Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67642324E8F111EDB46B78584AD9E6FC.roa
File: 67642324E8F111EDB46B78584AD9E6FC.roa (raw, json)
Hash identifier: FF+LzRjTCvKCTwsMA9vr49K2Dc3vEGEcG8GuKKjHbIc=
Subject key identifier: D3:5C:B9:5C:C3:6C:1D:AE:AA:1B:C3:7F:CF:85:DA:49:0E:AC:C1:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 205D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67642324E8F111EDB46B78584AD9E6FC.roa
Signing time: Tue 02 May 2023 13:58:24 +0000
ROA not before: Tue 02 May 2023 13:58:20 +0000
ROA not after: Sun 05 May 2024 13:58:20 +0000
asID: 24875
IP address blocks: 154.85.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8285 (0x205d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:58:20 2023 GMT
Not After : May 5 13:58:20 2024 GMT
Subject: CN=64511700-55c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:71:ae:e1:27:c3:73:f7:fe:8f:fe:f2:99:
92:ef:b8:17:30:47:bb:39:36:a7:68:39:36:8e:a4:
f6:61:4e:37:0d:c4:a4:d9:eb:60:f2:22:d7:31:a5:
60:f7:8e:48:71:22:ec:0b:22:2a:42:39:10:0e:6d:
21:9e:95:f2:0f:70:fb:9e:c2:90:8f:b2:08:be:0d:
99:45:59:dd:05:27:63:f1:7b:4b:10:4e:aa:a7:09:
29:fe:ca:4b:e4:4f:04:96:69:95:92:73:ac:f9:93:
5c:b1:17:18:e5:87:74:81:ea:c6:70:58:36:b7:a5:
33:64:62:33:1a:83:f7:d0:98:0c:cc:b1:09:55:06:
c9:82:50:53:08:bc:0d:29:12:93:8a:96:94:12:53:
0b:24:7f:43:69:e2:99:26:90:6c:0d:5e:bd:37:59:
82:bb:0c:1f:77:1a:50:3d:78:ab:fc:46:bd:91:d8:
99:72:14:f3:a3:9f:aa:a0:d9:3c:46:67:4a:71:0a:
dc:f6:4d:23:33:03:3e:27:57:cf:1b:77:db:47:be:
e6:7f:e3:0a:84:cd:91:26:b5:8a:23:fd:df:33:88:
d4:38:89:83:4d:8e:48:ad:33:d6:ac:6c:cb:34:4e:
d6:a8:6c:6d:30:e6:cf:21:97:a0:eb:4c:f0:a8:2c:
38:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5C:B9:5C:C3:6C:1D:AE:AA:1B:C3:7F:CF:85:DA:49:0E:AC:C1:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67642324E8F111EDB46B78584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.1.0/24
Signature Algorithm: sha256WithRSAEncryption
82:1c:e4:da:4e:d8:d5:58:ad:8e:59:f4:2a:81:85:e0:91:20:
12:fa:ca:e2:cf:bc:7b:83:91:e9:6b:8b:5d:af:de:2b:6d:e2:
6b:b3:ad:9d:54:1e:7f:d0:86:e5:71:33:26:fe:20:5f:07:04:
f4:63:25:86:35:c4:89:13:61:18:f0:55:f1:f8:f2:0e:c8:26:
73:67:dd:a2:f7:b7:da:b4:9d:9c:39:a2:e1:d5:b7:f3:78:96:
bf:c5:c6:03:b8:1f:43:2d:83:00:e7:ba:3c:4f:8e:3c:ab:55:
d1:48:81:40:b8:e3:d9:60:e9:bc:ae:14:b5:fe:4f:01:2a:6a:
5d:65:f2:f8:1d:1b:d0:60:b2:f5:fc:8f:5b:3a:69:42:15:13:
85:36:7d:18:23:db:9a:fd:a2:df:68:b5:82:23:e4:a7:1a:d9:
2b:76:9b:e3:67:cf:14:ba:73:a7:35:dd:08:e6:db:8b:c8:1c:
de:4d:df:6c:4e:6f:27:0b:35:5f:b1:b5:b1:11:f7:eb:9b:50:
7e:3f:3d:05:2d:2d:6c:03:d6:da:29:0d:9b:d2:94:82:81:77:
45:12:88:98:1f:2e:b3:3d:3b:e9:ca:9f:32:f9:de:4a:4f:55:
52:19:a7:de:52:84:0c:90:2d:ff:ec:00:25:c6:f3:6e:e6:23:
bf:92:63:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org