Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE82C12AA45711EFA6749D74762E951A.roa
File: FE82C12AA45711EFA6749D74762E951A.roa (raw, json)
Hash identifier: d8De5U8qrA1GuPSiDXeKReOHsBDo1HpVAZKqVbe0E5U=
Subject key identifier: D0:E9:C4:3A:59:12:98:6E:AE:BD:8B:56:EE:A4:54:EF:50:A0:BA:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE82C12AA45711EFA6749D74762E951A.roa
Signing time: Sat 16 Nov 2024 20:18:51 +0000
ROA not before: Sat 16 Nov 2024 20:18:47 +0000
ROA not after: Wed 27 Nov 2024 20:18:47 +0000
asID: 137951
IP address blocks: 154.218.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69187 (0x10e43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:18:47 2024 GMT
Not After : Nov 27 20:18:47 2024 GMT
Subject: CN=6738fe2b-f449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2f:02:13:d1:bd:d1:12:5e:9a:97:c2:6c:75:
1b:ab:4a:9d:04:bc:b7:b0:a0:6f:2b:70:c9:99:f8:
c5:41:7e:ed:13:57:bb:4a:da:6d:e5:b6:06:84:46:
c7:c1:2d:a1:2f:97:37:89:db:17:6c:27:d4:25:85:
64:fb:5c:ae:04:90:49:ed:43:61:97:2f:82:3c:b6:
69:d2:4c:e0:fe:a1:25:51:3f:64:01:cf:90:b2:f0:
a0:d0:b0:c8:46:d4:e3:fc:01:2d:41:ef:38:17:c7:
a3:60:36:58:79:b3:12:38:60:a1:b0:c8:e9:ca:2d:
f4:b7:46:df:a9:e6:62:7a:20:5b:e3:e2:6f:cd:7b:
81:66:3f:fc:ab:9b:46:81:a4:fd:cd:0b:2a:23:39:
a1:d8:37:0f:42:d9:37:f1:1d:89:57:f3:2d:db:3d:
37:01:38:00:f1:48:16:50:d4:7d:f2:52:47:a1:41:
0c:d9:0c:1f:ee:d1:9f:ad:dc:e1:55:8f:ba:db:6d:
d6:bd:26:fa:c5:55:ab:45:50:92:cf:22:90:d6:bc:
55:a2:06:b0:04:7e:5e:86:ce:c2:49:66:e6:87:d6:
36:41:17:dd:ad:88:33:6a:c0:e1:c0:3f:7d:ee:88:
8d:4e:94:1d:53:d8:cd:b9:4c:00:4a:26:5e:a7:f3:
39:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E9:C4:3A:59:12:98:6E:AE:BD:8B:56:EE:A4:54:EF:50:A0:BA:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE82C12AA45711EFA6749D74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.128.0/18
Signature Algorithm: sha256WithRSAEncryption
38:6a:3e:db:56:98:22:7c:9c:ab:c6:46:39:5c:4e:84:f4:f9:
6b:f5:22:34:a4:fb:15:0b:0a:d0:83:4f:3c:9e:89:df:81:b6:
10:6b:28:35:6f:26:4e:67:1c:0e:38:44:ff:f2:6f:d5:7f:28:
58:6d:b0:c1:3d:61:bf:ee:f4:bd:71:05:41:92:7e:17:2f:dd:
93:32:97:66:6b:f4:32:66:6c:16:51:f3:b9:6b:13:2c:52:fb:
6a:95:e9:4f:cd:b9:b6:2e:4b:2f:6d:03:b9:17:63:2b:5c:f4:
63:ba:55:92:5c:c6:49:11:9a:80:36:93:86:a6:59:c5:3e:00:
05:ac:a0:f4:7c:55:e8:41:b3:f5:38:4e:d8:2f:6c:8d:2b:0e:
08:7c:61:7b:d5:63:13:10:7b:05:31:1a:2e:a7:e7:a1:f7:a2:
e1:58:fd:97:2f:fc:bc:df:0d:81:f2:72:74:8c:ea:54:6d:27:
f0:8a:a6:fe:4b:0a:ce:be:5e:9d:7d:5a:3d:d3:0a:9b:6a:f4:
af:8b:00:c8:0a:39:28:d3:e3:6b:81:a8:c8:b1:d7:c2:c2:34:
07:b6:6b:52:c8:bc:95:84:6b:44:fa:87:73:5c:12:05:0f:04:
49:55:36:17:24:ae:4e:a9:1d:68:c6:28:7e:c5:b4:9b:61:10:
07:2e:32:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:36 2024 by rpki-client on console-ams.rpki-client.org