Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D071041CA8EA11EF829AA0B8762E951A.roa
File: D071041CA8EA11EF829AA0B8762E951A.roa (raw, json)
Hash identifier: OYCDoT7VGnP9Tu4+ZLnviiARwZv3JPFcuudj1tQt3jM=
Subject key identifier: 38:3A:FF:DA:FA:A9:45:B2:8C:1C:97:DF:E0:41:3E:4A:8D:98:55:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011109
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D071041CA8EA11EF829AA0B8762E951A.roa
Signing time: Fri 22 Nov 2024 15:59:54 +0000
ROA not before: Fri 22 Nov 2024 15:59:51 +0000
ROA not after: Tue 03 Dec 2024 15:59:51 +0000
asID: 395886
IP address blocks: 154.201.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69897 (0x11109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:59:51 2024 GMT
Not After : Dec 3 15:59:51 2024 GMT
Subject: CN=6740aa7a-f505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:06:8d:ec:23:17:14:ed:0b:c6:77:3e:04:f9:
18:f3:5d:f5:48:b0:7c:66:54:2e:d2:af:36:fa:95:
e9:08:bc:29:32:ba:27:70:06:58:8b:62:c4:e9:ce:
be:b7:d6:d8:b9:ab:36:e4:a8:0c:ae:f7:2a:ce:3c:
73:8a:e6:88:a3:bf:e8:bd:00:6e:8b:22:fc:3a:a4:
39:55:61:55:29:51:01:03:af:c3:4a:d6:61:d9:de:
da:17:1d:87:8e:58:65:f4:98:98:78:90:72:65:61:
f1:35:63:56:e0:d7:97:2f:d5:cb:e8:7a:59:34:db:
1c:92:0a:39:ab:6e:a7:5a:91:87:6d:f4:d1:ce:95:
2f:16:4e:45:b3:24:2b:03:f7:6c:3b:bd:1d:dd:35:
68:85:fa:59:d4:c3:cc:2d:c1:0f:e1:c9:98:af:ac:
64:97:04:95:56:26:84:ad:d5:28:09:91:bd:69:f5:
26:df:69:84:21:1a:44:2f:2e:4f:58:4b:cd:c3:d8:
09:1b:9f:ac:23:6f:25:28:9b:a3:f7:69:ca:2c:2f:
29:d0:9f:bd:e1:1d:12:33:47:cf:cd:81:28:93:99:
fc:15:52:4d:35:ad:2e:b1:c5:06:80:bd:28:4d:fa:
f0:00:25:7b:88:f2:53:53:05:55:c6:eb:2d:17:16:
b8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3A:FF:DA:FA:A9:45:B2:8C:1C:97:DF:E0:41:3E:4A:8D:98:55:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D071041CA8EA11EF829AA0B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.88.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:b6:19:01:71:7d:45:52:47:c9:04:ec:63:ab:84:00:bf:da:
e8:64:b7:51:f4:bb:52:20:e3:09:ea:c2:b0:36:98:b2:7d:c1:
35:e2:60:56:cb:1b:c8:da:17:e8:2f:6d:a9:7a:c1:f2:be:4b:
6b:7b:9e:4a:3d:bc:2e:1a:11:22:22:a4:c3:13:31:ce:0f:ea:
55:c8:a3:a1:73:6c:ff:46:6e:76:dd:28:df:54:c0:bf:42:ae:
a9:90:58:96:16:3e:36:c1:52:d9:bb:f4:f7:e3:d2:d1:a9:f5:
b9:7b:e8:8e:ca:76:12:6b:b5:e8:6e:5e:0f:d0:f0:6c:8c:18:
d3:7a:fa:ec:8c:83:78:e4:fe:06:b5:3b:44:29:8d:ff:3b:ea:
92:1e:87:72:dd:f2:9d:95:4c:bd:4d:e4:3c:fe:9d:78:94:c1:
66:8c:2a:cc:36:10:2f:4e:19:07:de:bf:66:8c:a4:30:52:8c:
7c:75:a5:e3:73:e0:7c:e8:be:3c:af:12:32:66:da:c2:04:ad:
cd:d8:f4:3c:85:e1:c9:51:f5:d2:3c:a6:4d:da:98:26:7c:7d:
53:ef:8b:a4:10:a4:af:2d:bc:ee:11:5e:f6:14:e4:b0:74:14:
8e:e7:d6:19:66:f4:5c:61:27:a3:72:0f:ff:e3:bc:01:5f:5a:
4d:65:39:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:37 2024 by rpki-client on console-ams.rpki-client.org