Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64376D6911811EF80825F8C762E951A.roa
File: B64376D6911811EF80825F8C762E951A.roa (raw, json)
Hash identifier: tLNa1Gd9fEmnllIjt+vKi7BD7fOc68s1Tj+7x4gbIpg=
Subject key identifier: 3D:E7:A9:1B:0C:E8:ED:D8:AB:0F:F3:E0:41:B2:2F:3B:CD:53:98:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64376D6911811EF80825F8C762E951A.roa
Signing time: Wed 23 Oct 2024 08:27:59 +0000
ROA not before: Wed 23 Oct 2024 08:27:56 +0000
ROA not after: Fri 24 Oct 2025 08:27:56 +0000
asID: 273906
IP address blocks: 154.200.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65736 (0x100c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:27:56 2024 GMT
Not After : Oct 24 08:27:56 2025 GMT
Subject: CN=6718b38f-1939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:69:71:8f:b6:b8:5b:11:e8:e5:76:6e:c1:2c:
58:d6:19:bd:a4:94:7a:d8:ff:fe:ac:a4:85:4b:94:
87:62:8c:a6:4a:ce:6e:cd:81:fe:5a:8c:6e:8e:dc:
7c:47:3e:4e:59:cf:44:f6:60:a4:1b:df:d1:2f:f9:
be:4a:36:18:04:f1:75:02:1f:24:f2:22:1f:15:6d:
e0:69:6b:dd:bb:3f:42:ab:1d:cf:b4:ba:e7:4a:f4:
4e:f2:23:54:2a:ad:58:d3:30:8f:31:d3:4d:66:5a:
e7:37:8c:5c:c1:49:23:81:42:08:ad:45:6a:10:fe:
35:85:0c:7d:f5:e9:ca:c5:0c:81:e9:45:3c:1d:0a:
f9:93:06:e7:19:12:4f:c2:98:46:6e:c3:d0:c6:63:
5a:07:4b:6a:6e:ee:42:f4:f0:17:b6:6c:e7:df:b7:
b9:d1:2a:7d:89:60:43:aa:41:64:a8:95:95:8c:a7:
2c:4e:86:1d:9c:dd:9c:c5:e6:e9:b9:1b:30:c2:c5:
5a:4f:92:52:1c:ae:1e:0a:0f:f4:3f:31:6e:76:9b:
ff:5b:73:cf:0e:8f:be:c8:b3:7c:e2:ea:73:8e:84:
a9:ba:24:51:be:c8:8b:42:93:60:78:56:09:02:82:
f3:21:b3:4e:f2:00:04:79:1d:f4:32:d3:20:27:d0:
80:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E7:A9:1B:0C:E8:ED:D8:AB:0F:F3:E0:41:B2:2F:3B:CD:53:98:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64376D6911811EF80825F8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.64.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:00:28:59:62:b4:31:b4:7b:d1:44:4d:36:71:ad:3d:8b:1b:
2f:87:87:be:c6:5a:6e:44:64:8d:61:5b:da:c6:a8:1f:fd:ce:
c5:08:2a:86:d8:ea:a6:55:52:29:be:a2:bc:0a:fc:d9:73:b2:
23:10:a0:7b:88:bc:57:72:3a:71:95:d6:30:b1:a3:9c:10:15:
5f:0e:c5:21:1c:dd:99:30:58:ef:7a:3f:48:77:ab:df:5e:57:
94:a2:c6:05:55:36:f7:9c:0f:43:24:ce:3d:7d:82:48:cb:57:
87:1c:8a:e4:97:2e:03:79:5a:f6:8d:e4:0d:f9:de:9f:3b:d9:
a9:10:f5:ea:d5:c5:e7:a9:1f:bf:34:8d:f2:34:56:24:07:3a:
c8:1b:12:83:8e:a5:5d:a6:c7:dc:cf:65:77:80:df:c2:ac:de:
1a:f5:e4:0b:4b:92:84:92:db:7f:9f:18:51:ee:6e:99:9e:4b:
30:c8:a3:a6:77:87:4f:43:af:5b:51:8f:29:38:83:90:df:f9:
72:0f:8d:99:2d:6b:2e:1a:5c:d4:b2:0f:38:f2:00:db:ac:d3:
a2:6e:58:46:6a:61:00:ac:c0:64:93:cb:62:77:52:ff:50:31:
62:44:0e:c7:d1:94:57:5b:e6:81:37:f8:48:17:36:87:e9:ac:
20:e1:3d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:31 2024 by rpki-client on console-ams.rpki-client.org