Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6374AC6A71D11EF98928665762E951A.roa
File: B6374AC6A71D11EF98928665762E951A.roa (raw, json)
Hash identifier: 3FQqf5Q0fnP5oacj02miSAyIo5aZ71KWpuJAgfiigBk=
Subject key identifier: 0C:23:54:D5:B8:A5:A7:74:B9:A2:7E:C2:E6:72:3F:F2:D1:27:2D:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F49
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6374AC6A71D11EF98928665762E951A.roa
Signing time: Wed 20 Nov 2024 08:59:12 +0000
ROA not before: Wed 20 Nov 2024 08:59:09 +0000
ROA not after: Thu 05 Dec 2024 08:59:09 +0000
asID: 5065
IP address blocks: 154.94.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69449 (0x10f49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 08:59:09 2024 GMT
Not After : Dec 5 08:59:09 2024 GMT
Subject: CN=673da4e0-352e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:f4:39:30:da:2c:ca:57:2c:a9:be:54:0f:
8c:eb:6a:5e:de:36:a9:07:2b:c2:b2:ca:81:14:52:
01:3b:95:00:70:c6:98:62:67:be:4b:ca:87:83:a5:
70:96:7b:72:4e:cf:2e:47:20:23:90:48:c9:3c:45:
b1:c7:f9:4e:47:96:47:37:92:0f:73:af:32:8b:d4:
eb:63:50:e4:eb:ed:71:13:30:b8:85:1c:25:69:b1:
95:95:53:75:6b:28:07:c4:de:70:0c:bc:a6:1b:25:
93:4e:36:63:fc:b1:b9:45:30:fd:61:ce:27:86:12:
3f:8e:3b:e3:22:bb:d3:22:11:1d:0a:12:20:12:b2:
c1:b6:c5:af:57:1e:b8:b3:16:c3:10:be:f2:e6:17:
18:02:6e:68:ec:e3:66:fd:f2:dc:f5:c0:10:a3:90:
06:1c:74:92:8a:69:03:19:1a:27:22:ca:00:83:6a:
5c:6c:57:e8:71:83:cc:6d:30:79:c0:16:2b:ff:eb:
a8:72:c5:7f:82:dc:cc:a5:34:90:8a:5b:b5:00:02:
09:18:13:dd:34:ef:61:f3:7a:74:d1:96:7c:d9:c0:
17:d0:b8:f6:c9:32:e8:65:3b:04:11:33:de:91:da:
2b:89:5c:c6:c6:29:95:62:f2:60:4c:f0:54:16:2e:
6f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:23:54:D5:B8:A5:A7:74:B9:A2:7E:C2:E6:72:3F:F2:D1:27:2D:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6374AC6A71D11EF98928665762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.46.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:aa:16:01:c0:47:ca:80:5e:f5:9d:65:a1:c7:de:f7:19:1d:
bc:d6:1c:d6:55:7f:73:08:5b:b7:83:04:5e:48:8a:65:c6:4b:
d1:f7:7d:75:e4:db:a1:aa:89:a3:e9:c9:aa:16:40:bc:32:b5:
09:bc:06:c0:72:45:28:e1:5d:ef:92:f8:0b:ca:5c:7b:0d:d8:
f5:9f:c2:df:f5:9c:54:5d:6c:68:f3:6d:db:f6:45:4c:35:04:
43:39:c7:9d:06:2a:54:65:2a:a6:d8:a9:41:fb:95:48:42:42:
78:d2:d1:52:4f:ff:34:73:73:c7:d2:49:eb:b9:43:2b:06:26:
c8:3c:17:11:2d:55:86:5b:fc:d9:d1:38:70:5f:54:0b:01:95:
21:be:38:7c:ad:c2:c5:e4:8b:34:15:1f:8b:dd:7c:68:e5:d6:
ec:67:35:25:b5:89:d1:ba:9a:e4:a0:cf:fc:45:08:d4:32:22:
a9:5f:68:6c:ea:c2:0d:24:4a:d9:7a:c2:be:4d:2c:e6:a8:13:
89:71:03:fd:28:80:1f:e8:bd:ab:e9:41:c2:39:72:0e:92:60:
fa:ff:e1:df:2b:0c:9b:b9:d9:45:1f:cc:b7:41:1b:70:c6:eb:
a6:27:3e:da:ae:2a:0f:13:44:fd:69:d4:be:78:d1:70:16:31:
cd:21:c4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:22:57 2024 by rpki-client on console-ams.rpki-client.org