Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6E0B648A26F11EFA06BA372762E951A.roa
File: D6E0B648A26F11EFA06BA372762E951A.roa (raw, json)
Hash identifier: /MKdg63+ptrse1t0qPi1pb6Noi5YNGeLrMuQdrIfOZk=
Subject key identifier: E6:CE:DA:1D:3D:FC:A9:2C:7A:98:4E:EC:6F:34:DA:3B:47:E1:01:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6E0B648A26F11EFA06BA372762E951A.roa
Signing time: Thu 14 Nov 2024 10:04:30 +0000
ROA not before: Thu 14 Nov 2024 10:04:26 +0000
ROA not after: Sun 24 Nov 2024 10:04:26 +0000
asID: 151800
IP address blocks: 154.197.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68876 (0x10d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:04:26 2024 GMT
Not After : Nov 24 10:04:26 2024 GMT
Subject: CN=6735cb2e-9bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:a4:5c:f0:da:a4:96:d9:c5:51:1d:d1:59:
eb:a2:30:87:50:43:e6:24:bf:a8:1f:1d:11:40:cd:
72:10:54:0d:69:37:60:66:55:40:cc:6f:90:a6:ec:
f9:2d:28:a3:65:20:7a:f4:61:97:7d:ba:0a:c2:64:
b3:8a:fa:55:42:01:ef:c3:a3:08:c6:d9:46:f5:bd:
86:d4:00:fa:db:ef:b0:9f:82:58:f0:40:fb:80:1c:
5a:b8:f1:c6:33:2a:4a:16:e4:cf:e7:3a:87:cb:ec:
0a:f5:2c:22:17:ac:7f:4d:e9:f4:ee:02:8c:13:75:
40:6e:7a:f3:87:df:13:ed:66:9a:48:14:51:49:7b:
03:4a:53:76:b7:7d:24:28:b1:c9:dd:2a:19:32:bd:
08:d0:43:be:42:be:52:3b:95:0f:60:51:cb:e5:86:
f2:e6:43:8a:fd:07:fc:f6:53:ff:cd:0c:93:26:4c:
8b:98:22:37:bc:70:0f:51:6a:80:50:67:b5:17:aa:
89:d4:5c:25:63:32:13:3b:57:65:18:85:c6:3e:16:
e2:42:42:f0:28:de:cd:99:99:68:81:6f:40:26:45:
b6:e4:5a:79:19:c3:12:de:e8:01:42:9d:5b:53:f7:
38:0a:3f:5e:99:f4:ce:81:4f:ca:cb:bc:21:fc:06:
b9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CE:DA:1D:3D:FC:A9:2C:7A:98:4E:EC:6F:34:DA:3B:47:E1:01:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6E0B648A26F11EFA06BA372762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.89.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:25:eb:11:1e:b9:ce:9d:8a:de:2a:ff:7e:80:60:0b:64:cb:
0e:5f:9e:8c:b4:54:bb:3e:49:6f:3a:8b:e9:e9:6e:63:cd:6d:
6f:c0:98:8a:75:a7:5f:0a:70:1a:dd:51:18:ed:63:a5:8d:b8:
e9:dd:00:53:86:58:49:a4:e5:13:33:e4:b0:d1:46:d6:b3:90:
f3:44:c7:03:0e:75:c9:2c:b1:04:2c:fa:37:94:a8:d1:40:cc:
ad:4f:af:b3:ec:dd:14:e4:cf:4d:78:0b:d6:f8:46:6a:07:69:
1d:25:1a:f3:5b:d3:6c:0e:a6:ca:17:d5:7a:4a:06:42:3e:ed:
7c:a2:9e:f8:7a:b1:78:67:8a:11:1d:93:ec:2f:9d:82:41:8d:
59:9f:38:7f:06:b1:e4:df:d2:1c:b3:a6:f3:4b:2a:81:ba:17:
c6:61:c3:e1:f9:80:d5:34:49:cd:ec:f8:b7:30:cb:7d:7d:5e:
27:4e:ee:ba:83:6b:02:03:76:9f:47:8c:7c:72:f5:75:a0:da:
f2:c3:9f:9c:12:36:1a:5b:0f:46:f6:54:c6:0c:1b:de:6f:ba:
7c:b9:f3:c1:57:7a:6e:fb:61:6f:eb:57:ab:f8:37:bf:31:44:
ac:e8:e7:e1:a0:50:0c:8b:49:68:ef:e1:b2:72:04:39:f3:6d:
ed:a2:2d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org