Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8E2D36E952F11EF822B164D762E951A.roa
File: E8E2D36E952F11EF822B164D762E951A.roa (raw, json)
Hash identifier: PnxVU6yHmbssOJpHL1Os1jjSCYwqgdZ4dCXUbO5UtXU=
Subject key identifier: 6A:16:F1:8A:F7:22:17:C1:75:14:CE:1D:02:81:D7:06:3B:51:F8:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0102E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8E2D36E952F11EF822B164D762E951A.roa
Signing time: Mon 28 Oct 2024 13:24:07 +0000
ROA not before: Mon 28 Oct 2024 13:24:04 +0000
ROA not after: Sun 01 Dec 2024 13:24:04 +0000
asID: 202656
IP address blocks: 154.222.204.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66275 (0x102e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 13:24:04 2024 GMT
Not After : Dec 1 13:24:04 2024 GMT
Subject: CN=671f9077-b91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:01:21:dd:19:1d:c8:39:a3:d1:e9:99:a0:d5:
a9:fa:9d:01:3a:48:a7:f2:f3:de:60:bd:ff:cd:9b:
f9:97:f3:d2:ee:8e:f5:72:0b:4e:3f:b9:1b:96:61:
dc:7b:eb:46:30:7b:e6:7f:37:11:78:8f:93:30:2b:
2d:56:7d:ac:61:0a:fc:b5:bf:81:f5:fb:b4:91:18:
07:30:43:6d:f6:5d:64:bc:19:a1:2d:73:d5:ab:25:
21:cc:31:0a:53:1c:52:40:ea:71:5a:0d:4c:97:29:
86:72:fc:71:fc:2e:4c:2f:22:51:89:69:30:3c:74:
3b:09:ce:bc:c0:ad:22:d5:4c:d8:e4:e6:29:3c:2d:
40:9d:7b:fd:2d:b5:89:35:8f:1d:08:88:db:64:60:
25:03:b9:da:d9:ad:aa:cd:b1:e1:59:5e:1f:e1:57:
44:05:80:5d:36:83:ac:7d:a2:80:f6:3c:cb:3b:80:
22:94:f9:5a:e2:b1:2b:7c:35:e3:78:39:fb:72:e2:
33:6b:21:4d:ff:26:ef:70:5d:65:30:40:88:69:14:
3a:81:7d:c2:ae:98:10:d5:91:c2:25:de:f7:12:46:
e3:46:bb:ba:26:75:4c:dd:c0:b8:3d:a1:41:2a:10:
11:84:0d:11:90:ff:26:df:6d:23:0c:e6:15:9c:af:
fb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:16:F1:8A:F7:22:17:C1:75:14:CE:1D:02:81:D7:06:3B:51:F8:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8E2D36E952F11EF822B164D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.204.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:5e:8b:4c:09:30:64:c9:94:91:01:22:5e:cc:e4:2f:e2:36:
f3:72:82:f1:70:17:95:12:54:64:03:55:5d:cb:5e:ce:7f:23:
e5:25:1b:95:4a:1f:53:04:b9:42:f2:c4:a7:65:a8:9e:44:7e:
31:8a:3c:e3:47:a0:13:79:a4:3e:d6:59:e6:05:bc:ac:65:d2:
75:84:6d:b6:62:c7:56:c7:84:bf:53:ac:8e:57:d2:0d:0e:0d:
0c:e7:7e:f0:fb:7c:e9:b6:c8:b0:d3:ab:bc:e5:64:39:79:26:
de:d6:9c:2a:d5:16:8f:6a:e3:bb:03:e9:72:34:a0:e8:23:76:
1f:ce:90:66:e2:cb:c5:5e:7c:84:cd:d1:04:44:b2:73:20:c8:
1a:85:21:cd:c2:26:dd:91:e4:87:e9:33:5a:08:9a:c1:c2:70:
6a:d8:d3:10:6c:15:6a:3e:e5:cb:7f:11:62:88:e7:1c:43:fb:
51:49:c9:87:12:97:04:66:81:1a:05:25:f9:14:9b:73:d2:4d:
44:4e:15:34:db:3f:9d:32:cc:70:1b:30:ba:c6:65:da:75:9b:
4c:28:61:05:aa:84:72:ce:ad:5d:0c:76:14:6e:27:36:d4:41:
21:d5:cd:1a:40:d6:b8:5f:e4:f8:a9:65:19:b3:77:71:9e:4a:
a6:a8:9f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:44 2024 by rpki-client on console-ams.rpki-client.org