Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA856D0CAB6911EEB94A58AD775412E6.roa
File: BA856D0CAB6911EEB94A58AD775412E6.roa (raw, json)
Hash identifier: 2H1S98iA0E4fi8/Z5XaDAPduDuSmWd+Ca3bJe5XYb6s=
Subject key identifier: 8F:6B:A7:C5:67:F9:BF:1F:0F:31:40:1A:94:DF:FF:22:EA:BD:B0:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6F41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA856D0CAB6911EEB94A58AD775412E6.roa
Signing time: Fri 05 Jan 2024 01:28:28 +0000
ROA not before: Fri 05 Jan 2024 01:28:25 +0000
ROA not after: Sun 19 May 2024 01:28:25 +0000
asID: 23764
IP address blocks: 154.85.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28481 (0x6f41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 5 01:28:25 2024 GMT
Not After : May 19 01:28:25 2024 GMT
Subject: CN=65975b3c-dc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9d:a6:35:ed:d1:b7:0c:ca:1a:49:58:3d:16:
5e:ff:c9:4a:5d:72:b6:42:99:44:0f:01:27:c9:69:
9d:cc:de:1e:ae:3b:15:40:20:e8:38:2a:26:25:c9:
7f:4b:c6:61:bc:56:ee:12:31:6f:82:8a:00:f5:b6:
d0:ca:cb:b9:a9:66:22:6d:4f:c8:60:d8:cf:4d:1a:
4a:07:db:6a:fb:3d:37:47:7e:65:e8:b0:39:49:a6:
72:3a:8c:7a:5d:42:14:3e:1b:c1:40:5d:c6:87:58:
8c:2c:e6:28:c1:3e:f0:36:cb:4b:56:cd:e3:b3:36:
47:a4:a9:dd:3a:4f:de:07:1e:48:98:a7:b1:a2:1b:
d1:8a:77:80:42:18:c8:37:88:82:0d:7a:c1:64:63:
e2:07:14:ff:e6:bb:6c:1a:95:5c:0b:99:91:c8:22:
aa:c8:db:00:1f:b3:ea:a1:ac:10:44:6f:7b:bf:c5:
b1:b4:e7:7d:7a:78:41:0a:e0:d5:51:0e:19:50:7d:
b1:c1:75:7a:c6:45:7a:58:53:48:37:a5:d1:31:81:
ea:e3:d3:27:21:4d:21:10:d9:b2:63:2d:ec:0e:8c:
db:38:ea:65:c3:44:69:10:a2:91:92:cc:97:bf:4a:
f7:ca:26:67:3a:be:7d:5f:f0:8f:33:9c:bb:63:77:
fd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6B:A7:C5:67:F9:BF:1F:0F:31:40:1A:94:DF:FF:22:EA:BD:B0:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA856D0CAB6911EEB94A58AD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.14.0/24
Signature Algorithm: sha256WithRSAEncryption
00:89:95:fa:ea:d2:0d:ec:5b:7b:68:4f:68:95:e7:ce:22:53:
36:57:4e:e4:56:c0:da:3a:34:42:1a:63:9a:b6:c2:0d:aa:f3:
19:c7:2c:8e:80:8a:35:59:03:3f:79:bc:f7:af:f3:92:35:e0:
24:45:e9:62:1b:00:2f:78:c0:ab:d9:0d:c6:e6:1d:a9:27:56:
81:80:b5:ec:c7:80:a5:97:83:34:ef:0f:04:08:11:37:9f:30:
29:8d:74:ac:f8:bc:73:fa:be:31:f1:ae:b8:f0:a7:1a:24:ae:
76:f6:2d:22:d6:33:93:2f:ef:39:ec:2c:24:6c:a7:73:ea:2a:
e6:4e:27:39:4b:be:41:89:94:36:92:7e:c2:26:a9:e3:06:35:
99:8f:0b:69:8f:12:54:33:b5:62:9b:9a:10:3f:9e:f3:3d:62:
83:22:bf:79:7e:0b:a3:c2:6b:36:18:2a:5f:bc:27:97:96:c0:
9d:58:57:60:c1:a4:98:5a:f4:1e:e8:d6:41:a8:89:6e:eb:ce:
b2:91:0f:4e:8e:35:da:be:d7:0b:c5:83:1d:43:a6:70:65:e0:
b5:02:4b:24:3c:4e:c6:b3:0b:31:c7:cb:ad:39:ed:d0:c0:94:
c1:3f:d2:c3:3d:32:ad:6c:53:44:4e:f2:08:e2:07:c9:ef:79:
99:ae:e2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org