Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C85F9F7CB34511EEB234286E775412E6.roa
File: C85F9F7CB34511EEB234286E775412E6.roa (raw, json)
Hash identifier: LBiVyo5R0+9VdSnD1oruD73vy5oRpmloBuRLTclMFnk=
Subject key identifier: 74:76:06:71:9E:2B:D4:FB:66:7B:CC:9B:74:EE:0F:D5:C2:B7:ED:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7530
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C85F9F7CB34511EEB234286E775412E6.roa
Signing time: Mon 15 Jan 2024 01:31:19 +0000
ROA not before: Mon 15 Jan 2024 01:31:16 +0000
ROA not after: Fri 13 Dec 2024 01:31:16 +0000
asID: 8796
IP address blocks: 154.205.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30000 (0x7530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:31:16 2024 GMT
Not After : Dec 13 01:31:16 2024 GMT
Subject: CN=65a48ae7-e53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:e8:39:70:1e:2e:55:80:14:0f:fa:1e:35:
6f:3a:a4:6a:e6:87:28:41:cd:03:2d:6e:08:8b:53:
37:ff:b0:ea:dc:27:ca:18:09:dd:9a:0d:e7:2c:db:
27:d5:75:cf:95:83:bb:92:20:0d:a4:40:86:c7:45:
2b:72:07:34:b6:fe:24:36:16:93:5e:6c:e1:71:59:
ac:57:ed:9c:92:59:70:6b:57:27:d7:57:c5:5d:fd:
c4:9b:5f:9d:12:07:d8:0c:65:ea:ae:a2:0a:f3:e0:
90:97:a6:23:76:a2:43:c4:a8:26:bf:29:8f:40:88:
d2:40:e7:69:53:05:84:f2:e6:24:e9:eb:42:fb:97:
7a:3b:27:23:85:18:86:13:b3:24:7f:b2:45:72:16:
66:f0:04:25:80:f9:ea:20:56:85:1d:90:04:cd:c3:
68:7f:4d:1b:43:3e:62:e9:74:77:3e:6c:d3:91:ea:
5e:ea:ed:13:4a:52:8e:6f:d7:7b:4e:e4:af:06:2b:
f9:f5:a8:95:36:69:ec:06:d8:75:9e:14:2d:cb:e3:
d8:4a:59:18:c1:7e:84:4b:85:bc:92:76:26:9f:ce:
89:b4:f1:50:5a:a8:58:e5:2f:66:05:a4:ac:00:f4:
86:c0:ad:6a:83:78:d4:8c:19:11:b0:25:0b:04:a5:
0e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:76:06:71:9E:2B:D4:FB:66:7B:CC:9B:74:EE:0F:D5:C2:B7:ED:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C85F9F7CB34511EEB234286E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.212.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b1:ab:bc:57:2b:c1:31:32:74:d9:b6:54:fe:c1:0a:e4:ff:
79:59:cd:3b:48:8e:2c:2c:6d:8a:b1:a9:3f:d8:3f:e1:8c:48:
6c:71:0d:7b:9e:63:77:3c:07:62:0c:0b:5d:31:8e:40:95:37:
14:0b:91:a5:05:e1:50:8e:d7:38:7e:0f:48:7d:a3:58:7d:fc:
e9:b0:b2:1a:42:c1:86:22:bb:25:65:fb:05:53:7b:86:b6:19:
6f:23:f3:9f:87:ba:71:e8:03:49:21:3c:28:2c:42:18:38:eb:
07:54:99:72:02:b9:f6:98:59:8f:2b:b9:97:a9:ae:41:32:72:
81:1b:e6:02:0d:5a:ce:91:bd:29:e6:2e:30:d1:96:82:30:94:
17:bc:31:23:ae:cf:e0:87:7b:28:bb:25:74:37:46:e0:07:1c:
15:23:91:4a:e1:98:1c:d5:85:9a:0c:92:8b:25:2c:4a:e6:25:
93:de:4c:f1:8f:fe:69:4a:df:e6:a5:04:30:d2:da:25:52:ec:
4f:17:7a:a7:94:dd:d7:4a:c2:8f:1b:55:88:2e:ef:ef:63:11:
27:b9:0f:6c:c6:67:5b:2a:ca:1b:52:ac:90:52:e1:03:95:29:
62:c8:4c:a0:12:72:26:01:07:46:24:8f:d7:5a:3d:4d:a3:29:
99:c8:4f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:24 2024 by rpki-client on console-fra.rpki-client.org