Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1E4C384A9CF11EF83741E5A762E951A.roa
File: D1E4C384A9CF11EF83741E5A762E951A.roa (raw, json)
Hash identifier: 7z/nrA+AvKvPrqRVD7j7JW6xqtQqh42Fz4godlIeXRc=
Subject key identifier: 67:14:F4:E2:5E:4B:96:FA:94:3D:43:C1:D2:C7:7C:51:09:1B:80:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01120E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1E4C384A9CF11EF83741E5A762E951A.roa
Signing time: Sat 23 Nov 2024 19:19:12 +0000
ROA not before: Sat 23 Nov 2024 19:19:08 +0000
ROA not after: Tue 03 Dec 2024 19:19:08 +0000
asID: 52468
IP address blocks: 154.81.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70158 (0x1120e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:19:08 2024 GMT
Not After : Dec 3 19:19:08 2024 GMT
Subject: CN=67422ab0-4559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:b5:2e:d9:3b:60:ef:95:d3:c5:ac:ba:a9:
51:9d:cd:35:88:01:af:c3:cb:e2:35:37:89:50:92:
69:bc:4f:dd:d2:4e:3a:3a:d6:12:33:1c:b1:e2:2f:
a0:09:3c:f2:28:41:d5:03:3e:bf:8f:ff:ca:5f:24:
03:c3:6d:66:1f:6a:fd:e6:03:1e:6e:f2:e9:05:e4:
0f:f3:f1:cb:be:78:09:23:b8:3b:b2:d3:3e:3d:cc:
00:b2:20:c4:82:27:42:4f:3c:ae:c2:63:7d:96:9f:
92:34:4e:21:9b:8a:8c:8e:8a:06:52:a6:02:ef:50:
64:eb:56:33:a9:b5:c9:5d:cf:38:fc:30:61:96:1f:
a0:10:78:9f:98:59:1c:76:3b:1a:fb:2e:89:7c:c3:
ab:01:7b:d9:73:56:93:f6:74:14:d8:fe:99:58:fe:
8d:55:18:c3:72:c0:97:36:6b:c5:be:00:cc:1d:bf:
64:56:68:de:56:4e:3e:f1:08:a3:b0:2b:35:ff:58:
57:3a:ba:29:c2:3e:a9:54:60:a3:c6:8d:64:87:34:
ce:98:1a:9c:b6:ab:5b:74:b3:c7:f1:e6:55:53:df:
b2:78:5a:9d:c1:dc:f4:d0:43:77:ef:8c:f2:07:62:
1f:4e:41:c4:ad:4f:f2:45:07:ae:39:13:bd:4c:a7:
a0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:14:F4:E2:5E:4B:96:FA:94:3D:43:C1:D2:C7:7C:51:09:1B:80:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1E4C384A9CF11EF83741E5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.221.0/24
Signature Algorithm: sha256WithRSAEncryption
56:46:db:dc:c4:87:17:63:0d:52:3e:e2:78:fe:15:07:fa:42:
5a:c8:9b:d9:51:87:d2:05:3b:90:f0:0e:67:cd:e3:fb:96:07:
48:7d:1e:ab:6d:e2:85:22:0d:5c:2e:31:01:05:2d:66:15:07:
2c:7a:f4:17:d9:e5:ee:02:2a:35:25:96:09:78:5d:03:82:93:
65:1b:7e:d7:dd:fb:12:0d:a0:42:d3:5e:9a:7b:69:11:48:28:
32:34:c3:b1:3c:5b:c8:2d:4b:19:d8:e8:ea:0d:ed:af:e5:86:
d8:5d:5f:ca:d0:62:57:3d:3b:7a:fc:99:45:c1:a7:fc:26:d9:
a8:24:79:4d:3a:ff:c6:bf:81:2b:67:76:28:c5:95:8f:0a:f8:
83:98:e5:a9:bc:00:a6:db:1d:e4:ff:96:42:5e:a7:0b:1c:26:
44:f6:3a:e7:2b:8b:aa:42:65:01:2b:65:33:df:f3:64:10:d2:
2d:1d:50:f0:c1:7d:26:63:29:6b:47:97:f0:46:63:76:67:60:
46:e4:27:90:62:b3:60:37:a0:02:a0:6f:7f:67:3b:dc:4d:9f:
09:bb:04:9c:b7:2d:7e:19:a5:6b:8f:ef:29:e7:f5:58:2d:05:
29:f2:78:aa:6b:9e:9e:29:29:fc:0c:48:7a:1e:84:a4:f8:99:
7e:36:b2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:38 2024 by rpki-client on console-ams.rpki-client.org