Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8FB9BD4726D11EFB9702B6F762E951A.roa
File: B8FB9BD4726D11EFB9702B6F762E951A.roa (raw, json)
Hash identifier: 4t2NjNcXylkFd8rWrHIaCgBCZe2vsbuMIXtpKO2vaFA=
Subject key identifier: F1:F9:3E:9A:0F:F3:E9:CE:3E:DF:2C:04:52:5F:C7:6D:B9:7C:60:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8FB9BD4726D11EFB9702B6F762E951A.roa
Signing time: Sat 14 Sep 2024 07:48:25 +0000
ROA not before: Sat 14 Sep 2024 07:48:22 +0000
ROA not after: Sat 30 Nov 2024 07:48:22 +0000
asID: 142403
IP address blocks: 154.211.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60940 (0xee0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:48:22 2024 GMT
Not After : Nov 30 07:48:22 2024 GMT
Subject: CN=66e53fc9-bf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:d8:ad:7e:a7:ba:dd:42:1f:4e:03:55:fc:
84:bf:a2:ae:6e:13:48:f4:b8:6b:09:7f:aa:63:b3:
83:41:0c:5b:de:07:28:00:88:83:61:94:18:77:e6:
a2:ec:ff:a5:c5:d7:ab:d9:b3:17:23:d1:58:6e:94:
5d:ae:63:93:c8:b4:f2:5c:45:5e:40:1a:49:da:a4:
be:60:e1:82:7a:46:91:5c:42:d9:11:82:c0:13:ca:
80:92:c2:45:0a:e6:af:b4:4e:76:b3:08:15:ea:ee:
99:4b:5d:87:fa:28:9b:ea:53:85:c6:46:a2:50:b0:
7d:2d:49:36:6b:ba:2d:b8:16:aa:6b:77:fc:d2:b8:
8e:ff:69:e9:0c:1d:fd:41:cd:dc:15:ba:d2:08:d7:
be:46:c0:87:93:e1:b5:fa:f3:04:13:8f:b9:9e:b8:
ee:53:ff:60:47:39:bb:47:24:21:e6:3e:6f:d2:12:
a6:f4:53:1f:0a:ce:40:76:f4:1c:a7:43:af:cf:5d:
f0:cc:16:f6:90:96:3c:f4:b9:4b:17:4c:fd:28:55:
6e:71:c5:b7:ce:39:ed:2f:be:19:3a:7a:e3:56:6a:
36:a8:83:ac:5d:62:e8:b6:d4:47:f7:21:b9:7c:24:
94:e3:23:4e:f3:67:30:d1:d3:79:71:5e:f4:de:ea:
4f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F9:3E:9A:0F:F3:E9:CE:3E:DF:2C:04:52:5F:C7:6D:B9:7C:60:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8FB9BD4726D11EFB9702B6F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:1b:85:a8:cf:81:58:62:15:1e:aa:d7:31:e6:72:8b:0e:36:
e5:f3:d8:b8:28:10:15:6a:4d:b7:60:1f:ac:92:c1:5b:0a:20:
ec:3d:1f:54:41:d0:e1:91:99:0c:55:4e:fe:07:2d:16:6b:29:
a3:5d:58:4a:ef:5f:4e:6c:52:f1:5f:68:89:ed:f2:44:ec:e4:
03:10:82:4b:95:2f:c2:19:a4:5e:72:48:ad:bb:5c:b2:49:25:
49:c7:a4:f4:fe:0d:95:93:84:b4:9c:39:6b:a9:01:98:cb:72:
3a:d3:c1:ec:2b:5c:f2:e4:9b:37:39:34:3b:8c:73:16:46:8b:
ac:7b:df:37:75:7d:3e:05:8e:3c:44:9c:d1:f6:88:d4:15:be:
0a:b6:3f:cd:c0:c3:ec:09:21:20:8c:6b:f8:68:2a:42:40:26:
df:aa:00:e4:1a:20:91:72:52:b3:3e:3b:f9:7c:bb:b9:89:18:
1f:17:4d:f3:dd:e1:b4:7e:41:66:c3:b4:45:29:32:e5:ac:30:
bd:0c:0b:8e:e0:20:cc:3a:12:07:b2:7b:57:cc:db:78:74:42:
8b:0f:7b:24:4f:ff:bf:2f:21:d6:d7:78:b9:c0:c9:2a:41:aa:
ee:2d:50:5e:a3:21:27:50:f7:24:a6:15:6e:4b:d1:47:b4:9f:
4c:45:23:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:24 2024 by rpki-client on console-ams.rpki-client.org