Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4019F3989D9F11EF856C5689762E951A.roa
File: 4019F3989D9F11EF856C5689762E951A.roa (raw, json)
Hash identifier: q0PF7V5v1FTmdcMa0w6B4NHF0GMCXPSta8RI24vy99U=
Subject key identifier: 8B:8D:2C:6F:04:50:6A:F6:87:25:02:69:B3:FE:D2:74:AF:A8:5D:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01099E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4019F3989D9F11EF856C5689762E951A.roa
Signing time: Fri 08 Nov 2024 07:01:17 +0000
ROA not before: Fri 08 Nov 2024 07:01:14 +0000
ROA not after: Tue 07 Jan 2025 07:01:14 +0000
asID: 139057
IP address blocks: 154.85.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67998 (0x1099e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:01:14 2024 GMT
Not After : Jan 7 07:01:14 2025 GMT
Subject: CN=672db73d-aa37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:c8:7e:db:93:54:72:07:e8:d8:fd:7f:1a:
2f:04:22:2c:77:73:d9:a9:eb:00:ab:53:66:c5:b3:
6b:3d:2d:93:5e:e3:d2:21:1b:c4:6b:ff:8c:8b:25:
7b:de:8a:b1:86:8f:c8:cd:7c:4b:9a:d6:1d:54:6a:
96:5d:90:88:10:2c:62:07:bc:23:48:7e:28:d2:1a:
13:a4:be:f9:ae:c9:97:db:78:ae:a7:f9:6c:55:dc:
7d:b6:78:f5:81:bd:6a:ba:44:b6:e1:d7:96:5c:e5:
1b:8e:2a:0c:0c:80:64:14:27:45:bd:dc:c1:41:a5:
69:c5:77:2f:c7:1c:ad:3f:12:57:c6:ed:db:53:39:
7e:13:18:b5:13:64:17:5f:76:a3:5f:04:09:b9:a9:
25:83:ca:e0:91:3f:22:21:a9:89:71:1e:bb:d0:6a:
ca:44:43:c4:9f:9a:35:1b:e2:14:fd:fd:97:48:85:
1e:bb:65:b3:b8:aa:42:1d:06:63:05:4e:39:51:98:
c2:41:71:7e:1c:25:96:11:23:25:16:05:4e:b3:05:
7b:01:aa:fc:95:38:bf:fc:86:6f:8e:07:e9:23:49:
30:f2:26:1a:f6:1e:03:7b:8c:78:9e:ef:19:c6:ea:
7b:07:05:fd:ab:6b:e4:df:26:c5:ad:4c:a5:30:1d:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8D:2C:6F:04:50:6A:F6:87:25:02:69:B3:FE:D2:74:AF:A8:5D:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4019F3989D9F11EF856C5689762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.85.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b0:7d:c5:5e:30:de:e8:2d:d0:e9:3d:70:a3:8a:a7:d2:00:
26:85:f0:6c:24:1e:08:05:9f:11:08:9e:da:72:45:ab:0d:6c:
24:5c:fd:62:48:f2:45:2b:5b:d6:8a:2f:69:b9:8e:3e:61:66:
93:aa:8a:28:de:0b:35:aa:f4:e9:09:88:7d:b2:f7:1e:ad:2b:
03:46:31:a3:5c:64:e5:e1:5c:b3:ef:78:34:c2:37:6b:56:27:
a2:4a:cc:a5:a1:bc:57:53:ce:12:8b:ef:7c:f9:b6:cc:c1:10:
73:c1:fb:2b:96:e2:18:ec:ef:1e:a3:4c:07:42:57:c7:a5:e0:
a8:f3:98:3f:b2:ef:ea:11:2a:98:2f:ee:11:16:f6:64:6f:74:
55:63:ef:6e:f7:a3:86:01:dd:4c:1d:fa:59:67:34:5d:e9:f4:
b0:60:ce:a7:ac:30:ec:10:98:66:c5:8b:cc:6f:66:1d:be:a4:
ae:5c:e9:30:f2:40:25:65:06:48:25:44:df:55:85:fc:6b:0f:
93:70:20:58:39:68:d2:8b:c8:ed:5b:12:13:13:94:32:ca:02:
16:5d:13:9b:27:62:6b:02:34:9d:dd:84:ad:cc:d3:cb:41:1d:
4f:67:7b:05:42:14:ef:0c:7b:44:6a:47:a5:92:b4:9e:78:4e:
97:a2:27:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org