Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F60B725C92B511EF93ACFEB5762E951A.roa
File: F60B725C92B511EF93ACFEB5762E951A.roa (raw, json)
Hash identifier: ZlNlsbhil0/YZcDsU6tmmZlZT4pTYjQrgr2gyyXNpNA=
Subject key identifier: 17:56:CA:57:50:FE:8C:B6:AB:B4:B6:BB:C2:3B:FD:C8:07:40:A8:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F60B725C92B511EF93ACFEB5762E951A.roa
Signing time: Fri 25 Oct 2024 09:46:09 +0000
ROA not before: Fri 25 Oct 2024 09:46:05 +0000
ROA not after: Sun 01 Dec 2024 09:46:05 +0000
asID: 202656
IP address blocks: 154.221.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66044 (0x101fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:46:05 2024 GMT
Not After : Dec 1 09:46:05 2024 GMT
Subject: CN=671b68e1-72dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ae:67:c6:a0:70:a2:7c:21:67:95:65:30:ab:
e3:80:fb:10:57:93:f1:5a:75:6c:09:3b:49:61:a8:
56:0e:6b:2c:7f:bc:17:89:1f:93:8a:f8:ef:fd:f3:
83:ce:71:ed:f1:54:49:0a:cf:2d:c1:c3:45:c9:91:
38:03:0f:5a:1f:31:b5:54:a5:63:c1:2a:f9:42:c9:
22:a2:e0:eb:f4:4c:27:b8:d6:a6:91:93:3a:60:d5:
f8:e9:0e:70:41:a4:ff:d7:6a:d2:67:20:5e:5a:ad:
4d:89:b3:93:57:1d:1b:29:76:64:6f:e4:9c:1f:e2:
6c:8b:d8:b4:c7:60:b0:dc:87:9b:ea:cd:ec:31:22:
a4:ae:98:01:21:2b:94:53:ba:24:64:0f:bb:b2:a8:
9e:ce:c4:4b:94:e5:0c:f4:8e:7c:e3:a2:a3:de:0b:
1a:03:82:82:13:08:64:4f:80:43:1e:b8:64:ec:c8:
54:2e:78:d9:b9:a8:46:41:58:f8:d0:c1:ec:69:20:
fc:1b:85:1c:11:68:37:46:ec:28:78:0e:25:b3:ff:
62:3c:dc:4b:91:50:4e:d4:5e:85:f8:5c:db:6d:a1:
f6:e8:78:1e:c0:d0:80:ca:75:86:7b:64:5f:01:3a:
b6:e7:e5:1d:65:ef:bc:93:a3:fa:1d:21:20:39:61:
ec:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:56:CA:57:50:FE:8C:B6:AB:B4:B6:BB:C2:3B:FD:C8:07:40:A8:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F60B725C92B511EF93ACFEB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.52.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:e5:cd:e9:fa:7c:16:52:8b:09:0e:cc:87:41:a9:b7:78:6e:
0f:81:06:d0:42:9b:fb:14:ad:6c:de:19:d2:66:52:db:ab:47:
c0:b3:da:8c:86:8c:99:6f:d7:24:24:e2:d5:58:61:c1:1e:5b:
d7:26:16:b9:27:d7:a9:2a:f0:57:73:02:04:73:70:46:d6:21:
1d:c7:8f:40:07:1a:53:6e:e1:7c:69:58:5b:c5:3c:88:11:98:
ad:8d:d7:0f:fb:88:61:97:c6:4e:de:54:9b:95:f1:96:0f:26:
73:5a:00:7b:fa:c0:01:7f:e7:4d:1e:8b:d7:08:65:05:5a:a6:
5d:2c:07:a0:2f:ba:a4:8e:fa:9b:18:b9:e5:c5:38:1e:f9:02:
b3:5e:0a:9f:0b:30:f5:7e:ae:d4:04:77:ae:fd:2d:15:a3:71:
99:59:8f:ba:8a:f7:a5:4f:01:c1:50:07:38:33:59:51:58:b3:
42:36:0c:33:f5:8a:38:d1:d2:bd:05:ff:71:27:72:c8:a5:70:
f9:57:18:f0:18:bc:85:af:aa:85:54:48:81:b9:34:79:df:d9:
62:14:23:83:8f:f5:52:91:f5:88:a8:5d:17:e8:2c:66:e7:11:
ef:50:4b:e2:6b:08:41:a3:81:c3:2d:aa:d4:a9:f4:6e:7a:1b:
d0:db:50:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:46 2024 by rpki-client on console-ams.rpki-client.org