Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6203B72A45711EF926DCF72762E951A.roa
File: D6203B72A45711EF926DCF72762E951A.roa (raw, json)
Hash identifier: 4i1InwMooGKjBe1vRkFemUVC71S7zodXT7xJloAsKkY=
Subject key identifier: E9:CD:30:40:58:22:8D:43:ED:61:CC:55:EA:02:0D:00:AB:10:DF:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6203B72A45711EF926DCF72762E951A.roa
Signing time: Sat 16 Nov 2024 20:17:43 +0000
ROA not before: Sat 16 Nov 2024 20:17:40 +0000
ROA not after: Wed 27 Nov 2024 20:17:40 +0000
asID: 137951
IP address blocks: 154.221.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69185 (0x10e41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:17:40 2024 GMT
Not After : Nov 27 20:17:40 2024 GMT
Subject: CN=6738fde7-9769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cf:49:74:02:41:a3:25:48:98:03:06:ee:cc:
f1:99:e6:6d:b2:5b:fd:92:fe:81:3b:4c:dc:0a:51:
d8:67:e1:94:e5:00:bf:b0:34:64:eb:57:56:85:11:
d2:4f:17:62:80:33:2a:87:b2:d2:ec:33:77:83:28:
22:b5:24:3a:af:64:11:18:0a:a6:5b:6d:d0:3a:1f:
89:53:d7:00:69:73:f0:ad:4f:05:f7:92:b7:a6:70:
55:93:ae:e2:03:13:1e:ce:fa:92:c4:6c:98:6c:37:
4f:ab:b4:1d:f5:3c:9b:aa:8c:17:02:4a:1b:3b:c2:
c9:d1:c5:c7:f3:15:7a:55:6a:f2:87:40:8f:a9:11:
4d:13:04:d4:cc:94:3a:2d:40:4a:32:1a:87:93:a7:
0d:a0:d4:d3:2a:77:0e:e4:b5:8c:f4:a1:dd:2a:86:
8b:cf:b5:28:40:70:49:1f:ea:fb:8e:45:39:b6:84:
92:c9:69:79:26:85:81:a8:41:73:d6:2b:da:b9:ce:
1e:b7:26:9a:cf:d1:08:f7:bc:0a:00:e4:4f:7f:83:
87:ca:a8:66:2b:1a:02:55:3a:bb:04:71:64:3d:0f:
e6:bc:a1:0e:9a:24:0d:1e:9e:7c:95:ae:94:85:f3:
f2:0e:15:3b:4b:a1:29:68:51:e1:ee:39:d7:3e:7f:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:CD:30:40:58:22:8D:43:ED:61:CC:55:EA:02:0D:00:AB:10:DF:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6203B72A45711EF926DCF72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.4.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:82:b5:9b:54:76:e1:81:8c:17:d1:c5:28:1d:89:dd:d6:36:
25:a7:36:a5:ff:c4:00:45:6e:d1:8f:55:f8:ef:4c:c5:7b:35:
02:b7:a5:93:04:e4:ff:bb:57:8c:01:7d:af:d1:a6:95:19:23:
cf:78:52:a6:01:3e:33:4c:d5:53:22:dc:f1:ea:8a:14:76:c0:
61:fa:0d:19:32:ef:df:6c:94:2c:f9:b4:b2:7b:a0:f8:d7:1d:
01:b9:5f:6e:3f:a2:04:3c:55:be:3a:16:ba:60:c7:97:23:7b:
bd:fb:6d:6b:ec:c7:39:bb:7f:a3:73:89:21:e7:c7:3a:e9:e3:
fe:98:5b:92:31:08:db:55:56:30:03:53:e7:95:63:b8:c1:dc:
de:b1:38:28:05:90:c4:60:70:30:38:41:96:96:74:09:b1:f5:
f4:eb:ca:56:78:7b:83:7f:da:b8:01:9a:f4:46:3c:03:26:e3:
a7:68:43:96:72:99:bf:13:a0:c7:b3:0c:27:e5:da:27:47:3f:
5e:74:91:5d:ca:be:ac:d1:03:29:18:e2:dd:8e:9b:09:18:40:
b5:e9:c3:01:f8:da:c4:53:a1:14:ee:f3:b2:0c:ef:60:e7:5b:
b0:f5:b1:bc:68:3c:e5:a4:5f:08:fd:f1:5a:3a:5d:bd:ff:96:
3f:f3:03:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org