Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE29964691E011EFAFED6175762E951A.roa
File: BE29964691E011EFAFED6175762E951A.roa (raw, json)
Hash identifier: tV6kvutdFfIBoGIomdFkMr1X8WP24LqDLtYxIfgG8dk=
Subject key identifier: F5:9F:75:E2:1C:EF:A9:84:48:1F:45:32:A9:E4:29:5C:68:2C:20:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010113
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE29964691E011EFAFED6175762E951A.roa
Signing time: Thu 24 Oct 2024 08:19:52 +0000
ROA not before: Thu 24 Oct 2024 08:19:48 +0000
ROA not after: Tue 21 Oct 2025 08:19:48 +0000
asID: 135423
IP address blocks: 154.82.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65811 (0x10113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 24 08:19:48 2024 GMT
Not After : Oct 21 08:19:48 2025 GMT
Subject: CN=671a0328-61b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7d:c0:df:cc:c3:07:75:89:38:0f:cb:08:bc:
3d:03:53:74:23:ec:f8:46:5c:70:ff:7f:6e:21:4b:
0d:50:20:fb:6b:bf:f8:8f:2d:1b:cd:9c:2d:37:18:
31:ed:dc:64:e2:ff:db:d3:d5:33:a7:62:bc:55:de:
de:61:16:16:66:85:c5:60:e5:df:11:e3:48:f4:4d:
97:02:fb:b0:76:7b:c0:11:a9:28:a1:4a:0d:10:d5:
f2:ff:9f:25:4e:b0:ad:ef:56:d3:3e:b0:bb:3d:ed:
be:ec:a2:23:89:4d:be:fd:f6:c0:ce:98:51:6f:da:
a6:77:28:ba:2d:a3:a1:c5:45:5a:8a:6d:00:b6:6f:
bf:57:13:b2:a3:f6:80:ca:c5:ee:25:19:55:95:97:
e0:83:e2:6a:01:3a:af:86:09:fb:13:d2:0e:fe:a2:
a9:ef:0c:94:28:a1:d4:73:24:e9:9b:9b:fc:dc:e3:
a9:c8:43:7c:56:72:7e:03:95:7c:24:34:f8:ba:e5:
da:b9:4b:69:f2:c5:f0:1a:8c:23:fe:51:c0:3d:d3:
72:56:53:59:72:7e:20:ac:2a:88:f1:01:0e:8b:e1:
94:f4:da:10:28:b9:55:7f:64:45:b2:8a:01:cd:02:
c7:a9:9e:ea:a0:d9:6d:6a:cc:57:11:85:fc:18:a8:
62:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:75:E2:1C:EF:A9:84:48:1F:45:32:A9:E4:29:5C:68:2C:20:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE29964691E011EFAFED6175762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.161.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:27:b7:7e:fb:28:f4:79:56:fe:68:b3:7a:fd:9e:6c:ad:56:
61:da:1d:08:f7:95:08:f8:c1:77:7b:7e:18:09:9b:b1:56:75:
68:c9:59:ef:f4:c9:32:9a:4d:37:9a:81:d3:a4:d1:cc:94:06:
39:7c:89:84:22:2b:ce:19:9d:54:43:4b:e7:86:56:e0:63:5f:
3b:ae:9a:03:e4:ef:1f:76:2b:dd:f2:f9:28:97:0a:a7:dc:2b:
c0:b3:cd:d4:98:16:35:16:60:6a:c8:20:31:41:ff:b8:88:97:
0b:de:db:24:6e:25:4b:8c:56:11:14:1c:3f:15:ad:31:21:19:
2f:35:de:57:92:5b:2d:10:ab:99:5e:99:55:5e:1c:26:66:72:
5a:69:82:fd:bc:9a:77:d1:a4:3b:f0:7a:d2:14:7a:27:da:8c:
a6:77:7e:07:49:0d:fa:5d:05:4c:ae:83:65:d4:42:cb:47:b2:
d2:fa:91:62:f4:c4:3c:20:4b:4d:c2:47:e6:67:f6:47:b2:73:
b8:46:6c:87:53:75:5b:93:cb:f2:c7:6b:56:83:0d:46:51:56:
f4:6d:a5:1f:f9:82:50:37:bd:a1:66:1e:de:9d:a2:69:0b:84:
d1:07:7d:8c:a5:93:29:6c:76:8b:5d:e3:11:d5:d3:6f:53:ac:
a9:fa:1f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:33 2024 by rpki-client on console-ams.rpki-client.org