Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5991DD28F8C11EFBA85C24F762E951A.roa
File: F5991DD28F8C11EFBA85C24F762E951A.roa (raw, json)
Hash identifier: KU8MmX9YLyyfsEGjhtrfGJpQvVzwbz/qtOoDUKwu2OI=
Subject key identifier: D6:F3:44:9A:9D:9E:E1:D5:A3:7C:6B:51:2C:25:56:38:44:E5:2E:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010048
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5991DD28F8C11EFBA85C24F762E951A.roa
Signing time: Mon 21 Oct 2024 09:15:05 +0000
ROA not before: Mon 21 Oct 2024 09:15:01 +0000
ROA not after: Tue 26 Nov 2024 09:15:01 +0000
asID: 62240
IP address blocks: 154.194.80.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65608 (0x10048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 09:15:01 2024 GMT
Not After : Nov 26 09:15:01 2024 GMT
Subject: CN=67161b99-3b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4c:fc:de:3b:04:d5:17:a0:ad:2b:e6:43:ae:
fb:58:6d:44:67:2c:bd:b5:ea:90:4c:31:2d:e9:17:
a0:e1:4e:6e:6a:71:26:82:25:b9:b3:48:95:da:dd:
aa:e7:7f:ae:cf:2c:6f:90:af:73:97:49:fa:4b:64:
bc:e3:05:a2:bf:e5:10:b6:4f:ba:13:71:35:03:c9:
7f:93:ba:af:a7:30:5d:2c:29:f2:42:5c:62:25:a8:
ba:f0:b7:5f:8a:92:6e:5b:8b:80:71:3d:32:c8:dc:
d0:b4:39:a0:59:ba:25:c3:0c:20:7d:77:be:36:e1:
de:bc:5e:77:2b:66:c7:d9:c5:f6:c6:e0:9a:4a:b3:
b5:dc:bf:9f:31:18:fc:08:01:d2:ce:54:db:32:03:
8c:c6:de:97:44:1c:cd:ce:92:df:23:fa:f5:21:e6:
59:08:bf:ef:c1:45:53:17:1d:ac:36:cd:bc:c7:32:
98:61:87:ec:f5:ce:76:06:4f:aa:3e:58:dd:fc:ca:
43:7a:10:1c:9a:d3:7d:88:01:54:6b:e5:6d:32:47:
1a:89:4d:2b:20:91:13:52:69:cb:a1:06:f5:27:27:
9e:bc:34:48:37:4a:bd:c2:db:81:e1:a2:16:be:a1:
63:fb:b4:9a:d9:a4:44:c8:9a:b4:5c:94:a5:80:64:
70:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F3:44:9A:9D:9E:E1:D5:A3:7C:6B:51:2C:25:56:38:44:E5:2E:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5991DD28F8C11EFBA85C24F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.80.0/20
Signature Algorithm: sha256WithRSAEncryption
90:d8:4c:55:c7:df:f7:36:17:e2:37:6b:d7:78:94:33:94:cb:
51:66:66:7a:44:41:16:88:20:9b:3e:03:aa:42:e3:04:f0:53:
93:47:5a:70:45:61:99:bd:85:c0:dc:18:02:8c:99:55:5f:9e:
49:96:68:d1:a9:4c:fa:65:1f:53:be:6c:f0:e1:11:f5:64:41:
38:0b:f1:76:07:38:90:66:b9:37:78:9e:8a:4f:22:fe:e6:8d:
6b:4e:b3:37:9d:6f:84:ab:6a:4b:2f:ae:65:70:07:f9:2f:96:
4b:e7:48:6e:63:62:7e:eb:93:cc:36:55:2f:5d:f8:2b:bc:e8:
9c:4d:89:24:47:63:b2:8d:d0:c3:44:b8:29:83:a7:93:55:09:
39:29:ba:10:09:55:f6:11:4f:17:4e:b0:a9:a8:37:0d:83:55:
5d:4f:4a:ac:ea:b2:6c:78:8f:61:76:13:86:72:90:39:6a:11:
3b:bd:ed:09:6a:67:3b:6c:d4:29:a0:10:d8:ad:d1:dc:d6:93:
bb:cc:f8:82:1d:ad:e2:47:98:65:9e:e3:be:42:68:62:67:5d:
3c:31:4f:e7:b9:8e:46:67:28:16:c3:04:d6:84:ee:c0:85:76:
fd:e0:e3:44:db:1b:3e:a4:a4:39:2b:60:02:a4:8a:95:ac:62:
6d:2b:34:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:14 2024 by rpki-client on console-ams.rpki-client.org