Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ABF4948A30111EEBCF28918D25BE465.roa
File: 1ABF4948A30111EEBCF28918D25BE465.roa (raw, json)
Hash identifier: saGYDbiegBogzPnX3dAcamKwPnT9oPLbLIfGv6P0L7o=
Subject key identifier: 76:96:94:81:5E:92:08:08:CB:F3:25:7E:9F:6B:58:17:74:0B:B6:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6705
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ABF4948A30111EEBCF28918D25BE465.roa
Signing time: Mon 25 Dec 2023 08:39:23 +0000
ROA not before: Mon 25 Dec 2023 08:39:20 +0000
ROA not after: Tue 07 Jan 2025 08:39:20 +0000
asID: 149981
IP address blocks: 154.85.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26373 (0x6705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:39:20 2023 GMT
Not After : Jan 7 08:39:20 2025 GMT
Subject: CN=65893fbb-bfeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bb:86:55:40:d4:06:9c:04:1c:8e:da:fc:8e:
d9:f9:7d:d4:8a:4d:df:5c:48:25:a3:3f:a4:06:6e:
b1:9a:a7:12:8c:52:71:af:d7:56:8b:a3:c7:e9:ef:
a3:62:fe:50:2b:82:c1:f7:26:0b:7c:03:01:06:27:
2a:32:fa:fe:e4:5f:f1:45:12:3d:cb:43:0c:65:97:
9b:3d:d8:f4:62:f6:db:4c:ee:2e:d9:cf:d7:fb:43:
64:68:59:e4:eb:14:49:06:70:14:36:83:0a:e2:e7:
96:48:0f:7d:8d:de:06:dc:0a:ba:fe:a7:9a:f7:59:
72:1d:29:ce:e0:20:a8:5b:40:a6:7a:65:65:0d:a3:
a7:d0:57:24:fc:d9:91:5b:16:bd:70:22:c9:1d:8e:
aa:5d:f4:50:76:b4:52:80:d8:a0:42:c4:22:af:2c:
7d:9d:d8:eb:f4:ce:01:fe:6b:93:f8:43:ea:fd:64:
d0:4f:73:cd:d1:72:35:87:c0:5a:16:5c:11:58:21:
68:cc:e9:e3:02:5c:dc:c8:21:ad:ab:3f:69:58:0e:
86:cc:a2:e3:5b:ea:64:b3:8a:76:41:e1:17:ed:f7:
e0:16:16:30:ee:d0:78:4a:f7:24:19:d9:f6:4b:71:
0e:93:b4:23:56:4a:5d:af:2c:d7:1e:3e:a2:34:46:
21:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:96:94:81:5E:92:08:08:CB:F3:25:7E:9F:6B:58:17:74:0B:B6:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1ABF4948A30111EEBCF28918D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.89.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:0a:6d:b3:aa:36:c9:7e:02:b7:5f:b5:84:ed:4a:81:a3:ff:
2c:25:61:f7:ae:f8:28:d3:a7:7a:2a:5c:9d:e9:93:57:f4:d8:
12:2a:7b:7e:5e:9b:90:b5:91:a3:81:8f:3c:37:eb:fc:c9:02:
d1:8d:af:7c:ce:a7:e1:16:52:fe:42:fe:c6:d1:a3:2e:ac:e3:
4b:6c:14:18:38:9f:48:fa:e4:6e:e2:b0:30:ae:64:81:f6:94:
bd:b7:2c:5f:5d:f4:34:fd:27:90:b4:f5:7d:0c:ef:4b:b3:bf:
fc:af:28:dc:11:26:ca:3f:42:dc:0e:36:d5:02:3d:e3:56:5b:
eb:c3:d0:00:7d:b2:82:c5:d5:64:ae:85:a4:32:9c:68:0b:30:
4e:80:fe:1f:1d:4d:be:28:1f:55:f9:a8:a5:5e:cf:98:fe:85:
1d:9d:5f:cc:7f:2c:e8:2a:c4:2d:40:67:3c:c7:c9:c9:27:aa:
8f:0c:b1:aa:06:9c:ac:29:4a:2d:d5:b0:8b:ec:a3:bf:ab:18:
23:62:fd:5b:0b:b3:fc:d5:3d:96:47:c8:eb:85:9a:28:6d:db:
a9:67:7f:f3:b7:72:a2:5b:71:41:89:fc:85:ed:43:13:b5:86:
1e:eb:91:66:ef:94:fa:2e:d3:83:3e:fa:07:9e:61:a0:fc:6a:
90:e7:56:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:58 2024 by rpki-client on console-ams.rpki-client.org