Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4230408768A11EF888320AC762E951A.roa
File: D4230408768A11EF888320AC762E951A.roa (raw, json)
Hash identifier: mSqxb5Hr4s9gch4x86vUMHP3hrvfmm6Ox6yH69gYVF4=
Subject key identifier: C5:BC:47:DC:E9:62:D6:0F:EE:2E:17:82:2B:B8:0D:35:2A:64:56:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F0A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4230408768A11EF888320AC762E951A.roa
Signing time: Thu 19 Sep 2024 13:26:51 +0000
ROA not before: Thu 19 Sep 2024 13:26:47 +0000
ROA not after: Fri 08 Aug 2025 13:26:47 +0000
asID: 133861
IP address blocks: 154.197.48.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61605 (0xf0a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:26:47 2024 GMT
Not After : Aug 8 13:26:47 2025 GMT
Subject: CN=66ec269b-671a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f5:5a:db:cb:2b:f4:95:18:af:99:c9:41:6d:
bf:25:e4:89:ce:c3:75:15:a4:5f:44:39:8b:f3:43:
d5:c8:5b:7f:06:9b:4f:b7:f5:ef:c3:6c:1b:f9:37:
85:11:45:de:58:d2:51:95:1d:15:9b:09:5d:48:f9:
6d:c8:00:27:c0:13:4e:46:5a:98:5e:54:a7:03:6d:
44:51:6c:f6:03:75:ab:63:d7:cb:56:8b:6d:c0:1f:
ce:6d:46:77:3a:45:f6:13:0b:1e:06:73:9c:8a:fd:
e7:54:b8:fd:92:5a:c8:7f:2d:78:11:23:2e:bd:59:
3d:44:e3:91:f9:46:ed:ce:99:a0:87:a9:aa:46:bf:
35:60:b9:86:99:82:f9:5f:2e:ef:b2:76:d0:56:f0:
d4:23:8f:89:11:e9:ab:e7:60:cd:61:20:9a:a0:85:
fd:3d:b0:76:d1:56:f0:12:d5:e4:bf:a0:40:b6:59:
18:5c:2e:22:10:f2:67:25:ce:81:a9:d4:23:0c:a1:
c7:bb:89:f8:db:45:51:45:b8:da:20:38:82:8d:a3:
6f:62:72:11:76:05:c3:b4:a2:9c:d2:ef:7d:df:70:
d2:70:4a:3f:04:92:92:e9:6a:16:90:6f:10:31:b5:
76:be:6e:b5:be:46:21:d9:19:dc:22:72:c8:24:62:
c7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BC:47:DC:E9:62:D6:0F:EE:2E:17:82:2B:B8:0D:35:2A:64:56:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4230408768A11EF888320AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.48.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:5e:c2:45:67:19:da:b3:c0:a1:b9:8c:97:69:2b:30:33:92:
f8:d3:6e:c7:e2:b6:37:e7:94:b9:42:96:ac:48:3b:14:b3:3b:
e3:be:16:b4:9d:ab:a4:e2:c4:42:4d:2a:bf:9a:e7:d7:59:52:
f4:d4:59:ab:11:e7:1e:e9:f5:9d:4b:3e:21:7b:14:48:8d:c0:
bf:41:53:ee:67:95:5e:5f:09:79:02:b0:9c:7b:d8:75:d2:6c:
f4:c3:63:6b:2a:7a:35:63:87:5e:c1:b2:6d:67:d5:14:d1:bd:
da:9b:6f:6c:d4:2a:4e:29:b9:43:0d:d9:f8:84:c5:a7:c0:32:
39:4d:3f:d6:b3:48:bc:76:fe:87:3c:ca:a1:21:b8:dd:a6:3b:
a7:de:a9:9b:1d:97:57:56:f8:9e:25:2c:7b:d2:d4:6e:8b:cd:
8a:28:14:67:03:a8:f7:49:d0:1d:94:17:94:33:08:6b:b6:d9:
20:eb:27:81:e3:58:9f:2d:0b:9b:4f:a1:4d:86:33:96:d3:c0:
cd:18:6f:ea:83:e5:6a:1c:17:46:68:67:27:8f:17:8a:45:54:
ce:1e:09:81:7c:27:fd:92:95:aa:5b:5e:b4:7d:65:62:85:a5:
63:a3:2c:38:09:82:37:04:6d:06:12:6f:92:28:c2:1a:25:65:
3b:61:c7:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org