Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12505B38F87611EEA6F335F3007001B1.roa
File: 12505B38F87611EEA6F335F3007001B1.roa (raw, json)
Hash identifier: pau09BjCNv0ouCCzJYw0bTElQgIYMcMl6Bh66vxwdIg=
Subject key identifier: 62:6F:6A:2F:82:BB:2E:EF:CA:0F:7C:5F:51:C4:2E:0D:8D:2D:9C:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABB2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12505B38F87611EEA6F335F3007001B1.roa
Signing time: Fri 12 Apr 2024 02:40:49 +0000
ROA not before: Fri 12 Apr 2024 02:40:46 +0000
ROA not after: Mon 22 Apr 2024 02:40:46 +0000
asID: 5065
IP address blocks: 154.85.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 02:40:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43954 (0xabb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 02:40:46 2024 GMT
Not After : Apr 22 02:40:46 2024 GMT
Subject: CN=66189f31-c1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:0a:8b:7d:23:a2:73:4f:c5:94:45:6d:30:
37:c8:05:8f:75:9d:63:a3:5d:f1:01:1c:ec:9c:af:
d2:4b:e5:94:0d:27:5a:5a:d4:59:da:6c:0d:d5:4b:
87:b6:e5:e3:ed:b0:ec:ef:ec:64:ba:a5:24:d5:7e:
f5:7e:82:a9:0d:96:0f:83:8a:54:ae:cb:02:83:4c:
6b:12:95:c4:8e:58:e4:2d:3c:97:fc:81:b0:16:2a:
de:c9:7f:fc:27:8d:ae:97:9d:bc:31:89:1a:8e:38:
79:4f:75:7b:c7:dd:79:a7:01:aa:a5:cd:b3:80:08:
d7:f7:38:5e:58:5f:94:42:1a:2c:21:a0:b9:e9:e9:
c1:3c:45:78:75:6f:66:0b:f7:27:18:29:a2:a5:e1:
12:1c:4a:c0:f3:74:db:c1:03:30:aa:9e:9a:d0:e1:
fc:db:33:f1:cc:fb:d3:e2:a5:85:1b:a1:c1:ce:03:
78:fe:73:22:5e:a8:e4:26:1c:15:03:a3:51:af:80:
2d:96:30:7a:c4:f1:bb:0a:c5:f7:47:7c:f3:0c:ef:
f3:8c:ae:e9:f4:b0:34:eb:cc:21:7c:d5:2e:99:75:
dc:80:6b:f6:36:52:2b:57:45:f7:2a:76:26:0f:c4:
51:c8:99:f1:c2:d2:76:9e:46:78:14:2b:7d:b3:06:
3a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6F:6A:2F:82:BB:2E:EF:CA:0F:7C:5F:51:C4:2E:0D:8D:2D:9C:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12505B38F87611EEA6F335F3007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.16.0/22
Signature Algorithm: sha256WithRSAEncryption
37:38:1b:57:45:60:3c:86:ff:77:4e:b0:59:0c:30:1e:3a:99:
de:a8:ac:fa:0c:57:22:42:27:57:67:31:0a:d3:ba:44:c2:cf:
9e:35:75:b3:da:82:21:f6:07:dc:40:12:84:ba:cc:be:c1:de:
96:4c:b7:50:02:95:9a:cd:39:33:91:4d:bf:d2:08:da:0e:e3:
29:30:90:07:bb:e6:ab:a4:d0:a0:0c:07:d6:37:e0:0c:38:16:
59:c5:17:ca:bc:2d:96:91:17:44:e0:40:3e:b1:c9:02:24:2f:
11:97:8b:ab:db:a2:e2:37:07:e4:6f:6e:f3:36:49:c3:09:d9:
47:08:75:18:35:0f:e3:8e:9a:7d:56:20:b8:83:81:9c:cf:8f:
8a:d9:aa:d7:57:07:45:5e:7f:95:09:03:50:e7:01:2b:c6:6c:
34:3a:dc:5d:91:0d:2a:07:73:0d:76:f4:f1:af:86:be:1b:96:
bf:ee:5d:36:4d:31:47:93:ba:d7:84:64:7d:d2:95:7d:97:85:
fe:61:33:58:e2:4c:37:28:36:89:b6:d5:f9:b7:f4:be:d7:d2:
49:94:d2:08:7c:a9:df:35:2e:1a:e9:14:ce:ab:c2:57:6b:55:
91:98:86:c1:78:d3:2a:b4:0b:29:99:d0:a2:f7:f7:ab:9d:02:
88:06:d4:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:14 2024 by rpki-client on console-ams.rpki-client.org