Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D87E8AC495D711EF824D5873762E951A.roa
File: D87E8AC495D711EF824D5873762E951A.roa (raw, json)
Hash identifier: R7n7PexstH49rxeNp8PWWPbwqSspAAld9MKoUUfLvkk=
Subject key identifier: AF:B3:BB:00:FB:9D:73:DF:AE:11:22:49:AD:38:A4:C7:F0:61:95:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010376
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D87E8AC495D711EF824D5873762E951A.roa
Signing time: Tue 29 Oct 2024 09:26:15 +0000
ROA not before: Tue 29 Oct 2024 09:26:12 +0000
ROA not after: Mon 30 Dec 2024 09:26:12 +0000
asID: 138915
IP address blocks: 154.93.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66422 (0x10376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 09:26:12 2024 GMT
Not After : Dec 30 09:26:12 2024 GMT
Subject: CN=6720aa37-0a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fc:8d:72:93:b6:5b:e0:29:55:af:fe:5e:e7:
20:18:9a:b6:0b:78:07:3c:05:b5:ff:3d:2d:62:d5:
23:7a:44:7a:99:60:87:3a:3a:a6:5d:35:81:ed:0e:
da:33:d6:b6:7d:19:c2:9b:e5:f4:54:fe:2a:cd:e8:
bd:55:c5:c8:92:ef:e4:74:17:74:d7:fd:4c:70:b8:
74:95:4e:eb:65:bd:71:d9:c2:89:60:f1:db:a2:17:
f9:e1:3f:ac:e1:a2:0f:2b:58:c7:ec:f6:fb:0a:94:
74:3d:be:74:fd:a6:46:67:6b:70:3a:9a:27:dc:87:
83:33:e1:b1:18:18:08:53:b4:f5:cb:28:cc:7f:fa:
79:07:60:e6:2a:f6:48:06:18:6b:48:01:5c:19:ff:
5e:92:e9:6d:b9:78:ed:0f:63:fa:8d:71:52:d8:8b:
61:f4:7e:71:a9:5b:4e:35:e0:99:5f:a6:cc:54:21:
90:a7:c2:a8:33:b3:19:08:e9:c7:6e:e4:52:48:11:
08:7e:08:75:44:60:fd:a0:71:53:03:4d:36:82:72:
d8:ca:a4:0c:46:3b:df:dc:88:6d:29:d9:90:c7:f9:
8b:05:73:a8:63:ea:26:4e:05:6b:ca:35:d9:68:28:
59:a5:36:26:92:1b:fa:83:63:18:eb:a4:2a:b6:d5:
73:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B3:BB:00:FB:9D:73:DF:AE:11:22:49:AD:38:A4:C7:F0:61:95:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D87E8AC495D711EF824D5873762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.111.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d4:b3:9e:18:d7:5b:04:1d:a4:07:72:97:02:86:9f:b6:6e:
b3:77:58:10:22:83:38:5c:45:03:d3:07:e5:bc:cc:54:75:db:
d5:68:32:30:de:87:fe:1e:20:6c:4f:00:70:31:c5:19:d5:ff:
2d:c9:e1:25:65:2e:ef:39:cd:1a:3a:74:11:17:46:bd:01:70:
49:5e:d0:17:cb:c4:c5:f0:d5:98:0b:ef:67:2a:e3:48:3c:0e:
2b:9a:86:56:62:3f:96:98:66:e8:0a:a3:e0:63:87:92:26:bd:
8c:53:51:17:05:6b:1e:3a:e5:59:5f:e4:fe:76:4c:2e:da:0f:
53:00:ce:76:2c:8a:d2:38:33:78:4f:3c:49:21:bf:bb:0c:b4:
ff:79:36:12:88:ac:a8:48:8f:7e:1d:38:e8:59:17:26:7a:60:
ac:3a:b5:c4:d6:11:45:29:99:29:d3:77:09:41:29:a3:33:9e:
ad:df:6c:c2:cc:36:85:68:21:44:f4:c1:2c:73:5c:05:1b:d9:
eb:60:e9:a4:3d:06:91:ff:fb:8e:17:e0:37:33:a6:80:e4:89:
50:46:31:a0:6c:17:be:cb:e8:f9:22:f3:e9:e9:30:e5:b4:0d:
88:64:aa:a1:52:19:28:4c:dd:32:b4:e7:18:d2:1e:03:04:95:
e5:fb:0f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:39 2024 by rpki-client on console-ams.rpki-client.org