Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD91491A3F5C11EFA101DD82762E951A.roa
File: DD91491A3F5C11EFA101DD82762E951A.roa (raw, json)
Hash identifier: XtgJURtHsbbCG4lWWp9eXWJZ/9orlIDRgUeW+A35hh4=
Subject key identifier: B4:6F:ED:34:03:69:B2:AC:B2:1A:D2:8B:2C:0C:EE:91:2C:D2:C6:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D0A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD91491A3F5C11EFA101DD82762E951A.roa
Signing time: Thu 11 Jul 2024 08:09:16 +0000
ROA not before: Thu 11 Jul 2024 08:09:12 +0000
ROA not after: Thu 24 Jul 2025 08:09:12 +0000
asID: 151196
IP address blocks: 154.204.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53416 (0xd0a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 08:09:12 2024 GMT
Not After : Jul 24 08:09:12 2025 GMT
Subject: CN=668f932c-93b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:61:24:59:f7:ba:51:80:bd:7c:4e:4b:99:
bc:4f:76:00:5f:91:70:9c:b3:07:5e:71:f0:51:54:
b4:b0:bc:09:7d:c0:68:6b:46:28:4a:d3:51:03:c5:
66:c1:db:0b:07:02:5d:e9:3d:5c:66:a8:0f:4b:36:
6d:dc:f7:f9:58:58:cd:9f:69:f7:5c:6e:2a:3b:9a:
36:e9:7b:59:ed:e9:88:36:1a:4d:5d:45:e0:e1:d7:
fe:78:96:06:ef:4f:ad:d1:06:a7:35:93:35:41:74:
61:e8:75:c5:a1:6f:67:7f:4c:49:30:f5:aa:09:aa:
fa:41:e3:4a:ab:ec:f8:d1:04:f7:0a:b2:be:38:40:
0e:9f:31:61:95:03:19:ed:52:27:4f:ef:e0:26:be:
ba:0f:87:46:d0:27:35:c8:28:81:b3:91:9c:be:cd:
ea:75:59:3c:65:99:8c:c7:ca:8d:f2:1f:c6:89:1c:
fc:f0:7e:91:8f:8c:d1:9b:69:22:fd:33:eb:19:3a:
6b:05:b3:bc:61:aa:51:60:41:88:d8:b8:0b:a9:4a:
d8:89:28:19:23:2c:60:6d:7b:43:f6:90:bd:79:54:
7d:2b:51:35:88:06:65:df:50:43:e7:2b:19:b7:fc:
6f:2d:7c:65:01:d6:21:b4:d6:14:db:48:b2:20:a0:
1b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6F:ED:34:03:69:B2:AC:B2:1A:D2:8B:2C:0C:EE:91:2C:D2:C6:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD91491A3F5C11EFA101DD82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.53.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:1d:7d:44:fe:6e:ef:aa:7e:24:ab:02:7a:5a:3d:08:b3:84:
54:55:ef:74:a4:7f:2e:f6:6e:3c:8b:63:20:dc:d1:1d:77:93:
96:47:cf:e9:c6:c1:b9:b7:8e:16:2b:9e:aa:32:86:62:9c:32:
c6:2b:81:8e:5a:89:cb:a8:2e:c8:6d:9c:ee:3c:83:4b:d1:d7:
ce:82:db:b4:b2:39:3f:9d:b0:8b:6d:2c:75:79:64:72:79:a2:
08:04:91:b0:9f:72:dc:e6:25:28:ea:6a:87:a5:be:25:1e:20:
67:a1:95:5d:56:df:5f:c6:43:14:7b:53:10:dc:39:8f:84:e8:
c7:ee:02:c7:47:53:fe:41:20:56:f5:fe:7c:3f:a1:1d:50:b3:
bc:3c:db:c1:39:ab:9c:3b:87:82:36:b5:b5:3e:fd:b6:fa:64:
f9:a6:98:43:94:98:2f:1b:3b:89:35:73:3c:d7:bc:43:17:4a:
0c:9e:fb:5f:90:6f:1e:d4:ba:4b:b5:b0:10:13:5a:4e:1d:3c:
c8:4e:9d:ed:c7:29:c1:3f:09:79:53:69:cd:a3:25:69:8f:28:
34:b0:7b:62:84:f6:c3:2e:f1:f9:24:24:0c:c3:86:d3:c3:b0:
0a:c6:55:9e:76:32:61:79:a1:a3:70:32:e5:fe:84:c8:b3:a2:
f5:2e:f4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:41 2024 by rpki-client on console-ams.rpki-client.org