Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4A55EB2A45E11EF8A27819D762E951A.roa
File: B4A55EB2A45E11EF8A27819D762E951A.roa (raw, json)
Hash identifier: GbPrjoB3obUhcCbs+baXa4PKuz4rq4XMY1L9PaWftv8=
Subject key identifier: F2:AE:AF:88:F7:03:69:33:76:1F:0C:9A:3F:06:A8:28:BD:C1:A7:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E51
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4A55EB2A45E11EF8A27819D762E951A.roa
Signing time: Sat 16 Nov 2024 21:06:54 +0000
ROA not before: Sat 16 Nov 2024 21:06:50 +0000
ROA not after: Sat 30 Nov 2024 21:06:50 +0000
asID: 39600
IP address blocks: 154.94.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69201 (0x10e51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 21:06:50 2024 GMT
Not After : Nov 30 21:06:50 2024 GMT
Subject: CN=6739096e-625e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:31:f4:5a:ec:e1:50:7a:4d:4a:e9:d7:ca:ea:
86:f9:a9:3d:b7:dc:0a:85:a6:e1:31:20:10:99:d0:
1a:82:e2:e4:5e:22:b6:1e:e9:cd:58:ef:21:d1:d3:
e4:40:9d:d0:d3:bd:2d:49:5d:2c:7f:f6:d6:2b:fd:
52:05:9e:e2:b9:78:0c:e9:20:97:41:8d:42:e0:f2:
be:ef:42:9b:7c:81:6e:a7:18:ce:c9:b6:79:0f:3c:
ee:1f:8e:ff:db:34:4e:8c:89:e2:45:30:ee:4b:36:
03:f6:1f:a9:7d:fe:a2:c3:e7:be:82:da:7a:bf:17:
89:f2:63:83:a5:a6:00:66:8f:8e:fc:71:ac:cb:9e:
4b:65:48:a3:8a:60:1e:28:5b:51:de:0b:5a:5d:db:
7b:71:4e:f5:42:ac:3d:42:a3:26:b0:42:6f:41:ae:
a5:8b:5c:f1:d3:be:36:22:aa:35:20:47:a0:7d:a3:
87:fb:97:fe:cb:db:be:2f:7d:84:0b:80:dd:fc:de:
6b:7b:87:02:3b:26:cb:20:a5:d3:7f:3f:f4:c2:0e:
3a:ae:cf:75:41:a4:d1:4d:4b:bd:7f:02:8f:b5:4f:
a9:8d:a4:54:8d:27:31:59:40:5d:c2:03:f6:60:c5:
10:ec:82:39:ee:a5:d8:ac:24:7f:94:73:68:a5:b7:
52:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AE:AF:88:F7:03:69:33:76:1F:0C:9A:3F:06:A8:28:BD:C1:A7:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4A55EB2A45E11EF8A27819D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.24.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:b8:58:71:df:90:3a:d9:79:d5:8e:de:c6:49:a8:36:c3:71:
1e:5a:71:23:6b:3e:6c:69:ad:d5:3c:4b:cd:88:b4:3c:26:9d:
e6:1d:d0:36:a9:af:35:c4:7b:f8:ca:7d:e2:d2:b7:89:0a:81:
b4:81:3a:8d:8b:19:68:dc:b6:c5:f9:47:6e:31:ce:82:40:c6:
e1:2e:26:6c:b7:b5:33:1c:c4:ac:bc:a9:39:b5:60:e7:ca:c7:
5b:63:19:f1:fa:03:ed:aa:56:c9:41:86:6a:c4:40:82:a6:f6:
52:f4:c8:dd:10:51:44:5e:d0:1e:bc:10:e6:96:11:f3:06:52:
c6:06:49:27:23:45:30:61:fd:9b:67:1d:55:65:37:f1:e8:2c:
b0:cb:cd:7f:49:9c:c5:cc:90:70:29:cb:97:51:79:cd:5d:4f:
10:8f:39:55:99:da:6c:78:33:db:c9:ea:8e:c4:e9:24:16:d1:
c6:0b:44:f7:e8:df:a0:e3:f3:4b:77:17:e1:00:84:c0:f3:79:
ad:e6:30:9a:c4:5d:d1:66:5e:56:9d:5b:df:05:d5:94:f4:82:
97:0a:8a:a4:b2:ae:14:ab:ed:a9:7b:38:a2:71:57:b7:ab:33:
42:38:c2:6b:b2:d0:2e:80:78:1b:14:39:f9:11:c7:19:83:98:
28:c7:f2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:23 2024 by rpki-client on console-ams.rpki-client.org