Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/FAE9132EBEE311EFA8C67594762E951A.roa
File: FAE9132EBEE311EFA8C67594762E951A.roa (raw, json)
Hash identifier: 4V2xq+YhsqcDrEW6q5qpBpAI8sGhmeoDwb8giUJL3zw=
Subject key identifier: 99:15:66:42:B4:55:A5:2C:73:07:24:AB:AE:E8:BC:95:FA:ED:B7:96
Certificate issuer: /CN=F361610CAF/serialNumber=D7E97EC41BB58980C40FE4A9E36C010BC0013D31
Certificate serial: 0F
Authority key identifier: D7:E9:7E:C4:1B:B5:89:80:C4:0F:E4:A9:E3:6C:01:0B:C0:01:3D:31
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1-l-xBu1iYDED-Sp42wBC8ABPTE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/FAE9132EBEE311EFA8C67594762E951A.roa
Signing time: Fri 20 Dec 2024 15:06:25 +0000
ROA not before: Sun 31 Dec 2034 15:06:21 +0000
ROA not after: Sun 31 Dec 2034 15:06:21 +0000
asID: 329506
IP address blocks: 102.207.128.0/22 maxlen: 24
2c0f:11c0::/32 maxlen: 48
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361610CAF
Validity
Not Before: Dec 31 15:06:21 2034 GMT
Not After : Dec 31 15:06:21 2034 GMT
Subject: CN=676587f1-5537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6a:f9:66:42:4e:0c:cb:c1:09:52:99:4f:0a:
1d:76:0c:28:1f:4c:8d:c4:7d:ba:e5:85:44:a2:34:
b5:ff:6a:dc:dc:2d:b8:ce:90:f9:19:7f:11:11:8f:
2f:7a:63:75:1d:a9:bc:66:10:14:8e:61:2f:d4:9d:
ee:7b:d1:d2:03:da:4c:13:20:35:40:64:62:a1:87:
52:37:1e:0e:ed:8a:56:da:4b:b7:4c:fe:69:07:78:
b3:dc:2e:4d:d0:3e:63:b0:28:df:b5:02:11:ca:86:
b0:ae:68:c6:1d:1e:db:82:6e:0f:b8:a4:92:92:4c:
43:8a:93:94:a5:43:0f:9c:7b:51:e6:db:30:09:46:
33:41:04:c7:40:26:de:c7:7f:74:87:53:73:0c:47:
87:27:f7:50:dd:d2:5b:27:1c:a5:fb:79:7f:89:4b:
42:e0:7a:bb:47:9f:f3:82:83:06:06:1a:b8:5c:e3:
1c:bc:5e:c2:39:68:63:e3:41:4f:7a:50:fe:fa:01:
e5:49:99:06:63:78:6e:72:b1:cb:9b:03:1f:5c:70:
a8:96:93:b0:08:07:33:49:2d:46:60:df:2e:37:5a:
d7:bd:35:8d:f4:ff:93:95:46:c8:d1:9a:d8:23:3c:
c4:54:73:92:6b:03:00:30:da:55:4c:f2:cd:0f:ce:
57:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:15:66:42:B4:55:A5:2C:73:07:24:AB:AE:E8:BC:95:FA:ED:B7:96
X509v3 Authority Key Identifier:
keyid:D7:E9:7E:C4:1B:B5:89:80:C4:0F:E4:A9:E3:6C:01:0B:C0:01:3D:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/1-l-xBu1iYDED-Sp42wBC8ABPTE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1-l-xBu1iYDED-Sp42wBC8ABPTE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/FAE9132EBEE311EFA8C67594762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.128.0/22
IPv6:
2c0f:11c0::/32
Signature Algorithm: sha256WithRSAEncryption
4a:10:f5:d1:1c:fc:51:6a:ee:b8:53:fb:92:f9:f3:4e:57:68:
c7:e9:85:3b:f1:b7:8a:3f:ea:24:06:63:d0:a1:ce:f7:d7:d9:
41:1a:9a:a7:00:4b:16:21:f6:53:8e:e2:6f:4c:1e:27:f2:40:
e0:41:30:de:48:80:d3:aa:9a:9a:8b:b6:fd:a3:9c:1c:ba:e5:
4a:f3:cc:6b:14:48:95:8b:1d:f8:d9:18:76:af:e7:e4:7b:23:
9d:85:ec:2b:18:44:1a:7f:7a:30:d4:01:64:59:40:44:a9:bc:
4b:3d:6c:7e:c1:30:1a:8e:e4:46:44:a6:c8:e7:8e:fc:28:87:
f2:f2:18:5d:fa:fa:7b:8e:8d:96:4b:19:c2:9c:12:c5:ce:09:
1d:1a:e0:63:4a:8d:e8:a2:c3:6f:d3:c4:72:8f:4b:dc:11:2c:
2a:99:d8:3f:42:57:3f:4a:4f:44:ff:6e:9c:b3:d2:e5:0e:8d:
bb:a3:b0:96:0a:3f:cd:5d:29:c1:af:4f:f0:2d:77:27:e3:2d:
94:db:2c:8a:ee:29:9c:da:11:76:42:e3:fa:08:52:5a:07:fd:
05:43:d5:3d:11:36:e7:c2:bc:a6:2e:4f:0b:4c:b9:80:ad:25:
22:9e:c3:f7:76:37:7c:29:7f:cc:e0:e9:0a:b4:c6:10:06:e7:
a4:29:5a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:59:38 2025 by rpki-client