Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19A560127B2111EFB18D9A9E762E951A.roa
File: 19A560127B2111EFB18D9A9E762E951A.roa (raw, json)
Hash identifier: etdCXsKAGuK5wpJ+FjDo5sKArsvNkUQkg+JsIHKhJ94=
Subject key identifier: 81:EE:3C:09:92:7A:B8:DD:9D:6F:94:96:D5:AE:B7:B9:B4:91:91:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F350
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19A560127B2111EFB18D9A9E762E951A.roa
Signing time: Wed 25 Sep 2024 09:32:37 +0000
ROA not before: Wed 25 Sep 2024 09:32:33 +0000
ROA not after: Tue 30 Sep 2025 09:32:33 +0000
asID: 211392
IP address blocks: 154.85.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62288 (0xf350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:32:33 2024 GMT
Not After : Sep 30 09:32:33 2025 GMT
Subject: CN=66f3d8b4-56ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:aa:80:50:e1:54:b6:80:8e:16:54:90:28:9c:
8b:d0:59:97:88:ba:64:30:ca:2c:c5:95:1f:31:3c:
c2:48:bc:b7:7e:22:ed:2e:85:e0:13:4f:6a:c8:78:
f7:7c:4a:6e:3b:d6:a3:4f:fe:f7:a6:71:8e:cb:40:
fd:8f:02:79:02:3a:c7:bc:09:55:af:9a:73:29:5b:
07:87:28:10:3a:53:33:88:dd:0a:6f:93:e3:10:1c:
4b:b6:a2:42:3b:9f:b2:b1:78:42:b2:dd:74:d6:cc:
a7:da:ff:b0:f9:e0:19:78:0f:53:58:0e:fe:20:06:
b0:ef:43:c4:eb:cc:09:6b:e8:e3:d8:bb:85:43:8a:
e2:db:32:83:b2:ed:52:44:02:fd:e7:0e:36:f6:88:
aa:fc:4f:3c:64:96:65:ec:d5:e6:87:dc:6d:b9:68:
a0:27:0e:51:1c:a9:98:9f:10:0a:7a:16:9d:4a:36:
31:18:6d:f4:90:1d:50:7e:1e:50:1c:58:67:81:a4:
0a:92:fb:77:36:14:75:1e:d0:c7:47:7a:51:48:cb:
46:37:91:b9:6b:b9:02:75:76:ee:95:31:97:3b:58:
b0:0a:63:3b:2f:c3:7d:ac:fe:aa:dc:54:00:e3:9c:
86:94:14:88:b6:0b:4c:32:5e:c0:8d:d6:25:ed:f0:
a3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EE:3C:09:92:7A:B8:DD:9D:6F:94:96:D5:AE:B7:B9:B4:91:91:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19A560127B2111EFB18D9A9E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.10.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:4d:3e:26:c1:91:48:c8:e2:f1:51:9b:d9:63:3e:51:52:b6:
12:10:f5:b7:c9:b0:7a:ea:41:0c:58:20:ce:89:46:da:85:0e:
12:db:bc:eb:3e:0c:52:99:b4:79:05:60:28:4c:39:0d:24:1d:
a8:dd:e4:4f:b3:01:18:02:5e:c2:ce:e8:3e:b4:0e:66:a5:82:
a3:1d:51:fb:2d:70:3e:6a:e1:14:50:5c:08:2b:7b:54:0e:1f:
5b:08:f2:b1:65:1e:ad:ca:f2:64:e9:71:63:5e:14:c9:1e:f3:
59:bc:75:c9:12:eb:4f:fb:c9:85:59:69:c8:1e:6e:17:dc:03:
4c:8c:4b:22:75:37:66:72:61:d6:bc:1b:a1:72:01:1f:9a:bd:
a2:f6:fd:96:78:60:fe:2b:b1:fd:48:bd:dd:c2:40:78:af:e5:
59:a0:6b:d1:51:32:ca:64:db:bd:8f:b9:5f:03:a1:78:ef:b2:
58:e2:27:70:ce:aa:be:07:ac:75:69:14:64:aa:83:9d:5c:e8:
73:63:5a:31:d4:71:ea:d5:3a:b1:24:99:c6:62:f3:db:1e:f9:
eb:f4:1e:a3:f1:8b:3a:fd:64:72:bd:46:7b:93:67:28:48:ab:
1c:e0:68:09:0e:0b:19:c2:21:99:1e:36:a5:87:46:0c:3b:e4:
f9:93:6b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:55 2024 by rpki-client on console-ams.rpki-client.org