Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85DCC3EA8E811EFB62EF2AD762E951A.roa
File: D85DCC3EA8E811EFB62EF2AD762E951A.roa (raw, json)
Hash identifier: S72uEBZHlLD5KwinEJmZUs6TmwzTIL/F+Vtarp8igsI=
Subject key identifier: F6:51:11:B7:5A:FA:EC:59:A9:B5:D5:82:70:63:4E:9C:DA:13:53:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85DCC3EA8E811EFB62EF2AD762E951A.roa
Signing time: Fri 22 Nov 2024 15:45:49 +0000
ROA not before: Fri 22 Nov 2024 15:45:45 +0000
ROA not after: Tue 03 Dec 2024 15:45:45 +0000
asID: 62240
IP address blocks: 154.194.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69873 (0x110f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:45:45 2024 GMT
Not After : Dec 3 15:45:45 2024 GMT
Subject: CN=6740a72d-421c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f5:30:b3:ea:ea:64:80:08:3d:4f:15:a1:a0:
05:19:c7:94:a0:ac:72:03:1a:1b:fc:4a:28:f3:ec:
44:62:f1:03:14:f0:08:18:40:f0:7a:10:d7:ef:3e:
1f:1e:14:0b:84:9b:e4:93:9a:30:8a:49:01:84:a7:
94:87:84:ac:2f:55:c9:ac:0e:d9:c7:9d:4e:82:5d:
0a:75:40:ae:c5:ef:2d:c0:85:5c:87:45:80:99:d7:
f8:ad:d7:f7:8e:ff:86:ec:b7:8c:6b:66:8c:d4:16:
b9:25:eb:9d:47:ba:82:70:f2:f2:65:d9:40:48:a1:
2d:a6:a2:68:5d:08:56:8b:96:aa:40:6d:dd:80:40:
16:6e:67:43:5b:1a:81:cf:cf:0e:a1:ed:50:c5:13:
93:64:85:b7:f7:3f:73:4f:77:d1:8f:a3:5d:03:c9:
70:cd:a9:71:b0:63:72:19:03:a7:82:08:a7:f5:d0:
8e:03:32:2c:f6:68:04:49:13:94:fc:d5:be:88:df:
73:c5:6e:2e:6c:2b:bc:ba:6c:d6:0b:6e:d6:24:fb:
9a:82:5c:a5:9a:ba:3b:36:af:c3:13:c6:27:88:7d:
3f:5a:5d:01:d0:62:da:4e:38:00:c8:62:1f:92:8e:
5d:fa:23:ef:33:b6:8b:4b:c9:5f:6c:f9:f2:7f:3a:
9d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:51:11:B7:5A:FA:EC:59:A9:B5:D5:82:70:63:4E:9C:DA:13:53:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D85DCC3EA8E811EFB62EF2AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:54:c6:83:f5:28:6d:d1:db:4e:20:b9:23:72:70:57:9a:69:
35:e3:20:9c:4a:ed:bd:83:2c:c9:61:4a:4e:df:f0:7b:ed:d0:
8b:47:72:ba:ce:ba:fb:bf:ca:2b:29:18:98:d0:72:27:a2:6c:
94:63:6e:54:21:f7:c2:7b:c9:82:e2:b7:37:9e:ac:3f:05:5d:
66:d4:55:c3:39:e6:d8:72:d5:14:94:b3:7d:04:a9:4e:2a:bd:
54:78:92:73:44:a2:dd:f0:4d:64:75:b4:7d:66:e7:8d:8a:17:
53:ba:84:32:90:7a:30:01:b9:e8:1a:b4:ad:0d:53:9a:67:06:
ea:5a:82:31:2c:a1:aa:9f:55:f3:cf:00:36:93:8c:ba:ca:68:
a8:8d:48:03:df:f5:8b:67:82:8d:df:e2:d5:f3:16:16:23:db:
1c:6e:a9:9e:bb:7b:fa:96:ec:14:09:23:a2:ca:36:b5:06:52:
a0:13:75:21:f9:d4:75:04:58:df:2c:2f:ad:84:79:ee:f4:7c:
60:4a:ec:8e:25:c6:f4:54:a2:79:ef:db:b1:08:03:67:bd:6f:
db:28:0a:aa:44:15:fd:14:5b:b8:e6:3f:28:0b:61:14:76:61:
90:f6:42:43:ab:1b:fd:6e:08:c1:f5:6d:fe:a9:9c:5c:38:c2:
dd:f0:31:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:39 2024 by rpki-client on console-ams.rpki-client.org