Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5DE560A912011EF9E3D03BF762E951A.roa
File: F5DE560A912011EF9E3D03BF762E951A.roa (raw, json)
Hash identifier: UmKVST4G8NeLmqhQ2ybvIfxUepH0ZSFv4h22EPIrj5Q=
Subject key identifier: 18:9F:A9:C5:24:60:F3:90:C2:91:82:B2:0D:8E:59:74:38:F6:B2:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010100
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5DE560A912011EF9E3D03BF762E951A.roa
Signing time: Wed 23 Oct 2024 09:27:02 +0000
ROA not before: Wed 23 Oct 2024 09:26:59 +0000
ROA not after: Fri 29 Nov 2024 09:26:59 +0000
asID: 203020
IP address blocks: 154.223.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65792 (0x10100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:26:59 2024 GMT
Not After : Nov 29 09:26:59 2024 GMT
Subject: CN=6718c166-0cd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:46:b9:b1:74:78:6b:32:b0:51:07:76:24:fd:
f4:76:b9:4d:06:3b:57:be:1d:cb:44:ad:e3:24:b5:
ad:21:f4:48:af:c3:97:1c:13:27:2a:1a:9a:b9:de:
20:4e:9b:22:32:49:04:99:5e:61:82:48:07:af:98:
49:f0:30:b1:0b:f4:1f:0a:56:b5:f4:99:f0:52:c6:
db:9e:c6:2e:50:2e:ef:c5:01:c4:ae:04:d3:08:ff:
7e:ed:b1:bf:48:20:f0:72:74:05:ed:02:2b:f8:53:
e6:84:4b:cc:8f:de:85:28:5c:49:24:d2:c2:86:81:
e1:8e:69:f0:27:e4:5d:4e:88:ec:74:58:37:d0:8a:
f1:0d:bb:27:81:c1:41:22:f4:0a:a1:8c:62:e0:4e:
56:a8:3f:3c:8a:42:2c:7c:26:bf:b2:d7:c1:7f:1c:
f2:f8:a5:fe:51:eb:76:df:37:7e:06:94:2a:ea:bb:
2e:3b:f3:c1:77:45:f6:8e:49:2f:9f:74:92:9f:0c:
fb:4b:6e:18:3d:dd:bb:19:05:73:e7:e5:fb:51:3a:
a8:ab:36:82:53:3a:53:10:6c:f1:80:fb:7e:85:5f:
db:09:d8:0f:9f:b0:76:86:dc:6e:da:3b:71:38:40:
90:66:ea:96:d5:30:02:3e:f1:ff:45:9d:86:36:91:
10:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:A9:C5:24:60:F3:90:C2:91:82:B2:0D:8E:59:74:38:F6:B2:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5DE560A912011EF9E3D03BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.140.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:99:8d:20:c7:57:a4:50:23:50:e4:4a:b4:fc:ee:71:73:5c:
45:34:16:08:15:85:88:74:7c:19:22:23:f5:30:f8:9e:f1:4d:
55:bc:b9:76:4e:84:c9:a5:3d:2e:36:a9:a3:f2:a8:77:e6:09:
98:32:aa:52:e7:2b:8c:7a:46:f7:33:06:48:16:94:1c:72:c2:
91:19:c0:74:1b:c6:d0:4c:40:13:e7:58:ca:89:90:de:44:19:
a4:bc:4b:f4:7a:04:96:54:31:c7:36:13:5f:0e:10:28:45:c0:
81:9b:77:d7:b4:62:e4:6c:e3:7d:7a:c0:cc:63:d5:cd:0f:9b:
20:7f:5d:34:bd:b1:88:81:c5:df:e7:f9:48:a1:0d:b8:da:9f:
42:34:6b:62:16:25:0c:e8:0d:ee:73:e5:6c:d6:0b:0b:4a:bb:
3b:1a:d2:ce:7e:0a:69:ed:51:78:5e:f0:33:c5:05:91:96:05:
6f:00:bc:70:7a:a4:86:a8:52:96:e1:7f:2c:5e:b0:36:a4:ee:
19:38:52:2f:16:29:ab:72:59:90:7a:ad:19:1e:12:60:2c:8d:
e2:e0:bd:e8:bb:98:c5:ef:2f:95:e6:cf:29:9f:05:69:93:07:
29:70:9b:65:40:77:32:19:32:cb:74:2c:d6:bf:30:ed:86:85:
0f:9b:55:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:35 2024 by rpki-client on console-ams.rpki-client.org