Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA971160339B11EFBC631659762E951A.roa
File: FA971160339B11EFBC631659762E951A.roa (raw, json)
Hash identifier: MMOrcZBDOTTU5uj2AoHBjrz6Wv3qQFDcUHoZCmtVIV8=
Subject key identifier: 81:6A:78:AA:C9:68:B3:C2:D2:19:D5:6B:22:D0:52:D9:EB:84:96:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C762
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA971160339B11EFBC631659762E951A.roa
Signing time: Wed 26 Jun 2024 09:10:49 +0000
ROA not before: Wed 26 Jun 2024 09:10:46 +0000
ROA not after: Mon 30 Dec 2024 09:10:46 +0000
asID: 984
IP address blocks: 154.82.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51042 (0xc762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 26 09:10:46 2024 GMT
Not After : Dec 30 09:10:46 2024 GMT
Subject: CN=667bdb19-ce92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:87:f6:0d:77:bd:2c:9c:44:49:87:30:37:62:
56:ab:57:a4:52:2f:53:2f:df:b9:4a:72:a3:76:56:
54:8e:fd:cc:cf:82:c2:00:50:5d:02:3f:61:02:bd:
5c:17:6c:74:19:fa:67:5f:0f:2a:f5:65:90:e6:05:
06:85:9c:0f:2f:8e:59:85:7a:46:18:d7:e5:bb:75:
6f:1d:d5:6e:ef:41:50:99:04:62:49:af:c2:e6:53:
c4:6f:01:60:27:d1:df:14:00:5d:61:64:bf:d0:7c:
71:8f:ac:db:83:1b:76:2f:05:b9:f4:b4:41:ee:f4:
79:5e:7d:9a:94:4e:4f:6c:37:2a:1f:96:04:b1:f7:
84:88:61:16:2a:4f:1b:b7:92:31:c2:26:69:40:63:
f4:95:bb:5e:e2:7a:c2:c5:0d:2b:f2:1f:dc:cd:82:
33:3c:ef:13:a9:c5:ae:a1:d9:dd:b2:c0:91:b3:2a:
10:60:a2:cb:97:2a:12:78:3d:7f:e3:13:0f:0c:b9:
7d:a5:23:33:39:43:9a:03:5f:71:d9:35:59:66:ac:
a6:a0:5d:23:34:5d:8f:a4:1e:db:ba:af:18:af:37:
fb:40:52:85:fa:f4:e9:2e:a2:60:0d:4c:eb:66:db:
3a:e3:56:0e:bc:18:89:2e:68:b2:fb:45:2d:29:38:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6A:78:AA:C9:68:B3:C2:D2:19:D5:6B:22:D0:52:D9:EB:84:96:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA971160339B11EFBC631659762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2d:d2:6c:0f:b0:32:9f:5d:fd:f9:88:80:b4:42:90:3d:61:8c:
3d:92:a2:e4:3a:2e:bc:8a:2d:e7:c6:83:f1:c6:aa:4b:57:79:
08:90:6b:b4:a3:d7:50:59:4c:70:42:ec:4a:f3:96:f7:96:12:
c8:9d:8d:d9:0e:9d:64:e1:9a:b6:32:7a:1c:03:f8:a7:54:41:
cd:72:a6:87:84:8e:9b:62:cd:99:d4:99:66:46:b3:3e:6b:a0:
ed:a8:41:a1:c3:51:9a:3c:37:bf:d7:5d:e4:3d:fa:d1:54:78:
38:fa:a1:5a:bc:35:4f:ac:f3:d2:f4:14:e2:40:31:fd:49:7d:
c4:12:5b:8e:7a:60:65:66:8b:45:8b:73:a9:82:ab:e2:5b:74:
73:94:33:95:3b:a9:b7:b7:52:ae:9f:ab:42:61:79:9f:fe:73:
56:26:c9:40:fe:1a:6d:0b:6d:2a:e1:09:bc:dc:e4:55:c5:9e:
23:61:69:1c:da:88:ab:3f:c8:b0:fb:d7:f1:26:f8:91:aa:dc:
a3:f4:81:74:4d:79:ae:c7:82:1f:6a:e0:36:f6:9f:6f:96:6d:
c0:8b:76:9b:da:91:31:5e:4e:09:14:19:be:0c:0e:37:4a:34:
64:f5:7a:93:f9:ac:c4:45:77:29:71:dd:a5:ec:fd:e3:26:a2:
9c:a4:04:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org