Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B28F9B8892B111EFA2D2259B762E951A.roa
File: B28F9B8892B111EFA2D2259B762E951A.roa (raw, json)
Hash identifier: iJ1CfvQG10pxtlFCaKfIjJZufx4Qb56l34tixeuuyRg=
Subject key identifier: 9B:1F:84:48:01:98:8D:BC:0A:44:1E:DF:DA:44:48:D9:48:5B:19:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B28F9B8892B111EFA2D2259B762E951A.roa
Signing time: Fri 25 Oct 2024 09:15:37 +0000
ROA not before: Fri 25 Oct 2024 09:15:34 +0000
ROA not after: Wed 27 Nov 2024 09:15:34 +0000
asID: 395793
IP address blocks: 154.200.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66004 (0x101d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:15:34 2024 GMT
Not After : Nov 27 09:15:34 2024 GMT
Subject: CN=671b61b9-521d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f8:5c:6d:ae:75:7a:d7:02:bc:7a:2c:91:12:
6b:b1:06:97:63:84:ba:17:2c:3a:30:40:5b:4a:fc:
a3:1e:d2:8c:29:8e:f6:a0:99:17:61:22:fd:01:9c:
b0:ad:8f:d3:96:08:fa:47:53:db:1e:a2:68:2d:9f:
ee:d7:b8:09:1c:5d:5a:77:44:d6:1f:00:0e:28:bf:
51:97:50:74:f6:31:86:3f:81:20:4a:9c:b3:ae:3e:
39:fe:ae:f6:09:ca:0f:6f:a8:0f:c1:3f:0d:66:18:
86:26:cd:3d:30:c8:58:38:b3:42:77:2c:92:82:32:
09:0d:a4:bc:ca:92:b8:3b:ca:31:fa:50:13:97:82:
3d:1a:66:a6:0b:cc:35:ea:e7:8d:15:7c:73:a0:85:
3f:d6:20:ab:de:60:4e:45:72:b1:76:3c:b2:f1:4d:
f5:72:11:e7:70:ed:9d:35:75:c4:fe:68:1e:a2:84:
66:17:90:74:72:24:af:02:0f:ff:23:b3:a2:3c:2f:
e0:4e:0b:c1:eb:b8:b1:92:0b:90:b6:0f:3f:04:6e:
f0:9a:66:2e:d6:e2:21:bd:c3:db:bb:09:d2:4e:4d:
04:ce:a4:b1:3a:40:0d:d5:97:bf:f0:4f:bb:74:cf:
3f:b0:5c:8a:97:b5:64:aa:a0:29:3c:2a:95:c0:7c:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1F:84:48:01:98:8D:BC:0A:44:1E:DF:DA:44:48:D9:48:5B:19:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B28F9B8892B111EFA2D2259B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.55.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:5b:87:fd:e8:4f:4b:d6:29:d5:f5:0f:bd:89:73:0e:49:39:
87:89:57:b3:bf:e9:f8:97:a4:9e:08:a1:f5:97:43:57:7f:32:
61:bd:4b:be:8d:74:b4:be:02:b3:1e:a6:fe:df:05:c3:fb:54:
24:a9:57:6d:19:f0:e2:df:f7:e3:37:01:13:6a:df:53:00:1d:
af:d4:93:dd:5d:1f:26:1c:06:7f:01:2a:7f:77:32:83:65:69:
bb:bf:21:fb:bb:e5:e0:48:d3:70:01:cc:b3:bb:f8:0c:79:9f:
50:fc:62:e4:d1:21:fd:36:75:a1:56:f6:d9:e1:99:29:e7:54:
4e:da:e2:ba:27:34:3c:66:ca:68:e7:0d:13:2c:c7:9d:0c:ba:
d5:4e:05:15:c2:78:73:69:c7:55:cf:45:76:a3:2f:7d:d5:f4:
73:e0:6b:21:ed:46:0e:54:12:be:b0:38:e8:1f:68:45:1f:73:
32:9d:ef:07:fc:d1:f1:05:1d:04:f8:fb:8b:dd:50:04:31:1c:
7c:7c:54:d7:04:04:a0:ff:da:da:1d:a1:8b:4c:c5:4f:a6:d7:
42:b1:43:98:d2:e1:a6:47:6e:02:03:15:4d:8b:bc:a6:07:a5:
e5:55:70:ed:20:ed:df:ab:b9:fc:9c:3d:52:d3:99:13:27:1e:
61:ca:23:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:23 2024 by rpki-client on console-ams.rpki-client.org