Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D63D8116A8E711EFA84E4AA7762E951A.roa
File: D63D8116A8E711EFA84E4AA7762E951A.roa (raw, json)
Hash identifier: XNPiaOtrqTHWv/zFuqe4Y2/rN4jlwnhCby68eSC+E5c=
Subject key identifier: B0:65:9B:3E:18:14:B1:C4:5B:CE:5C:89:2B:07:2D:D3:7B:9D:40:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D63D8116A8E711EFA84E4AA7762E951A.roa
Signing time: Fri 22 Nov 2024 15:38:36 +0000
ROA not before: Fri 22 Nov 2024 15:38:32 +0000
ROA not after: Tue 03 Dec 2024 15:38:32 +0000
asID: 62240
IP address blocks: 154.194.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69861 (0x110e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:38:32 2024 GMT
Not After : Dec 3 15:38:32 2024 GMT
Subject: CN=6740a57c-7752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c5:09:05:32:d6:d3:66:8a:83:32:ac:36:b7:
9f:3b:c1:7b:50:c4:08:6f:83:13:90:91:72:42:9e:
4c:28:e6:0f:ab:c5:2f:cd:dd:92:1f:a3:33:36:98:
b4:0f:ef:48:5e:b3:4f:44:49:54:a7:12:32:9a:80:
db:da:67:18:d2:29:44:f4:c1:32:0d:39:a8:7e:ab:
66:85:98:c9:57:a6:dd:ad:4c:5d:63:d2:01:8d:6f:
85:c2:9f:8e:e0:0e:3a:2c:3f:d9:59:3e:6a:53:93:
ce:cc:69:3d:40:94:0a:ec:27:a5:a1:76:31:43:12:
b6:ed:ba:e1:91:25:8d:7a:61:dd:c2:fc:b3:be:f6:
5e:10:b4:55:40:60:82:11:2f:ea:97:24:27:cb:2d:
f0:10:93:49:3f:3a:be:3b:57:83:ee:ca:30:36:ca:
10:5c:ca:1f:fe:c1:d0:10:f4:d7:85:df:53:ee:bd:
07:b4:f0:4c:29:b5:58:38:b4:d3:81:67:34:69:c1:
5c:18:b7:00:da:86:be:97:38:18:5f:5e:65:8e:59:
77:77:de:d8:0d:7a:70:91:c6:f7:27:08:88:31:98:
77:7b:61:b9:9d:67:3e:f8:a7:06:30:b5:6a:6d:6a:
68:cf:60:0e:8a:4e:33:d3:25:3b:06:28:88:56:b3:
66:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:65:9B:3E:18:14:B1:C4:5B:CE:5C:89:2B:07:2D:D3:7B:9D:40:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D63D8116A8E711EFA84E4AA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.115.0/24
Signature Algorithm: sha256WithRSAEncryption
69:c2:a9:52:9d:a2:b3:85:6c:c1:43:b5:0d:66:68:d1:c6:78:
cd:15:4b:44:d9:3a:85:83:51:0a:30:e8:80:95:d8:d4:37:79:
f9:41:3b:72:8e:2b:a5:57:7a:9d:e9:4d:ef:a0:82:3f:58:41:
40:31:60:fb:e9:ed:0a:f6:ba:60:03:9b:bd:81:e0:e1:e3:4e:
98:39:fd:66:31:35:e0:70:d8:c0:72:b8:e2:09:79:54:02:03:
26:4d:09:57:f9:b2:7b:9e:cb:74:cf:2f:ef:96:71:d2:31:a4:
21:57:e3:9a:8b:01:bd:f9:11:c5:99:4b:58:e3:93:04:5d:44:
16:1c:ef:84:26:22:c1:76:8b:91:92:ee:25:9a:f2:a0:c7:92:
3b:6e:a9:32:a9:46:4e:6d:54:f4:a8:22:45:4e:82:16:c3:3f:
53:71:6f:c5:aa:6f:e3:b9:92:e1:00:8a:bc:b1:f5:84:a4:b3:
4e:ab:ad:14:77:48:39:29:5d:6b:7a:df:8b:43:63:cb:0c:4c:
46:14:77:e2:ae:d3:99:1f:ff:64:17:0b:f8:69:8e:e3:96:ac:
e1:b8:cc:8f:b5:96:98:b7:f7:61:d7:20:67:aa:77:1e:9e:72:
8b:95:e0:26:a0:ed:be:ab:ad:86:9a:42:9e:25:3c:59:cd:80:
00:d5:e1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:39 2024 by rpki-client on console-ams.rpki-client.org