Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCCEC78A2C411EEB6186724D25BE465.roa
File: DFCCEC78A2C411EEB6186724D25BE465.roa (raw, json)
Hash identifier: nCmeS0QNb+86OuRkTxbkDiY3jRvthd7OT1T77xhoUYg=
Subject key identifier: 77:34:D7:FD:1E:79:BE:AF:D6:66:12:45:BE:5A:BE:E1:52:54:5C:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6689
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCCEC78A2C411EEB6186724D25BE465.roa
Signing time: Mon 25 Dec 2023 01:28:15 +0000
ROA not before: Mon 25 Dec 2023 01:28:11 +0000
ROA not after: Tue 07 Jan 2025 01:28:11 +0000
asID: 139057
IP address blocks: 154.85.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26249 (0x6689)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 01:28:11 2023 GMT
Not After : Jan 7 01:28:11 2025 GMT
Subject: CN=6588daaf-9403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:03:30:99:9e:6b:77:b5:e1:ee:aa:9e:8a:
cd:d2:9a:e7:01:8e:54:3b:cd:5c:45:6e:20:77:6c:
49:d7:d6:93:60:aa:fa:a8:8c:11:86:65:be:21:c7:
28:74:80:33:c5:7c:68:12:f4:56:0a:f7:5a:0f:78:
6d:ab:2e:9e:6a:15:6c:37:c6:74:a2:84:44:29:2b:
0b:45:4a:bc:15:b8:39:f7:85:20:f2:79:3f:19:6b:
0c:4a:87:32:17:a8:2d:f7:b7:6d:37:17:6e:98:16:
c6:bb:08:ad:12:8b:e0:4e:45:87:30:77:71:4e:3e:
1a:11:cb:74:44:a3:5c:d3:1d:21:fa:62:93:82:2f:
b4:04:99:cc:b9:37:d7:68:57:a2:27:c7:55:f5:56:
fc:ac:99:fb:9c:c0:43:0d:0e:bc:28:dc:0d:72:13:
d1:19:85:81:f2:22:bf:83:44:d5:bb:4f:b5:7f:ad:
f0:e4:3a:48:7f:d0:f0:85:3e:cf:0e:60:1c:51:de:
bd:0e:65:a9:08:d4:27:8e:a2:78:b6:1e:99:cf:2a:
50:d0:40:e4:b0:74:a3:64:f0:27:fa:5c:86:da:fd:
29:49:ac:f5:77:8d:81:9d:7d:5f:67:75:b9:ab:7a:
6d:b1:41:45:c8:2f:25:47:3c:2c:14:ea:08:d5:17:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:34:D7:FD:1E:79:BE:AF:D6:66:12:45:BE:5A:BE:E1:52:54:5C:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCCEC78A2C411EEB6186724D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c2:2a:3b:1d:ff:10:70:d0:fd:17:0a:7a:a8:1f:ba:7c:b4:
5b:76:5a:6d:72:91:6c:c4:ec:a2:87:b5:e1:f9:d2:4b:24:cd:
8a:69:34:6b:d1:bd:73:9a:b0:94:c9:64:01:de:d2:a1:66:c2:
46:ad:cd:3c:25:05:df:4d:ab:cc:3d:aa:16:e8:b5:9d:74:ee:
58:fe:d4:05:68:79:f9:11:c6:7d:6c:56:bc:0c:a6:71:51:37:
f4:78:ad:65:30:5c:5e:e9:3f:6a:88:d5:3d:9b:89:cc:cc:16:
9f:3f:cc:00:a7:d7:b9:05:af:c6:75:ef:8d:98:9a:4d:e8:6d:
1e:bd:47:59:c9:72:5d:09:6c:f7:8e:ae:d5:b0:5b:b0:d2:f7:
c9:2b:30:42:53:89:38:67:91:c1:a0:32:96:8a:ac:f9:cc:cc:
be:b8:47:6f:1f:9a:64:59:c0:bc:60:75:f1:71:35:88:44:7a:
6f:4a:c3:08:34:a4:66:95:3d:aa:83:92:53:e9:64:48:dc:fa:
77:6f:d8:0c:77:91:ee:9d:5c:a2:53:fc:28:aa:03:a3:5b:e8:
24:aa:92:6a:88:e0:5b:ad:60:2d:25:ae:72:45:6a:26:d8:91:
30:83:69:88:ee:1f:5c:03:7a:69:c0:78:48:c1:a6:9d:8a:a4:
7f:86:3c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org