Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/FC84574C5D0111EE96141C584AD9E6FC.roa
File: FC84574C5D0111EE96141C584AD9E6FC.roa (raw, json)
Hash identifier: Okx4V28Q0K9Gmg48hST+KVra0vLaTLDWdpeiFN5Ci10=
Subject key identifier: 01:7C:0D:D7:56:C1:DB:75:24:94:CF:A0:64:76:B7:6A:5B:EF:8E:0C
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0333
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/FC84574C5D0111EE96141C584AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:49:21 +0000
ROA not before: Wed 27 Sep 2023 06:49:18 +0000
ROA not after: Tue 30 Sep 2025 06:49:18 +0000
asID: 328327
IP address blocks: 102.140.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819 (0x333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:49:18 2023 GMT
Not After : Sep 30 06:49:18 2025 GMT
Subject: CN=6513d071-8a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:39:cc:ce:34:bf:f4:98:25:c6:0f:68:23:f1:
ea:46:cc:35:6b:b6:50:ba:79:da:02:d6:f3:0b:5d:
ad:ae:fa:4b:04:11:41:96:64:c6:7c:7a:73:f7:7b:
cf:d4:9f:93:17:29:a2:de:92:b6:8d:df:80:e5:92:
cb:f6:7a:22:2c:39:4c:e2:85:57:af:20:dd:76:80:
f5:3e:32:f3:c4:62:ff:35:05:e1:24:15:cb:63:8e:
be:36:e7:8c:30:a5:28:6a:f9:2d:4a:ed:00:8f:5d:
25:83:88:26:a1:ed:0d:d9:43:dc:5b:67:83:85:6d:
ad:4e:c2:17:1d:e3:d1:2e:93:39:f1:e9:c0:5d:a9:
d5:51:37:a6:ec:dc:3c:9a:38:20:f8:7b:22:62:5f:
b2:dd:36:be:3d:b1:f5:79:c3:75:1a:3b:51:a7:e2:
b4:b0:68:c7:e1:10:64:be:cf:aa:d6:72:b6:76:e7:
9a:07:48:91:3e:1d:7b:f1:1a:ab:ec:60:94:cb:06:
e2:bd:a1:54:3a:cc:a9:12:b2:4e:ba:d9:b2:48:39:
f1:00:ce:ce:72:cf:66:10:82:c0:f1:72:3e:c7:70:
e5:95:04:ea:45:fc:28:cf:dd:9f:99:86:87:71:23:
12:71:64:a8:57:00:1e:20:8d:1a:4d:45:06:e5:41:
9e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7C:0D:D7:56:C1:DB:75:24:94:CF:A0:64:76:B7:6A:5B:EF:8E:0C
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/FC84574C5D0111EE96141C584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.75.0/24
Signature Algorithm: sha256WithRSAEncryption
73:9c:0d:c8:0b:e1:4b:b4:80:16:89:70:41:79:52:fc:5d:cf:
fc:c6:26:7f:19:06:db:e7:8f:88:bb:0e:1b:d0:d0:fe:b0:59:
17:6c:e6:57:18:da:c2:64:48:23:b4:b9:13:09:57:e7:a3:22:
57:be:3c:6d:2c:ef:a6:43:2e:ae:d3:db:0b:51:41:2f:da:14:
16:68:35:9c:a7:24:06:12:87:95:fe:7d:b1:27:f0:7c:f1:01:
03:8e:64:4a:f4:38:35:e1:35:68:45:44:be:12:a1:1d:28:e6:
66:f5:c7:aa:f5:5f:6c:0f:93:67:d6:f3:be:ba:a0:47:3a:dd:
09:ec:17:12:fd:c5:56:d5:ce:d9:22:51:61:3b:87:f9:00:45:
6d:83:e7:66:48:71:83:8e:81:6f:62:de:8c:8f:78:0a:47:22:
fa:e3:9d:88:09:fa:cb:96:20:2e:82:45:63:c5:14:3d:b7:d2:
c1:7d:a6:25:d8:fa:aa:51:52:86:0b:c7:8c:49:67:7d:35:1d:
59:c9:19:43:02:5c:c7:b8:23:53:99:08:ff:68:67:f7:e8:bc:
a9:4c:8d:4e:b7:7d:98:5b:7b:0f:d9:2f:72:89:82:ac:79:c3:
ce:34:5c:07:59:ae:1e:7f:62:d7:37:9b:d1:b7:73:87:11:f8:
28:bb:af:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 15:49:13 2024 by rpki-client on console-fra.rpki-client.org