Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE858FBEA71B11EFA58AF05A762E951A.roa
File: BE858FBEA71B11EFA58AF05A762E951A.roa (raw, json)
Hash identifier: oEwQ53XNyeM8PoBvshRUoiiAQTagLGTP9UkKDIHGjSo=
Subject key identifier: CE:74:27:DE:B7:EA:BD:3D:CB:EC:6C:1B:81:87:F8:C7:A8:21:48:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE858FBEA71B11EFA58AF05A762E951A.roa
Signing time: Wed 20 Nov 2024 08:45:07 +0000
ROA not before: Wed 20 Nov 2024 08:45:04 +0000
ROA not after: Thu 05 Dec 2024 08:45:04 +0000
asID: 5065
IP address blocks: 154.94.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69425 (0x10f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 08:45:04 2024 GMT
Not After : Dec 5 08:45:04 2024 GMT
Subject: CN=673da193-3cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5a:62:5d:a0:b4:83:67:9a:5c:cd:8a:d8:a1:
42:4d:7c:31:65:e6:f2:13:b7:7b:4e:a5:12:5b:42:
9f:e1:05:a4:f7:9d:6e:cd:c6:d0:85:a1:ee:96:bd:
6e:fc:55:54:c0:57:66:3d:0c:46:66:a7:db:fb:cb:
e6:b4:9a:24:58:44:3e:db:0f:15:c3:7f:32:e1:96:
10:86:dd:36:78:c4:fd:c0:5c:05:f2:1d:55:d1:99:
bd:8f:17:e7:b4:64:c8:af:c7:5b:60:eb:07:9c:02:
29:53:74:66:c5:79:b5:eb:f9:ab:33:23:06:8f:7c:
36:e0:82:c3:48:61:b7:c0:e4:0d:7c:38:87:5e:6c:
10:4f:c6:3c:3a:f7:54:4c:6d:cd:77:e2:79:17:f8:
4c:04:1e:27:13:da:e0:8f:8f:9d:51:b2:3c:4d:51:
f1:c3:59:30:e5:d4:a5:1a:33:1a:1a:20:a7:3a:45:
5e:f6:ee:b7:c9:04:c3:ae:a2:7d:f3:4e:eb:35:34:
14:36:9c:e4:f0:94:10:c5:d4:34:ea:e6:2f:ae:8e:
7a:61:0d:39:c2:e9:9e:ed:58:b2:c9:8d:f4:08:cb:
7e:53:5a:8c:49:41:a7:88:bd:87:c0:4d:3b:9c:01:
c7:0d:05:08:ae:c1:65:f2:f1:d2:c0:f3:8a:52:f7:
98:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:74:27:DE:B7:EA:BD:3D:CB:EC:6C:1B:81:87:F8:C7:A8:21:48:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE858FBEA71B11EFA58AF05A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.56.0/24
Signature Algorithm: sha256WithRSAEncryption
12:2c:34:54:81:67:64:ea:53:d3:bc:36:a2:aa:98:b7:2f:9a:
1c:97:ed:a0:88:18:70:aa:f4:35:09:11:c0:9b:0a:6c:d4:36:
1a:bf:ae:08:6e:0f:1c:c5:33:f8:d6:b4:e9:30:2f:96:84:08:
a9:5e:37:ad:5c:80:27:2d:67:05:8e:90:b5:43:52:25:d9:3b:
9d:09:45:a8:69:ea:78:7c:b7:39:7f:46:7b:a2:ef:10:81:49:
f0:b7:1a:1d:4a:a1:4e:da:0e:33:ec:e5:1b:8a:22:a8:3d:0a:
88:9d:8c:68:ef:47:6e:a1:e9:b7:35:10:2a:0b:90:ad:83:08:
18:ae:c4:81:6f:46:9f:4d:23:d5:d7:70:85:2d:2d:a6:62:86:
31:b2:ca:8a:4c:8f:55:98:54:b1:f7:ea:a5:aa:5a:f0:1e:c5:
e6:7e:d8:91:e8:79:06:a6:9d:55:ec:3a:1e:86:80:c1:28:85:
62:ad:1b:a5:d2:5d:81:85:7d:ec:a0:7d:f9:cf:a1:51:50:b8:
cf:27:30:2a:23:eb:62:26:30:fe:63:0b:4b:3d:cb:b8:28:8c:
f5:3d:0e:80:c6:4c:87:a1:0d:06:33:0a:e3:16:35:c7:3a:69:
e0:b3:a9:da:40:0b:d6:56:28:9f:19:96:2b:30:61:89:ec:0b:
53:91:6e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:04 2024 by rpki-client on console-ams.rpki-client.org