Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAB71F4E73FA11EFB660BB9B762E951A.roa
File: DAB71F4E73FA11EFB660BB9B762E951A.roa (raw, json)
Hash identifier: FCnZ1Ltesn0sb1895h0uAKIdxAq7BlmTa+9pEgdPNu0=
Subject key identifier: 71:3E:E0:27:10:14:17:37:19:2B:BB:10:EF:EF:1D:3E:86:3E:14:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF6F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAB71F4E73FA11EFB660BB9B762E951A.roa
Signing time: Mon 16 Sep 2024 07:11:12 +0000
ROA not before: Mon 16 Sep 2024 07:11:09 +0000
ROA not after: Sat 30 Nov 2024 07:11:09 +0000
asID: 142403
IP address blocks: 154.221.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61295 (0xef6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:11:09 2024 GMT
Not After : Nov 30 07:11:09 2024 GMT
Subject: CN=66e7da10-00a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:a3:34:8a:36:3c:1e:21:73:84:e1:f1:a2:
d3:bc:16:a8:95:f1:6d:85:1d:2d:c6:5f:ad:b6:5a:
7c:fc:4f:a7:ab:3e:31:65:34:3e:f3:f9:39:0f:01:
ac:8a:b5:15:e9:1b:74:9e:3b:96:f9:aa:f9:00:2a:
ce:86:4c:88:61:a0:f9:2c:2a:43:bc:83:2e:de:1d:
74:3c:98:38:8a:84:48:da:ab:b2:61:8d:34:87:07:
f5:1f:e0:5d:73:7a:53:55:8d:74:07:34:c3:08:c7:
aa:75:f7:8f:fc:3c:c6:55:20:67:13:64:9a:d8:5a:
66:fb:c6:ee:8c:30:73:48:29:3b:62:a2:9c:65:e4:
c5:5a:76:45:84:7e:09:02:58:97:50:c8:78:cc:fb:
af:d0:bb:86:9a:19:f3:e8:f2:98:ac:2c:ce:fd:90:
d3:90:dd:98:ea:da:86:f3:1e:57:33:c0:20:3e:68:
5a:06:d2:c4:36:19:58:8d:17:92:d5:30:10:71:b8:
a7:90:b1:87:76:52:4b:20:30:0b:31:38:c0:a5:69:
19:79:62:27:50:63:1b:98:7d:ae:de:3e:5b:76:eb:
ea:48:d9:10:86:d1:61:11:a9:b5:d0:8a:66:88:6b:
de:90:64:83:ba:29:7f:d4:6d:1f:59:0d:17:69:fb:
81:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3E:E0:27:10:14:17:37:19:2B:BB:10:EF:EF:1D:3E:86:3E:14:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAB71F4E73FA11EFB660BB9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ca:ea:98:7b:60:f0:eb:63:1a:9a:26:1b:9e:1c:b3:bd:0f:ad:
40:38:8b:54:2c:fc:b1:6f:59:86:ea:eb:f0:39:e4:6d:e6:54:
56:60:ad:4e:9b:4c:27:8b:ac:86:38:30:f2:d9:1a:a5:60:8c:
af:36:7d:4d:75:6a:68:1b:25:a6:d3:f2:94:46:0a:8f:bc:f3:
f7:5d:1b:c0:7f:06:0f:88:03:fd:6b:3b:d2:34:2e:fb:62:1f:
14:d4:33:e7:eb:35:65:45:fb:45:78:3d:ff:b8:37:96:1d:56:
d9:2b:00:d2:aa:46:7d:a1:de:97:a8:12:44:1d:18:ff:67:9c:
e7:bc:ce:a3:99:2f:9d:a3:6e:90:93:ad:a3:05:14:22:2d:cd:
69:34:b7:dd:80:ee:e0:ee:93:77:34:fc:35:28:57:f4:62:ab:
99:cf:4d:8c:76:59:77:74:29:6d:cd:e3:8d:4f:f1:80:17:14:
ac:6f:67:9e:1e:b0:32:ad:d0:2f:a8:69:e4:27:f9:bb:4a:96:
d0:71:70:79:39:9e:f7:4e:eb:a3:c0:6a:a1:31:73:59:06:13:
21:a9:1a:2e:dd:ad:08:00:ea:4e:e0:fa:1a:98:4a:f1:f8:6d:
cf:8f:f3:87:6b:6d:9a:30:53:86:a0:77:17:c3:af:fa:1e:35:
97:54:29:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:30 2024 by rpki-client on console-ams.rpki-client.org