc:bf:c8:39:d9:5b:5d:ff:38:ee:06:63:
0e:f7:31:63:4a:f8:a3:63:70:92:a1:04:4d:4c:6d:
79:49:c7:39:ef:ca:41:c1:2b:11:26:14:19:06:84:
b4:d6:2b:5a:78:d8:82:39:c6:34:f1:81:11:7c:65:
29:4e:60:26:43:98:eb:d8:84:fc:1d:24:22:b6:21:
a1:36:ad:67:35:b5:68:4f:74:6a:f5:d5:81:6e:4b:
3b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E6:B2:5B:4C:4F:DD:D7:EA:13:92:59:0E:7E:41:D6:64:9B:DF:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0658430A8E611EFAF92EFA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.108.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b6:68:a9:59:7c:fd:ee:94:83:2a:fd:45:37:7d:c9:19:1c:
5e:14:cf:ac:77:a8:b3:e3:1b:1f:07:0f:70:9c:52:c5:b0:1c:
53:61:67:7c:25:bd:64:eb:20:dc:b8:c4:f5:33:ce:0c:01:7f:
7d:70:da:5b:00:1b:14:df:5c:96:2c:01:6f:8a:33:62:aa:8a:
2a:e0:b6:6e:40:3d:67:c4:72:10:7c:04:86:57:90:6c:cc:71:
46:5d:e6:f1:25:b9:ca:21:43:1d:7d:32:d6:a3:06:7a:e8:48:
7c:50:92:e2:b5:6e:2c:22:5d:a2:c1:54:b3:78:91:07:a5:e6:
90:45:b4:b4:b7:0e:06:64:a1:7a:ea:00:06:b4:31:ba:bf:57:
16:b6:81:ff:69:83:81:3c:20:b5:16:ae:31:6a:34:39:7d:db:
ff:58:87:9b:3c:7c:98:1f:0e:98:ab:01:55:f5:69:40:1b:85:
91:66:fc:c1:20:9c:d0:6d:99:e4:23:f7:25:7f:2f:ad:45:6a:
a9:3c:1a:55:d8:ae:7d:8e:d1:e9:fb:12:52:65:e6:00:56:a5:
7e:ad:e2:93:da:73:59:99:1a:e8:44:7a:fe:15:52:03:d0:bd:
6e:d5:72:e4:68:fd:7b:67:98:b7:6f:57:06:f4:4c:ec:01:70:
34:2b:73:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:29 2024 by rpki-client on console-ams.rpki-client.org