Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B22E64C6A9D111EF93331265762E951A.roa
File: B22E64C6A9D111EF93331265762E951A.roa (raw, json)
Hash identifier: jOpxgahdbtoL1jc2KNI6pilstxg88chcZNJebsM6FLo=
Subject key identifier: 29:0F:C8:D2:A4:38:90:C9:BA:F6:A6:5E:02:0D:63:39:02:EC:14:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011224
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B22E64C6A9D111EF93331265762E951A.roa
Signing time: Sat 23 Nov 2024 19:32:37 +0000
ROA not before: Sat 23 Nov 2024 19:32:34 +0000
ROA not after: Tue 03 Dec 2024 19:32:34 +0000
asID: 62240
IP address blocks: 154.195.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70180 (0x11224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:32:34 2024 GMT
Not After : Dec 3 19:32:34 2024 GMT
Subject: CN=67422dd5-2e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:e9:ee:42:53:8d:f3:38:cf:99:40:74:2a:
6a:77:c3:03:86:44:6f:65:5f:a4:cc:9d:ce:6d:a1:
c4:79:82:ca:dc:68:e5:58:fe:ff:12:ad:af:2f:84:
20:80:35:8f:47:76:e5:14:56:f0:cb:14:35:e7:18:
91:73:86:31:28:f2:cc:30:f8:3c:47:cc:cd:e9:d4:
7d:6a:3d:10:d7:b5:4f:9a:27:f9:6a:97:c3:63:52:
dd:b7:58:1b:1e:eb:ca:5a:62:6c:fb:9b:e7:b6:44:
64:14:a0:dc:e1:a6:e4:9c:46:5b:df:a4:e5:6f:68:
ff:00:59:f0:33:7b:3e:5e:46:15:90:43:f7:65:ff:
fe:93:61:94:5e:ac:3f:dd:72:04:0e:6a:b9:6f:68:
e9:7d:39:68:ce:63:e6:7e:d0:94:d8:9f:a8:e2:12:
ff:8e:d8:12:c3:34:12:cc:c6:14:0f:4f:d4:05:40:
0e:a9:18:ea:78:5c:ec:eb:68:6f:6b:cc:e4:13:9d:
ea:b8:6e:f8:a0:61:c6:2c:17:6b:dd:40:82:00:ba:
65:95:da:2f:3b:ce:a2:70:ea:96:91:21:38:bc:83:
e0:0e:ae:6f:65:4b:b5:0f:40:45:1f:79:dd:d4:4e:
09:d8:f3:76:42:09:7f:0a:99:c6:6f:52:74:fe:2f:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0F:C8:D2:A4:38:90:C9:BA:F6:A6:5E:02:0D:63:39:02:EC:14:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B22E64C6A9D111EF93331265762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.6.0/24
Signature Algorithm: sha256WithRSAEncryption
78:e3:c6:a8:02:d3:ae:63:a5:82:26:9e:a5:36:f6:cf:e2:ff:
bd:0c:a2:6c:ba:58:29:e8:af:47:0f:65:bc:f3:20:ec:8a:36:
f3:a9:2d:60:46:6a:54:9b:5f:39:0a:b4:dd:99:a3:0e:62:6b:
52:10:9d:fd:86:aa:b6:c0:df:fc:08:92:52:28:a3:2e:cb:9c:
02:fa:91:e8:bd:4a:f9:31:d2:88:92:65:24:12:58:56:5d:2e:
eb:26:7c:81:11:b8:62:e8:f6:0b:5b:7a:0e:c2:ed:36:90:b4:
2a:1d:b3:ac:b1:12:9f:a6:0c:0e:85:02:99:13:cb:69:b5:5b:
b7:c5:b2:83:19:96:45:24:7e:90:20:f6:e7:54:ae:5f:3c:54:
06:05:7d:b7:64:18:9d:87:d7:c7:23:93:1b:11:21:da:18:39:
41:6e:12:5c:9f:c8:69:24:5c:19:0c:f6:d2:f2:c1:63:d0:8f:
a5:da:82:60:b3:36:a1:02:c5:36:4f:57:87:45:bb:01:cc:e7:
d0:f7:49:a4:3c:ec:8c:77:da:87:15:bf:cb:aa:ad:a6:61:34:
b9:45:2f:be:f8:b4:35:ae:68:a9:59:dd:ed:d2:3d:d1:b1:9a:
0c:d7:ac:2f:27:39:58:0b:28:5b:54:2a:7c:0f:8e:78:b0:d4:
59:81:7a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:30 2024 by rpki-client on console-ams.rpki-client.org