Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F71C9CC6344A11EF93F9A57E762E951A.roa
File: F71C9CC6344A11EF93F9A57E762E951A.roa (raw, json)
Hash identifier: vm9CfMZm8s3s6DJbLx82vOjgS793JgwurOzQiG3DQKg=
Subject key identifier: CA:F6:06:30:97:16:58:CE:4A:73:61:E7:C7:D8:D8:F0:A3:09:34:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C779
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F71C9CC6344A11EF93F9A57E762E951A.roa
Signing time: Thu 27 Jun 2024 06:03:25 +0000
ROA not before: Thu 27 Jun 2024 06:03:22 +0000
ROA not after: Mon 30 Dec 2024 06:03:22 +0000
asID: 984
IP address blocks: 154.200.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51065 (0xc779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 06:03:22 2024 GMT
Not After : Dec 30 06:03:22 2024 GMT
Subject: CN=667d00ad-5c94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:93:7e:21:46:93:07:dc:f4:ff:cd:d9:7a:ae:
15:f5:f2:c8:b5:db:c7:c1:11:98:3a:0b:7f:e5:ef:
e2:1c:9f:97:80:38:db:36:ca:87:17:82:71:41:4c:
62:7d:3f:b7:59:eb:a8:46:4d:43:84:55:66:ce:44:
54:84:87:ca:ee:d7:c9:9e:c7:c1:01:c3:80:ca:2a:
8d:2e:f9:b5:b0:a4:53:c8:9d:6b:27:54:fe:77:57:
90:e6:0d:97:2e:cf:7c:96:28:3d:ec:9b:45:83:41:
f8:ca:ed:7d:94:a5:b6:a4:82:f4:3a:f5:5f:bb:30:
99:92:8d:d0:4b:cb:31:92:43:b4:7a:76:15:32:cb:
28:60:48:ab:ae:9c:9d:05:a8:4e:aa:9a:f2:3c:15:
28:de:32:d7:6d:6f:14:2b:d5:82:64:d5:0a:55:87:
56:67:71:e5:05:1c:53:53:c8:b7:d2:8f:0d:42:76:
b7:18:99:82:6c:50:57:69:e8:a3:1b:c3:46:a9:aa:
65:1e:d1:e6:44:5b:b6:0a:e8:8f:c3:ac:50:68:98:
28:fd:25:a0:e2:05:00:c7:73:71:29:cb:d6:18:6b:
1c:a8:74:8b:5e:76:03:c9:bd:e0:98:84:5e:a8:20:
ea:a7:8e:f5:67:39:50:e0:87:e6:8c:43:bb:c1:1d:
5b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F6:06:30:97:16:58:CE:4A:73:61:E7:C7:D8:D8:F0:A3:09:34:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F71C9CC6344A11EF93F9A57E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:b5:2d:88:01:6b:58:b0:54:ae:c3:18:e0:56:bb:20:1d:3d:
50:e6:d1:31:9d:f4:0f:ec:b0:1a:5a:90:59:a6:2d:a6:b7:53:
1d:5b:c3:f7:bc:e0:b0:a8:a3:4d:ca:3b:e5:da:af:69:1d:da:
00:b2:a9:29:0f:35:c5:cd:df:d2:54:a7:ff:7f:64:00:69:16:
8f:4c:b1:77:b8:fd:82:fd:1d:e2:9c:a3:ae:1c:ed:16:6b:1d:
ff:e2:3f:e1:39:5c:ec:08:93:83:cc:b6:fa:11:a6:07:e7:cf:
84:78:59:18:ab:77:52:2b:c1:de:18:07:0c:5f:c6:32:ad:5a:
9b:d8:76:7a:a4:66:62:d2:60:82:b6:f2:c7:57:1a:f1:3d:60:
e6:9e:09:a9:be:2d:c5:71:51:1d:1b:b3:7b:39:db:4e:06:d7:
d3:ce:08:a8:e8:8d:d6:59:2e:02:89:57:40:ed:3f:3c:63:f3:
b4:a1:46:a7:81:61:69:13:0e:97:ab:d2:c4:4e:6b:e4:e4:e7:
97:79:91:93:13:35:1d:1d:79:09:7e:a1:89:de:df:07:eb:5c:
29:09:f8:f6:47:fb:2e:37:ed:67:f4:36:32:e0:5e:c3:5a:56:
fa:7d:f1:cb:23:d5:2d:ec:95:20:54:2c:eb:04:c3:7b:fc:0f:
c8:d5:79:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:31 2024 by rpki-client on console-fra.rpki-client.org