Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCCA4EE4A30211EEB25C9A1BD25BE465.roa
File: BCCA4EE4A30211EEB25C9A1BD25BE465.roa (raw, json)
Hash identifier: cYgQrKHT8X0cR0rM+unCOJIPbaziBDT+6voxZy4pt1k=
Subject key identifier: E7:8F:8B:88:8D:62:B4:FF:84:C5:B3:F3:3D:4B:7B:F7:54:22:E6:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6715
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCCA4EE4A30211EEB25C9A1BD25BE465.roa
Signing time: Mon 25 Dec 2023 08:51:05 +0000
ROA not before: Mon 25 Dec 2023 08:51:01 +0000
ROA not after: Tue 07 Jan 2025 08:51:01 +0000
asID: 139057
IP address blocks: 154.85.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26389 (0x6715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:51:01 2023 GMT
Not After : Jan 7 08:51:01 2025 GMT
Subject: CN=65894279-f655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:52:13:7a:d4:10:da:a2:e5:49:08:fa:b7:a1:
3b:6e:4f:c6:35:60:8d:07:1d:51:98:97:98:f9:09:
3a:de:9e:4d:b8:74:5a:6e:31:11:5d:0c:08:46:4a:
38:62:4a:d3:11:91:e9:c1:97:1c:4c:9a:1e:15:1a:
a0:2f:6c:87:27:96:99:dd:9a:94:2f:17:c3:ad:4a:
7a:50:d7:76:f1:14:d8:50:19:3a:4e:70:38:d4:ec:
7b:20:86:e3:66:f8:4e:d5:4d:96:de:09:43:05:54:
bd:d9:12:ac:97:02:13:73:90:4c:d3:ff:f4:c8:a4:
0a:7e:07:5b:58:54:ad:fc:85:bf:49:98:24:af:86:
7b:0a:db:64:39:d3:c9:34:23:16:a2:ca:b7:10:3d:
11:0b:7b:65:43:3e:30:0d:84:ee:03:54:98:b1:de:
b6:c9:97:c5:c8:7d:1d:92:6f:46:7c:20:2c:aa:67:
45:6a:8a:f2:95:6d:a9:ce:ee:b6:62:ce:90:db:a7:
7e:63:90:b4:d3:44:75:46:5a:13:1d:e0:15:37:92:
91:3d:5e:ac:c7:88:cd:f8:0e:0b:38:9a:08:b2:6d:
a7:ee:d2:a6:29:a9:15:34:6a:39:59:2b:00:db:74:
6a:a8:73:36:fb:a9:b7:59:09:04:89:e8:b8:64:8c:
7b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8F:8B:88:8D:62:B4:FF:84:C5:B3:F3:3D:4B:7B:F7:54:22:E6:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCCA4EE4A30211EEB25C9A1BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.70.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:9a:ca:71:0d:41:af:4d:ed:90:73:6e:2a:06:35:ff:e9:4e:
9a:8f:0e:92:13:a1:2f:14:1d:8c:b8:10:f4:df:0f:17:d5:88:
e4:2f:dc:ed:36:58:6d:89:1f:84:3d:f7:1e:53:c8:33:cd:29:
fc:8f:6a:1a:05:86:85:76:12:fe:88:d9:10:73:11:07:2c:00:
56:db:27:dc:87:e1:e8:6b:d3:d1:6e:db:94:0b:cd:a8:b0:27:
4a:ce:fc:e7:28:f3:74:38:31:e2:2d:85:96:a9:ca:3f:94:ce:
c9:b8:45:15:16:ad:87:c2:76:44:41:32:65:fd:df:37:20:ba:
47:35:2d:4f:0e:9c:49:83:9e:f5:23:34:1a:6b:26:d6:21:d2:
43:0d:5f:f0:b6:6a:2d:35:7a:7d:ff:ce:3f:2b:d3:49:b4:53:
f5:55:ff:a7:d8:60:64:e3:6d:62:49:67:10:f1:a9:7c:e2:34:
6d:99:35:31:12:57:f0:21:ff:5b:cc:23:69:12:4d:17:c0:f7:
44:5b:9c:1e:ab:e2:82:5d:ff:a3:0c:08:17:9f:80:4d:63:4b:
68:bb:a0:5e:9a:37:90:cc:a7:35:84:4b:64:7a:8b:c3:f7:fa:
e0:41:1a:75:f9:1d:94:32:d6:3b:54:e0:cc:4c:ae:cc:28:7c:
c1:c4:b5:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:24 2024 by rpki-client on console-ams.rpki-client.org