Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B267EFDCA75311EFAC8299B6762E951A.roa
File: B267EFDCA75311EFAC8299B6762E951A.roa (raw, json)
Hash identifier: 2A+b3+duXhOKEpNPmTq566yfedgFCF8GQIkD3FeYTdg=
Subject key identifier: F5:F5:5C:73:56:56:1B:75:FA:A0:81:27:59:03:82:67:A8:85:A7:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FCB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B267EFDCA75311EFAC8299B6762E951A.roa
Signing time: Wed 20 Nov 2024 15:25:39 +0000
ROA not before: Wed 20 Nov 2024 15:25:35 +0000
ROA not after: Sun 01 Dec 2024 15:25:35 +0000
asID: 151800
IP address blocks: 154.197.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69579 (0x10fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:25:35 2024 GMT
Not After : Dec 1 15:25:35 2024 GMT
Subject: CN=673dff73-125f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ea:81:1e:9e:10:4b:a2:57:ff:28:e4:24:ea:
2e:b2:e5:ce:38:b2:27:0a:94:c4:10:db:39:0a:71:
23:8f:63:56:25:cb:de:a8:13:7f:fe:17:94:fc:74:
63:8a:44:da:d6:8f:ed:27:a6:ed:64:4d:bf:9c:50:
6c:d9:99:21:6d:4c:67:f9:88:17:97:5f:94:c5:7c:
db:c8:5c:44:36:94:4b:53:b1:22:0a:85:54:d7:d5:
d1:cf:00:ef:72:e2:59:43:1f:c8:be:7f:f5:f1:cc:
c0:91:a1:f8:8b:13:ed:0e:40:32:b6:e2:2d:54:5a:
50:84:1e:6a:6c:44:e3:08:a8:6a:be:09:65:46:58:
af:6e:3a:d4:69:a4:73:71:53:98:9d:74:49:bc:b1:
a6:6c:4f:e0:12:f5:e6:64:52:57:42:58:5d:34:b1:
c6:99:e6:c4:fa:ac:cd:e4:7a:4b:fc:21:41:6c:d4:
6f:f2:a3:c5:20:b1:4d:47:32:29:1c:dd:b7:19:41:
cd:db:88:62:82:99:6b:9d:81:58:18:1c:6c:8b:38:
5f:ad:13:c9:32:1e:72:1c:ed:7c:c3:3d:ac:1a:1e:
6f:42:08:55:a0:af:db:d7:c0:01:ab:05:c0:f5:62:
c7:2a:15:a8:52:f0:5f:6f:9b:90:73:14:eb:ab:97:
03:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F5:5C:73:56:56:1B:75:FA:A0:81:27:59:03:82:67:A8:85:A7:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B267EFDCA75311EFAC8299B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.95.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f4:8b:b6:ac:00:d5:2b:35:84:c9:c1:78:a9:40:43:6a:3e:
65:50:88:bf:c1:7e:b8:b7:91:74:e5:89:ba:02:cd:29:3b:42:
a4:b6:21:38:a5:37:be:7a:a2:a5:ae:cf:e9:8c:6e:f4:01:55:
c6:38:64:4c:b8:66:6e:68:e1:fe:2b:dc:fa:44:19:45:65:69:
6b:b4:23:d9:1a:d0:26:0a:f7:93:10:70:23:47:27:7e:51:d4:
67:26:aa:c6:6e:ba:c1:79:c6:6b:12:26:34:94:37:48:e3:bb:
0d:29:3f:0a:29:14:db:cc:1e:48:97:31:5f:8d:42:1e:99:c2:
72:61:a1:82:a3:e3:d6:a6:51:48:ab:68:df:35:41:91:c7:2b:
2a:80:69:b8:df:4a:2d:7b:a6:32:42:d5:5c:cb:4b:1f:0f:fa:
bf:e7:4e:b6:7c:b8:c0:23:45:a9:1e:71:8f:67:cb:25:c2:76:
c3:28:64:37:72:9c:02:2c:dd:1f:f3:5f:08:97:a7:71:0a:93:
1f:01:e8:24:7e:76:3d:15:96:12:28:28:55:20:7f:cf:bd:d3:
30:c4:fb:cc:fb:72:cf:68:3a:fd:0c:5e:c0:01:2a:2d:70:db:
e8:9a:d8:20:ab:5f:3f:13:74:1f:5f:4c:92:1f:97:a1:19:ac:
d4:3a:12:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:23 2024 by rpki-client on console-ams.rpki-client.org