Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B88CF26EB06811EE8F3BA6C4775412E6.roa
File: B88CF26EB06811EE8F3BA6C4775412E6.roa (raw, json)
Hash identifier: 3/rtjUSU21cWvxvmbLkf77eoH59oam/VmWCxNf+TX9E=
Subject key identifier: EB:B2:F3:2E:5D:0D:B8:79:FC:89:BC:83:E5:C3:1C:4E:3D:A4:CE:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 73D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B88CF26EB06811EE8F3BA6C4775412E6.roa
Signing time: Thu 11 Jan 2024 10:03:51 +0000
ROA not before: Thu 11 Jan 2024 10:03:48 +0000
ROA not after: Tue 07 Jan 2025 10:03:48 +0000
asID: 149981
IP address blocks: 154.85.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29648 (0x73d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 11 10:03:48 2024 GMT
Not After : Jan 7 10:03:48 2025 GMT
Subject: CN=659fbd07-97a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:1a:06:7e:01:ef:c7:91:c0:7e:8e:24:57:
45:c3:4e:cc:fa:96:37:39:0b:cd:8a:b9:cd:6e:b8:
12:a4:92:1f:fa:ec:8b:12:61:27:e0:11:df:16:17:
04:e1:38:b9:d8:41:42:ef:05:b5:5b:e2:22:dc:28:
9e:56:69:d0:34:70:6b:0c:8e:a0:52:b1:94:94:c6:
1f:40:7b:a2:3b:b9:6d:30:e1:6e:f7:80:28:dd:e0:
04:f8:0d:18:f9:92:4d:af:a2:ae:4e:cf:94:8a:57:
b6:36:38:19:f0:03:7b:2a:78:2f:ac:3c:bf:5c:26:
8b:30:96:67:2b:40:d8:e8:bb:4c:f0:05:c9:03:65:
2c:49:45:d0:14:a8:2f:9b:a7:2c:82:ca:be:e0:70:
a2:b9:de:bc:68:f8:4e:2f:40:b9:6c:21:f8:e1:2c:
76:4f:2f:3d:b1:9d:13:31:8e:a4:36:d1:7d:b8:96:
33:e3:f3:5a:74:8a:22:b4:ce:d7:0a:95:5c:58:c6:
26:5a:cd:08:44:52:b1:b6:a1:59:5d:66:6f:82:7f:
23:72:e2:4a:ed:c9:e1:50:c5:fe:45:9a:30:4f:56:
18:d2:e9:51:cd:53:c3:fc:0c:a7:ad:44:5f:4d:1e:
f1:f2:32:83:7a:fb:3a:04:16:ac:15:bf:4c:00:38:
a8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B2:F3:2E:5D:0D:B8:79:FC:89:BC:83:E5:C3:1C:4E:3D:A4:CE:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B88CF26EB06811EE8F3BA6C4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.90.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:38:b6:e7:d0:6b:8c:d7:5d:86:d1:0f:a2:a0:54:5b:9f:7b:
3d:5f:2c:db:c4:c2:2e:59:99:1c:6f:17:b1:ca:60:1e:90:6a:
a6:21:d7:d1:2e:e3:b9:76:ee:12:24:8c:f4:c8:45:35:8f:f4:
6f:1b:88:93:28:e5:79:06:7d:1f:ad:93:5d:5d:cd:ba:a8:6d:
15:dd:ee:ef:50:90:88:57:f9:21:f0:a2:df:6b:51:24:c3:57:
64:98:8c:a8:19:b0:ac:0b:de:3b:8c:58:b4:d3:10:f8:4d:4b:
9f:0c:d1:56:21:f2:8f:e7:46:70:30:d6:e3:eb:2f:a3:f4:36:
59:6a:c9:ea:32:ec:33:de:17:54:ac:c4:36:6a:a3:94:a8:3c:
4f:df:5e:71:97:73:ee:81:e9:2b:0f:80:79:2e:f6:ce:e0:5a:
04:3c:7a:cb:fa:8a:54:21:75:b1:92:96:ba:e9:6c:bc:65:2b:
7a:c3:5c:f8:1c:03:a1:e2:04:5d:5a:a8:fd:2a:15:27:d9:30:
68:d1:d9:2f:fb:ea:92:7a:5f:0b:70:7a:a6:66:99:ca:0a:b0:
f1:a1:8f:da:b5:61:f2:72:63:4a:8e:aa:81:5a:37:0f:94:0c:
36:a6:70:4d:43:e3:a7:92:85:90:7d:1e:6a:93:1e:0f:5c:b0:
28:56:0f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:32 2024 by rpki-client on console-ams.rpki-client.org