Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0C5200CA8CE11EF97995D8C762E951A.roa
File: F0C5200CA8CE11EF97995D8C762E951A.roa (raw, json)
Hash identifier: P74Eb+dGhC4WQpjL/B96Vp8x0H9lyBEIftgkBy1GDFE=
Subject key identifier: 9A:10:1F:5E:21:82:27:E0:D5:0E:D4:00:2F:BA:75:D9:25:79:F6:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011027
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0C5200CA8CE11EF97995D8C762E951A.roa
Signing time: Fri 22 Nov 2024 12:40:23 +0000
ROA not before: Fri 22 Nov 2024 12:40:19 +0000
ROA not after: Sat 30 Nov 2024 12:40:19 +0000
asID: 137443
IP address blocks: 154.223.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69671 (0x11027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 12:40:19 2024 GMT
Not After : Nov 30 12:40:19 2024 GMT
Subject: CN=67407bb7-b5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:b5:1f:87:04:9b:41:56:27:84:f4:c8:00:
6f:dc:22:d6:a6:d9:3d:eb:c1:e5:f5:47:08:a4:94:
7a:6e:f2:88:a2:a8:25:6b:5c:96:86:f1:01:49:35:
fe:fb:da:d8:40:84:8c:22:73:49:b2:e6:7d:c4:be:
3a:86:0a:50:26:bd:a3:e5:fc:fa:bf:27:7a:0c:3b:
8a:7d:14:91:9a:fc:51:ad:c3:06:b9:95:01:84:82:
c0:ea:8a:37:09:b7:f3:19:13:fe:ba:df:07:bc:d4:
76:b7:7d:d4:d5:3e:f3:4c:8c:e4:37:43:67:c0:81:
9f:bf:37:ce:38:fe:39:a8:97:ee:aa:20:e3:56:42:
bc:85:12:b7:52:30:da:d4:df:43:73:3e:4a:87:1b:
48:3f:70:b7:c2:5f:34:ad:c0:4d:ac:c3:ef:c8:a3:
41:08:6b:ec:66:82:1c:b1:1d:21:44:7e:2f:c4:3c:
37:2c:a7:91:76:40:d2:1b:6b:95:63:60:fe:70:5e:
02:20:d3:b7:0f:80:fc:6a:43:bd:20:4e:3a:7e:88:
3c:0c:94:a6:8a:52:a6:99:c1:c3:f0:e2:f8:2c:d4:
d5:5c:ca:9f:b4:39:07:c0:3a:e9:a8:ba:eb:cd:1a:
a1:d5:69:0f:19:f2:82:af:3e:54:12:05:fb:40:3a:
42:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:10:1F:5E:21:82:27:E0:D5:0E:D4:00:2F:BA:75:D9:25:79:F6:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0C5200CA8CE11EF97995D8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/24
Signature Algorithm: sha256WithRSAEncryption
72:e5:03:01:cb:a0:8b:57:36:d5:2c:d7:85:4f:54:40:b7:61:
76:21:ce:6d:2c:4d:bb:ac:cc:17:df:49:98:c9:e8:cc:a9:d1:
80:fe:6d:16:11:7f:9f:01:d5:65:64:e7:bf:06:86:92:e5:ce:
36:25:45:49:5f:bf:a6:f1:ba:8e:a1:b3:59:ce:a8:44:dd:7f:
08:f7:2d:ef:7b:fb:1e:ec:84:a9:62:41:a6:5c:2d:30:5e:30:
a7:ab:89:6e:15:e1:4a:19:0c:61:b6:cf:d4:83:bd:39:38:87:
d3:a4:0c:14:08:60:7a:11:42:3b:f2:c4:51:43:15:7e:fd:bf:
2b:f7:fc:3e:b0:ff:da:39:85:72:5a:72:62:62:d7:e7:ec:a9:
ff:1a:d0:51:9a:27:04:42:06:4f:13:cc:87:4c:8f:bc:a9:22:
d8:fa:84:87:7b:34:0f:66:90:91:a3:c4:61:c1:be:99:ac:e0:
8a:64:ac:99:28:fb:40:33:c0:8f:3f:9f:b8:73:63:70:e3:78:
42:9c:b4:75:5a:99:20:3e:a4:6a:5d:8a:02:53:02:de:dd:55:
31:3e:6a:92:9e:ef:06:ad:a7:ed:e0:de:af:3c:ac:4b:54:e3:
fa:9e:56:91:7c:8e:c7:5a:20:fa:d0:06:ae:5b:d6:d6:ea:88:
cc:5e:f2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:45 2024 by rpki-client on console-ams.rpki-client.org