Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC0CF8A6A26211EFADB288A1762E951A.roa
File: CC0CF8A6A26211EFADB288A1762E951A.roa (raw, json)
Hash identifier: xjbQlgUblLnWyrLBu14XwGXzegzfiiTOS4KE50TQCFo=
Subject key identifier: 26:A5:6A:A1:C6:0F:36:D0:5A:C4:95:5F:B0:6D:60:78:A3:64:B6:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC0CF8A6A26211EFADB288A1762E951A.roa
Signing time: Thu 14 Nov 2024 08:31:09 +0000
ROA not before: Thu 14 Nov 2024 08:31:05 +0000
ROA not after: Wed 19 Nov 2025 08:31:05 +0000
asID: 9123
IP address blocks: 154.194.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68852 (0x10cf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 08:31:05 2024 GMT
Not After : Nov 19 08:31:05 2025 GMT
Subject: CN=6735b54c-048f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4d:c1:75:65:31:65:a6:70:6c:18:20:8d:18:
81:e4:9e:ee:ce:6e:7f:50:1c:b9:56:a2:e4:8f:eb:
99:d9:92:57:b4:d6:ed:75:92:b3:2c:7c:2d:88:a1:
05:21:56:fe:49:46:f7:5b:a5:b0:33:77:64:9b:cb:
e0:77:93:cb:72:8d:b2:68:58:79:e2:7f:93:48:6f:
86:35:59:70:f6:64:cb:a9:69:52:d8:ff:41:c1:6b:
6c:e5:a0:ad:13:49:29:84:19:b5:15:d9:64:fb:29:
e9:17:09:39:9b:71:29:38:e1:ec:a1:8d:8a:27:8b:
6a:cd:6a:92:2d:7a:ed:7b:21:b8:54:f2:63:87:75:
e9:45:97:bf:7e:b2:97:26:d7:db:6e:84:5d:6f:24:
af:e0:be:03:7b:b4:d4:ba:1a:00:97:91:b2:93:ca:
03:a1:5c:0d:e0:38:15:25:ce:66:6f:66:b9:6c:1f:
08:71:76:97:27:e3:f9:19:df:ba:00:6f:c8:ba:3a:
8d:b7:15:bf:06:74:bb:9a:cb:a0:f5:79:42:26:78:
77:07:e6:51:52:8f:77:9d:d4:5f:23:83:d2:24:bc:
f0:f1:94:2c:51:b4:a1:2b:5f:ac:13:97:b7:d8:84:
e2:d4:74:4b:b8:0e:fc:0a:2a:32:fe:7e:34:63:1f:
cc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A5:6A:A1:C6:0F:36:D0:5A:C4:95:5F:B0:6D:60:78:A3:64:B6:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC0CF8A6A26211EFADB288A1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.53.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:13:ed:91:95:da:27:02:0f:46:99:f6:17:73:14:4c:82:f8:
11:33:79:84:87:fc:b8:fe:42:f1:dc:fb:ac:f8:a8:52:db:fa:
0b:10:d9:f7:e3:cd:9b:03:d6:05:26:ac:1a:6e:6c:43:00:45:
dc:3e:34:c8:42:b6:eb:97:2b:54:e1:69:97:3a:60:73:be:dc:
95:58:9e:a4:d7:a4:82:83:5d:d9:bb:cd:34:6c:37:99:31:3c:
ce:6a:56:fc:e9:26:95:aa:e2:dc:ac:3c:80:e3:1f:c5:d7:34:
b2:42:0a:1b:b6:da:db:25:fb:97:20:10:d0:eb:19:d6:8d:37:
b7:84:e2:b3:1f:52:66:1c:2b:c5:bb:ac:76:e9:56:41:1c:2b:
f7:07:07:af:04:4f:53:b7:04:e2:e9:41:8f:7b:ca:e9:2c:d7:
3f:05:20:d2:e0:ed:c4:b3:c3:63:57:58:b0:10:ed:3a:9d:cc:
49:39:4d:c6:10:09:50:6e:2c:6b:ed:48:5a:2c:5f:bb:7b:c3:
a2:45:d1:ca:ad:91:95:d5:61:79:b3:55:b3:cb:21:0e:ca:86:
8d:e3:1a:74:cd:1e:56:ee:a4:ba:88:1d:86:0c:9e:bf:d4:82:
d3:bb:3e:d1:cb:9d:ba:99:2e:54:d9:ed:1c:8e:30:82:f8:ee:
f7:61:45:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:49:44 2024 by rpki-client on console-ams.rpki-client.org