Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1543B4C9F7F11EFB73D754F762E951A.roa
File: E1543B4C9F7F11EFB73D754F762E951A.roa (raw, json)
Hash identifier: EZw8eiQ3x7GJDX+/CObEakXyecDY0carNpupN5blY3A=
Subject key identifier: 94:AD:39:B5:3F:37:C7:7C:1F:9A:FC:38:C0:AF:68:C2:27:38:E1:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B1C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1543B4C9F7F11EFB73D754F762E951A.roa
Signing time: Sun 10 Nov 2024 16:21:46 +0000
ROA not before: Sun 10 Nov 2024 16:21:43 +0000
ROA not after: Fri 17 Oct 2025 16:21:43 +0000
asID: 132813
IP address blocks: 154.205.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68380 (0x10b1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:21:43 2024 GMT
Not After : Oct 17 16:21:43 2025 GMT
Subject: CN=6730dd9a-7c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2d:74:ed:8c:d4:91:da:70:c8:32:4c:69:59:
e5:35:b6:10:eb:db:b6:12:4b:45:e4:5b:19:f6:b3:
94:87:32:0e:71:c6:18:ae:33:56:a7:cd:f9:9e:3c:
12:2e:15:1e:50:4c:f8:e8:ba:f0:a4:0f:54:ec:63:
3a:5b:4d:9b:fe:83:9f:92:b7:7c:02:96:2e:76:35:
7c:32:ed:08:f3:6c:02:80:ca:4f:19:a7:ba:55:45:
79:22:d9:c7:8c:29:d5:94:b9:79:77:d3:d5:cc:96:
72:67:81:19:27:85:50:74:1a:f4:db:a4:64:75:2c:
ea:56:2f:67:0a:e7:9e:58:4f:33:83:94:fe:d9:b4:
cc:81:9b:c3:80:9c:16:e2:ed:b7:ea:e5:c3:23:e3:
2c:14:a9:6d:9a:d1:50:4e:2e:3b:c2:f9:6c:e5:d0:
ac:51:e8:82:a0:7b:a5:ac:54:c6:c3:15:c4:0e:56:
95:fc:b5:38:f5:c7:1a:6b:f2:7a:e7:52:fc:57:0c:
e1:9f:1f:59:65:6b:cc:31:98:03:3d:16:bb:a9:39:
46:ca:c4:d9:3a:1e:d5:c3:d6:8d:bd:fd:8e:50:8e:
89:2c:f3:8b:90:ee:18:58:be:61:da:26:b5:db:34:
34:5d:3d:1a:1d:8e:26:fa:c0:be:9b:63:0e:85:c3:
96:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AD:39:B5:3F:37:C7:7C:1F:9A:FC:38:C0:AF:68:C2:27:38:E1:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1543B4C9F7F11EFB73D754F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.6.0/23
Signature Algorithm: sha256WithRSAEncryption
87:cd:ba:7f:c8:a3:c7:8c:7f:ec:91:1a:12:cd:d7:1a:65:ef:
a9:e3:e9:4f:60:fe:11:7e:a8:aa:7d:5b:42:59:fe:35:70:03:
12:56:78:c1:52:77:90:79:64:9e:62:8c:74:af:86:fd:56:51:
72:fc:3c:18:d0:5b:5f:61:35:bd:2e:14:82:52:b8:d0:c2:cd:
db:18:04:64:a3:46:be:a8:0a:fd:41:f5:72:8f:f3:84:14:90:
fb:6e:7c:24:94:65:40:e6:f6:5d:00:2b:0d:55:d0:03:e1:20:
c8:1e:ca:58:14:b8:fb:50:f1:86:9d:25:8f:88:76:76:e3:9c:
10:56:e8:a6:8d:72:57:c7:bd:a8:5e:6b:d3:d7:e7:c7:9a:1d:
f4:8e:7b:7d:e3:ff:22:b9:d5:c4:be:5a:f0:ff:0f:f4:2c:10:
de:2a:91:48:5f:7d:97:f4:09:ac:4f:58:96:ec:c5:69:9c:ce:
74:1b:01:dc:68:88:87:a2:43:84:78:53:8b:d6:19:dc:d3:db:
dc:39:99:9f:16:20:2c:e4:7a:49:6e:a3:ee:4f:b3:98:31:97:
5f:4c:14:55:2e:2a:c6:9b:0d:bd:07:3e:73:27:b2:3e:c7:af:
4a:35:b7:6b:64:67:5b:89:ed:fc:e3:83:cd:20:b4:3f:77:d1:
2d:f7:be:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:31 2024 by rpki-client on console-ams.rpki-client.org