Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA22E202A9AF11EF99AE4C93762E951A.roa
File: EA22E202A9AF11EF99AE4C93762E951A.roa (raw, json)
Hash identifier: 3JaqnR6F8D9kMJz7/hQj2B6k4In+6j7Sp6sFnB+GsWM=
Subject key identifier: 00:FF:FC:8C:E1:03:6C:61:6C:11:40:54:FA:2B:2F:F3:F1:46:AE:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA22E202A9AF11EF99AE4C93762E951A.roa
Signing time: Sat 23 Nov 2024 15:30:48 +0000
ROA not before: Sat 23 Nov 2024 15:30:45 +0000
ROA not after: Thu 26 Dec 2024 15:30:45 +0000
asID: 8796
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70048 (0x111a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 15:30:45 2024 GMT
Not After : Dec 26 15:30:45 2024 GMT
Subject: CN=6741f528-f055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c3:c4:bf:5e:43:7f:3b:58:89:db:98:7f:c5:
40:78:76:81:d0:a4:19:82:1b:0d:22:10:84:e4:c1:
89:d6:77:b9:c5:68:bf:b2:1a:bb:2e:2b:eb:ad:f2:
f4:f7:5e:ef:ea:e8:b9:03:15:76:60:30:5b:7b:1a:
72:3e:98:85:69:3c:22:33:03:c0:f7:e4:56:7e:ea:
aa:a2:40:b3:1a:72:0d:7b:b1:de:29:95:23:de:d0:
39:a7:8e:a8:b1:de:fa:29:30:dc:ef:45:77:cf:05:
bf:99:49:ef:f1:b6:52:55:1f:18:68:0e:98:13:42:
00:ea:d7:7b:be:ec:13:80:b5:30:ad:15:2e:04:b5:
6b:11:e8:ce:db:25:a9:1e:61:5f:a0:80:bf:8b:f4:
51:9a:b4:e9:20:d2:6f:8a:40:a2:a3:bb:d8:08:35:
40:35:f7:4d:d6:00:b9:1c:5a:6a:8f:50:c0:f5:55:
c5:e3:2f:ca:f9:5f:8a:3f:99:75:39:9d:b5:57:bf:
79:ba:c1:63:61:ac:77:49:37:84:88:9c:06:8e:03:
27:e1:13:a3:2d:79:de:8f:cf:90:f9:15:23:3e:91:
07:81:93:aa:49:f0:f0:89:43:b4:66:24:46:e4:71:
e8:c1:13:70:13:cd:83:4c:b2:d7:08:25:49:85:d8:
16:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FF:FC:8C:E1:03:6C:61:6C:11:40:54:FA:2B:2F:F3:F1:46:AE:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA22E202A9AF11EF99AE4C93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:ac:18:1c:c4:87:60:c1:87:ea:5d:06:ac:35:5a:4b:58:50:
7a:13:da:08:f1:99:fc:0f:4f:de:3f:59:68:a1:26:36:c0:2c:
21:d2:04:30:35:22:5e:a4:fe:ed:1e:a5:b3:81:de:cb:b9:d3:
12:f2:d3:b7:9f:88:0d:bd:8a:05:28:3a:60:dc:18:58:e9:42:
87:ae:68:61:c0:b8:b2:d4:f8:05:c7:9f:7c:95:a0:b2:af:f9:
0f:f1:ea:75:e1:7b:64:6d:ab:cc:64:0f:3d:19:ca:1f:5b:a6:
c2:e8:25:e7:62:77:f3:00:6e:1d:9d:fd:dc:8a:9c:ec:4e:6d:
7b:17:cc:bd:00:01:73:1d:f6:e9:65:f8:6f:4c:32:ac:63:a6:
41:ce:db:61:d2:ae:7c:fe:ea:e2:f9:e6:fe:a7:f5:3e:1f:08:
af:a9:3f:5c:ff:2e:83:25:ee:18:7b:21:3c:ab:77:b6:37:45:
af:7c:fb:30:67:31:81:46:a6:67:fa:6d:21:57:36:6a:31:26:
0a:08:d7:0d:b7:83:61:b6:14:8b:f0:f7:a9:22:74:79:cd:c8:
a8:fd:fc:f2:e2:b8:99:cb:cb:8c:22:9d:f9:87:2a:5a:cf:a9:
d3:06:0f:fd:ca:4e:e3:bc:85:f1:fe:bb:24:36:b3:91:c0:f2:
42:c7:63:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:44 2024 by rpki-client on console-ams.rpki-client.org