Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D476FA8A2C511EEBFD9AF25D25BE465.roa
File: 4D476FA8A2C511EEBFD9AF25D25BE465.roa (raw, json)
Hash identifier: l11uKXwtzq1vyNs9939ygGkuUEb8giQh1VDw1+Mng7s=
Subject key identifier: 9E:15:7E:E8:4F:50:F8:4D:AD:95:4F:64:2E:28:42:4D:13:9B:95:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 668D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D476FA8A2C511EEBFD9AF25D25BE465.roa
Signing time: Mon 25 Dec 2023 01:31:18 +0000
ROA not before: Mon 25 Dec 2023 01:31:15 +0000
ROA not after: Tue 07 Jan 2025 01:31:15 +0000
asID: 139057
IP address blocks: 154.85.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26253 (0x668d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 01:31:15 2023 GMT
Not After : Jan 7 01:31:15 2025 GMT
Subject: CN=6588db66-ab69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:3e:13:cb:5d:b4:13:91:b2:80:b9:04:30:
19:7d:52:79:7d:75:9e:d2:14:61:c7:58:09:2a:f9:
2e:41:ea:11:30:34:b2:43:71:15:27:a6:c0:b3:ac:
ef:d5:eb:30:33:dd:3a:19:ca:8b:da:33:40:2f:89:
b6:48:2d:11:40:2a:7c:70:50:ff:03:2d:d0:fb:92:
cd:67:91:f0:bc:bd:e5:70:8f:44:ad:6f:cb:56:9a:
40:8d:09:9e:8b:07:85:9c:f4:05:db:8c:63:79:80:
88:e9:32:a2:93:c8:f0:20:e4:1a:59:a5:83:db:41:
68:28:c0:a1:02:1c:59:e4:3c:41:ff:68:69:7f:68:
65:7b:c4:e2:e5:be:38:64:c4:5b:cc:c7:39:c5:d4:
3d:bb:f1:e0:2c:a5:c1:eb:c2:8e:cb:96:2f:1e:d9:
05:4e:ef:f9:5c:69:71:29:ae:c9:c8:b6:34:76:15:
b7:e2:53:2c:63:2d:89:37:0b:67:ad:29:89:d4:d7:
26:3a:0f:88:74:5e:d1:f3:ac:84:ea:f7:90:df:99:
0c:c8:07:81:77:0c:44:2d:12:1d:10:24:9b:a5:3c:
b8:bd:15:1b:8a:51:52:9b:dc:5d:61:3f:1a:7e:7b:
05:b4:c2:09:30:c8:37:62:61:a5:fb:a5:2c:14:65:
22:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:15:7E:E8:4F:50:F8:4D:AD:95:4F:64:2E:28:42:4D:13:9B:95:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D476FA8A2C511EEBFD9AF25D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.69.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:37:13:87:58:32:13:67:18:8e:0f:29:25:a2:25:9d:44:2d:
2f:d6:a0:51:49:8b:b2:83:6c:af:c0:90:cb:3c:bd:77:62:ff:
e6:96:45:fa:9b:19:59:83:c7:55:fd:9a:98:08:20:44:24:72:
07:4d:e4:9d:2c:26:16:f4:8d:56:1b:e8:52:23:e1:91:a5:30:
54:97:a9:3c:99:2e:a7:64:19:01:7a:61:c8:0f:ea:65:3b:af:
b6:b7:64:5a:16:b0:d5:78:53:af:82:83:cb:d7:46:86:12:c7:
10:0f:47:93:97:12:c0:86:87:9a:a4:76:f1:85:e3:46:a3:35:
0b:eb:ec:8d:00:99:5f:1f:6a:ca:dd:cd:2c:99:6f:50:ff:62:
be:52:5a:dd:96:5c:c7:7e:d4:c2:dd:7e:f8:55:ef:d2:eb:de:
e1:b2:51:bb:94:77:b7:0b:08:cb:7a:90:9b:2f:e0:21:37:e7:
45:a8:1a:37:8e:d9:c9:4d:b2:b8:03:a2:5e:46:61:f1:1a:11:
3f:9d:28:06:3f:e7:de:56:e9:82:eb:be:e2:d2:d9:5a:0a:7f:
e2:fc:b5:1f:74:91:ee:40:6d:4a:4b:63:b5:55:04:37:9d:79:
cf:14:c5:a1:75:38:40:1f:74:a3:0c:ec:8c:bd:5d:60:6f:f9:
d6:3a:ec:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:23 2024 by rpki-client on console-fra.rpki-client.org