Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8EA06909B7111EF852D9748762E951A.roa
File: F8EA06909B7111EF852D9748762E951A.roa (raw, json)
Hash identifier: 6lV560LmulSY91PV9e7QeUceTrq8UXFUzxwH7s0pLAk=
Subject key identifier: 97:76:5C:79:82:EE:5A:22:E4:C8:A1:A5:FE:77:E7:C6:E4:33:48:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8EA06909B7111EF852D9748762E951A.roa
Signing time: Tue 05 Nov 2024 12:32:08 +0000
ROA not before: Tue 05 Nov 2024 12:32:04 +0000
ROA not after: Mon 13 Jan 2025 12:32:04 +0000
asID: 212238
IP address blocks: 154.198.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67523 (0x107c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 12:32:04 2024 GMT
Not After : Jan 13 12:32:04 2025 GMT
Subject: CN=672a1048-3e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2b:98:1b:5f:c8:ae:73:c0:23:5f:4d:bf:cd:
6f:93:38:ed:ef:2c:64:07:4b:ff:d9:19:83:2c:4f:
38:9c:58:4a:b4:5a:e0:54:64:64:fc:36:e3:2c:2a:
db:85:0c:1b:14:62:37:b6:19:1b:82:ec:f5:88:7e:
b3:49:e6:25:ce:99:45:c6:06:cc:27:6e:58:18:dd:
43:09:50:07:34:7d:65:d6:6f:d1:3a:a1:f3:ef:84:
aa:68:e0:e4:a1:73:8a:4d:fa:9e:5f:0c:b8:55:96:
9f:ac:63:04:33:17:72:2b:45:81:e3:93:83:d0:e7:
f7:8b:e4:fa:44:3a:75:fc:7d:c6:e8:f2:0d:fd:dd:
4e:50:d5:15:56:e9:72:5c:5f:10:29:31:f7:51:58:
e4:5f:0f:92:bc:1f:8e:ac:96:d0:d8:90:ae:71:76:
ed:90:ed:46:c9:fd:89:9a:85:0f:ec:59:25:df:2a:
51:61:32:57:80:49:08:3e:0c:6b:e1:56:88:2a:2e:
e4:1b:10:9c:33:65:07:fd:e4:a9:7d:11:77:79:b7:
e8:9b:d1:81:29:72:cb:be:1b:c8:7f:71:de:af:38:
5a:b4:7a:2f:6f:d8:d2:da:00:6e:2d:80:d2:d5:45:
1c:e6:0e:6b:a5:64:ef:2a:c3:e4:97:99:c5:fe:76:
0a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:76:5C:79:82:EE:5A:22:E4:C8:A1:A5:FE:77:E7:C6:E4:33:48:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8EA06909B7111EF852D9748762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.16.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:9e:9d:e0:6e:c3:a3:7e:62:5e:fe:41:01:30:fb:9d:58:f6:
da:60:39:be:a4:ff:e9:2f:82:a3:71:95:4f:e2:08:3d:7f:5b:
67:da:60:53:b0:2d:89:8d:3a:03:1f:ce:4a:05:32:38:f9:a4:
d6:4c:22:4b:c0:8e:9b:b2:ef:a1:95:1b:18:97:02:37:4e:d3:
af:b9:87:9e:55:79:68:c9:a8:2f:98:89:70:ed:bd:6e:04:4f:
3c:31:c4:ad:8e:90:e2:b1:9f:87:0c:a7:ca:95:39:b6:ac:8e:
d3:7a:8b:c6:e6:18:a5:4b:47:04:63:c6:f6:2d:c1:88:36:c5:
a9:f0:63:80:14:02:5a:5a:21:56:e8:a7:38:05:38:94:72:cc:
30:67:58:01:27:03:3c:05:76:40:55:9e:36:eb:f1:cb:55:18:
7e:2b:76:9e:22:dd:39:27:dd:20:62:b2:9c:dd:c9:4b:d6:9a:
92:28:b8:84:8d:29:15:57:87:83:3e:02:ba:24:f0:ed:0f:cd:
1a:74:6a:72:fd:16:ff:fa:56:f7:6b:c8:36:97:29:4a:59:78:
b1:9a:63:28:1a:d2:1b:89:23:4b:50:54:ed:ce:ee:e6:28:38:
d6:f1:8f:96:9b:c3:78:02:b5:d3:de:fc:c5:a0:2b:c5:03:9e:
b6:bd:a0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:35 2024 by rpki-client on console-ams.rpki-client.org