Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6E566C86A5F11EF968E0D4C762E951A.roa
File: C6E566C86A5F11EF968E0D4C762E951A.roa (raw, json)
Hash identifier: bOf7Y8GYpjCrH2Nu1rbAGKii4GsLNLd5b0B8Yr/Tdyk=
Subject key identifier: B0:D0:E5:BE:1C:30:DF:4D:98:31:DA:63:A8:62:CB:AA:C6:E2:2C:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EA07
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6E566C86A5F11EF968E0D4C762E951A.roa
Signing time: Wed 04 Sep 2024 01:48:26 +0000
ROA not before: Wed 04 Sep 2024 01:48:22 +0000
ROA not after: Mon 30 Dec 2024 01:48:22 +0000
asID: 17561
IP address blocks: 154.207.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59911 (0xea07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:48:22 2024 GMT
Not After : Dec 30 01:48:22 2024 GMT
Subject: CN=66d7bc6a-9689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f6:d7:bc:a2:0c:33:d3:e2:3c:8a:c2:68:8d:
ed:20:e1:13:51:c8:58:e0:09:8a:63:26:1a:cc:48:
a9:bb:85:dc:77:86:bf:76:d5:ca:f2:d5:17:27:20:
95:02:df:bd:8c:8d:67:0b:6e:3a:bb:a6:21:69:56:
f5:2c:fd:d5:49:71:b4:de:7e:63:fb:25:18:38:b4:
b1:bb:6d:17:1e:0b:7b:0a:9f:d9:03:46:aa:91:2a:
85:20:a3:b7:2a:10:bd:47:df:af:ba:e1:80:48:0c:
af:b0:01:a9:36:f4:2e:5b:80:21:e8:ef:7d:f1:4f:
d9:4f:d2:9b:3f:b6:ce:56:88:57:2e:dc:42:8a:82:
d0:40:14:d7:c6:34:4a:c7:cd:e7:d1:95:5f:74:69:
1b:c1:fb:c6:f2:6d:7d:dc:d2:0a:b1:f0:7c:6a:be:
8e:7e:e7:9f:bf:52:37:3f:1e:c5:9c:7b:50:85:41:
1b:21:0d:f2:88:1f:36:56:28:62:97:4c:4c:69:85:
ce:b6:f8:b1:df:6a:69:27:e6:50:4e:df:9a:d2:0c:
a2:ad:81:30:7f:7d:c2:09:44:d2:bb:43:14:92:24:
2e:7e:23:69:f5:d2:b2:9f:db:bb:54:6e:e9:fd:0a:
f0:63:6a:8e:c4:ed:28:69:b4:e4:32:9b:5f:e0:08:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D0:E5:BE:1C:30:DF:4D:98:31:DA:63:A8:62:CB:AA:C6:E2:2C:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6E566C86A5F11EF968E0D4C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.98.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:04:df:5d:8f:28:db:30:a1:4f:a7:89:d3:bf:55:64:7a:d9:
9d:fb:45:7a:6b:5f:c7:8a:68:2e:b3:ae:55:d3:65:f9:93:38:
bc:6e:99:00:8e:0b:a3:30:57:ec:46:25:d4:48:63:7a:ec:38:
75:6d:30:03:0f:7a:7a:ae:ff:32:bf:a1:cb:74:d0:62:72:65:
83:d2:cf:c9:a5:93:b9:99:aa:e2:a1:cc:ed:26:fc:cc:f3:4b:
35:6d:c6:c1:e3:e2:a7:ea:40:cb:cd:80:e7:2d:81:09:1d:9a:
0a:d0:3f:84:86:3b:aa:0a:e2:fc:87:d6:f5:ac:78:a7:7f:9d:
19:8c:6a:6a:5d:a7:30:56:92:fc:3b:08:be:57:e0:04:5d:f6:
c2:a0:0d:65:d0:04:c6:1a:3a:17:eb:32:51:7e:04:dc:59:e9:
37:70:dd:48:8b:28:af:9a:4d:1e:fc:1d:13:b3:41:0d:79:b1:
c8:e2:d7:71:22:29:09:7d:01:89:1f:c6:87:44:de:e3:49:09:
e8:97:63:ae:3e:d4:e4:54:12:0f:a8:ed:38:eb:16:c7:5e:42:
8a:74:c7:64:29:a7:cd:52:b9:5d:40:68:06:c2:d2:7d:d5:f9:
42:05:14:d3:d9:62:2e:f5:fb:ca:ff:ce:75:62:49:a1:80:8e:
75:63:38:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:27 2024 by rpki-client on console-ams.rpki-client.org