Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/746004DAC50511EE997EF9B3775412E6.roa
File: 746004DAC50511EE997EF9B3775412E6.roa (raw, json)
Hash identifier: SHU9H+NRjAJG/9jyylMf6O0ffy7fXMc9trDaChxFaEA=
Subject key identifier: 3B:B9:F5:86:10:7B:B9:7F:98:6E:0F:0A:A0:9C:A3:4B:EF:40:79:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 863F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/746004DAC50511EE997EF9B3775412E6.roa
Signing time: Tue 06 Feb 2024 15:36:11 +0000
ROA not before: Tue 06 Feb 2024 15:36:08 +0000
ROA not after: Thu 13 Jun 2024 15:36:08 +0000
asID: 5065
IP address blocks: 154.85.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34367 (0x863f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 15:36:08 2024 GMT
Not After : Jun 13 15:36:08 2024 GMT
Subject: CN=65c251eb-2c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:a1:04:57:c0:0b:1a:89:6b:8a:cb:c6:33:
3c:6b:9f:70:bc:f9:ef:b3:66:e8:44:01:a2:7d:d1:
11:c6:d0:4f:78:2d:1f:e8:76:97:d0:6d:9d:6a:f4:
2a:2b:d8:02:4a:4e:bf:85:39:f1:e9:f3:19:fb:2a:
dd:dd:8a:36:cd:ef:a3:ea:3f:81:2c:12:08:9a:ac:
7d:17:0c:48:a8:d2:1d:23:a8:26:bc:a9:13:46:11:
53:83:a5:dc:e0:d3:1d:50:01:0f:2f:44:9e:3e:9b:
21:b1:69:dd:a9:83:e3:e9:7b:da:14:30:06:d2:6a:
79:d0:52:8c:c2:44:bf:1d:9d:bd:87:ef:35:4e:2c:
15:83:3e:fd:84:e5:e5:05:3c:b8:6e:d2:bd:eb:18:
a3:62:95:44:36:29:b1:25:49:01:28:5b:91:4d:22:
63:c0:d8:22:51:68:be:fa:f8:a3:3d:31:eb:89:7f:
1c:5e:1f:3a:d2:a7:8a:23:3f:76:e5:d2:03:d8:dc:
0a:48:7f:48:bb:b5:98:92:e2:3b:18:7e:4c:f4:50:
eb:b9:6a:d0:40:2b:e8:fd:bb:7f:23:d3:96:a4:c8:
89:8d:fe:ae:f3:a9:ce:a2:6a:5f:4d:7c:08:2e:01:
38:70:f1:02:e5:30:f1:b5:46:74:d3:cc:9c:16:9b:
8d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B9:F5:86:10:7B:B9:7F:98:6E:0F:0A:A0:9C:A3:4B:EF:40:79:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/746004DAC50511EE997EF9B3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.110.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:c1:3f:0f:36:a8:41:ce:aa:51:67:e1:af:fd:48:3c:59:d0:
82:28:c3:eb:ab:94:a5:2a:8c:84:7f:94:be:6e:87:f3:fe:81:
e7:c2:d3:bf:b1:44:95:44:d6:01:c3:57:ce:b3:1f:c1:98:03:
4a:15:cf:d6:68:88:38:45:5a:1d:62:37:5f:2e:20:94:a7:7e:
f7:61:6d:7e:d3:7d:a5:66:0b:3a:75:0d:a1:b4:80:dd:ab:ae:
c3:78:50:fe:a7:e1:c9:4d:02:c8:26:39:62:51:bc:6e:a2:d5:
6e:59:56:2c:04:c1:29:3b:78:15:52:d6:d7:02:44:5d:99:bf:
01:71:d0:71:9c:e5:33:cb:4a:22:67:85:9c:45:97:a0:17:83:
b6:c9:44:73:35:41:9c:ab:89:77:fd:d4:14:98:f3:b7:14:64:
24:d2:de:fd:2f:c7:42:61:b3:59:16:88:6f:ec:41:3a:8e:4b:
71:0d:27:3f:50:57:a2:14:b4:a4:5f:de:24:a3:fe:6f:8e:13:
e7:e6:e6:e5:84:f6:d2:f6:c7:5b:bc:36:e0:36:68:8c:1f:24:
a6:22:52:d9:8b:25:6c:19:89:f7:e6:df:b5:f8:e8:d9:dc:f9:
c9:6b:6e:4b:43:78:1e:c5:c3:01:4c:c9:58:5c:e7:12:7f:d0:
b1:0e:e6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org