Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB3EC8DAA9CD11EF8A7A964F762E951A.roa
File: FB3EC8DAA9CD11EF8A7A964F762E951A.roa (raw, json)
Hash identifier: obOnn+1PYoCEhiT3ScOO9fMvy02fU7+Hz+uiyy0QmDQ=
Subject key identifier: 79:E2:AC:65:F4:44:E5:3A:43:0B:F8:FE:8B:79:D5:22:1A:C1:46:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB3EC8DAA9CD11EF8A7A964F762E951A.roa
Signing time: Sat 23 Nov 2024 19:06:02 +0000
ROA not before: Sat 23 Nov 2024 19:05:58 +0000
ROA not after: Mon 02 Dec 2024 19:05:58 +0000
asID: 9009
IP address blocks: 154.92.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70142 (0x111fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:05:58 2024 GMT
Not After : Dec 2 19:05:58 2024 GMT
Subject: CN=6742279a-1f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f3:9f:1a:4d:60:af:c6:dd:87:df:f5:1a:13:
3f:ee:e1:8a:9b:b1:fa:7a:93:db:13:f6:14:2d:12:
fa:ef:e8:00:6c:8e:30:3d:02:de:f7:b5:a1:94:65:
cb:06:30:20:68:2d:75:d6:0a:d7:95:20:45:16:7f:
54:22:fd:76:f6:fc:e9:5b:1c:57:7e:9a:57:6d:4f:
8b:bf:45:fa:14:91:d0:fc:47:d6:62:56:b7:51:e0:
6b:26:5f:6a:ca:38:2b:e2:60:77:e9:4a:f1:b2:cd:
b4:63:c7:dd:de:00:a1:42:36:52:74:ff:0b:41:d6:
c3:12:8b:db:1f:6f:d8:64:9a:1e:de:4c:1d:e0:8b:
8c:82:51:51:27:07:69:ea:25:35:ad:db:94:85:8f:
ad:d7:16:b3:fd:e4:65:6f:88:cb:6f:84:b4:31:ad:
64:c8:6c:ea:c1:7e:a1:c1:2f:eb:2d:d2:32:1e:cf:
ac:7f:75:4c:09:ba:76:49:0d:c2:b9:2a:f1:ce:fe:
96:1d:e3:e9:bf:4d:bc:c5:c3:09:c4:24:20:5d:05:
03:a0:82:e9:0b:45:1d:18:fd:c1:4e:5d:6a:55:d3:
5a:7c:fc:da:13:95:65:62:05:8a:27:ff:a9:0a:27:
9a:dd:8e:3d:b9:4d:25:62:ec:94:ff:55:32:5a:34:
22:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E2:AC:65:F4:44:E5:3A:43:0B:F8:FE:8B:79:D5:22:1A:C1:46:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB3EC8DAA9CD11EF8A7A964F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.112.0/21
Signature Algorithm: sha256WithRSAEncryption
06:fd:af:a3:5b:d2:a8:a5:5d:ef:3a:29:d0:d7:40:b2:83:1e:
0b:3e:1d:d1:90:ac:ef:4d:61:9f:62:d3:9e:4f:f6:63:05:c9:
e5:bb:ca:65:c1:7e:61:fc:92:72:68:66:b0:24:48:da:ad:51:
15:76:13:93:ec:24:1d:08:86:07:92:0e:ab:da:4c:8d:3e:93:
b6:68:2d:d1:7a:b9:a9:be:c9:f0:92:dc:16:c6:bf:06:59:ec:
c5:42:54:8c:9b:e9:48:43:00:52:73:db:35:99:44:ba:81:c4:
66:43:1d:d1:ac:57:34:d6:c3:8c:67:c0:84:5b:84:c3:31:b4:
f7:6f:dd:29:41:e4:73:46:9e:f3:8e:89:a6:8b:16:0f:9c:30:
cf:3b:be:8a:d6:3b:5d:5a:06:d9:4f:0a:db:36:91:ca:21:51:
bf:2d:d8:29:ae:73:e3:c6:99:3d:75:57:0d:79:41:15:1b:07:
94:bf:0f:71:7d:d1:2f:5f:7e:fb:6d:93:3c:d8:f6:12:a9:4c:
c9:9e:76:00:c3:75:3a:5a:b4:bd:a4:e6:85:ab:25:c9:8b:61:
b4:6f:b3:04:bf:03:89:cc:20:17:36:7a:bd:97:88:ec:7d:f9:
ee:21:57:e2:58:03:96:6b:29:8a:07:67:d8:e6:2d:e2:4a:53:
a1:b4:aa:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:47 2024 by rpki-client on console-ams.rpki-client.org