Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3588744A4CF11EF8781F16F762E951A.roa
File: F3588744A4CF11EF8781F16F762E951A.roa (raw, json)
Hash identifier: wjikp25sULHwJzkzEeKm9XkVDBlkUtWfnNhGTA7ZNuY=
Subject key identifier: AC:A4:A9:BD:3C:C1:BF:A2:A2:0B:56:05:65:EF:48:F2:C0:E7:33:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EAE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3588744A4CF11EF8781F16F762E951A.roa
Signing time: Sun 17 Nov 2024 10:37:32 +0000
ROA not before: Sun 17 Nov 2024 10:37:28 +0000
ROA not after: Mon 25 Nov 2024 10:37:28 +0000
asID: 22773
IP address blocks: 154.194.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69294 (0x10eae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:37:28 2024 GMT
Not After : Nov 25 10:37:28 2024 GMT
Subject: CN=6739c76c-d386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:24:78:9f:d3:f8:8b:cc:87:06:e6:6d:4e:f1:
05:04:fb:70:68:bd:04:0a:a8:59:fe:fd:89:77:3b:
eb:89:f0:0b:ce:35:ef:db:7a:19:24:2f:12:33:67:
10:d6:7c:3f:f0:0b:5c:4e:e6:2f:d4:bc:eb:48:2d:
66:0e:32:c6:04:cc:f6:f5:21:8f:a9:7d:1f:ff:b0:
90:d8:06:99:f7:3a:75:e4:1c:bd:7d:26:1f:4c:b1:
8a:c9:b4:07:bd:ff:b9:15:02:74:ab:b6:0e:b5:a0:
5e:c1:e2:f5:93:db:44:92:6c:97:e5:21:19:ac:0e:
85:6e:e5:23:8b:78:1a:0f:f9:08:f6:06:b7:af:ed:
0b:cd:68:55:76:b1:4a:0e:e0:4f:b7:2b:79:d8:4a:
1a:c9:28:83:25:27:f7:a4:ea:92:6f:2e:67:58:a1:
8b:03:06:bb:d6:8b:e2:64:86:95:17:98:12:a3:69:
70:5d:22:1c:b0:18:f0:a6:97:7d:79:ac:8a:1c:9b:
8e:fb:83:7e:ea:72:44:0c:ad:99:92:28:14:23:86:
f5:a0:34:62:7f:8f:91:1c:bd:3c:e3:91:10:b0:97:
e0:a2:59:82:58:dc:e4:f0:de:54:0c:59:c3:ce:75:
3a:e6:5d:c0:2c:0b:1a:8a:dc:72:17:67:b8:4f:f8:
e6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A4:A9:BD:3C:C1:BF:A2:A2:0B:56:05:65:EF:48:F2:C0:E7:33:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3588744A4CF11EF8781F16F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.24.0/22
Signature Algorithm: sha256WithRSAEncryption
51:cd:fe:40:f1:75:98:b2:fa:2d:2a:c2:07:57:26:13:cb:40:
2c:a0:55:dc:be:3e:3d:ec:03:74:73:cd:8f:ab:d2:94:e8:7d:
78:8a:6b:77:cf:30:32:89:56:d9:40:83:d8:fd:8a:f0:db:50:
32:6f:23:99:61:6a:4a:24:3d:d2:f1:7b:dc:68:fe:c8:61:94:
44:b3:7f:09:6a:14:a7:7d:ed:1f:e2:f0:94:d2:a0:6d:6f:cd:
56:48:36:98:7b:55:f4:14:13:88:85:3b:99:f8:ca:3e:a0:89:
da:2d:ac:30:77:19:90:6c:48:9d:02:47:c0:1e:ef:c4:7f:0f:
26:49:4e:bc:e0:66:05:87:0e:b7:85:40:11:19:38:11:c5:16:
dc:16:89:cf:00:ae:3a:0b:cd:b8:91:1e:d8:99:66:78:de:7b:
5b:a2:38:dd:67:4d:32:3c:18:1c:76:2a:a9:72:c7:3a:00:24:
8f:5e:86:14:8a:36:64:64:d6:75:ad:34:ff:fb:b2:2f:19:63:
d2:82:9a:67:09:ed:f2:53:b5:79:96:51:da:c3:b9:93:fd:68:
51:8f:6b:3f:b7:ea:97:6d:19:3e:08:ef:0d:79:97:e3:ee:1c:
02:69:19:9a:0a:de:f8:d5:07:90:98:29:dc:0b:ba:a4:c3:9f:
11:9f:3d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:14 2024 by rpki-client on console-ams.rpki-client.org