Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB86235AA91F11EF908C0184762E951A.roa
File: FB86235AA91F11EF908C0184762E951A.roa (raw, json)
Hash identifier: ANAicVwjqLRY2F5ouzm/HVAX6gcSkF6ZnTI9qg2OUBk=
Subject key identifier: BD:55:6E:5F:AB:FA:4E:9A:FE:BB:C4:E0:06:0D:D1:D4:50:2D:90:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011159
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB86235AA91F11EF908C0184762E951A.roa
Signing time: Fri 22 Nov 2024 22:20:30 +0000
ROA not before: Fri 22 Nov 2024 22:20:26 +0000
ROA not after: Tue 03 Dec 2024 22:20:26 +0000
asID: 395886
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69977 (0x11159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 22:20:26 2024 GMT
Not After : Dec 3 22:20:26 2024 GMT
Subject: CN=674103ae-49ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:33:0a:12:fb:19:dc:d9:f4:c8:ee:36:e7:
07:db:47:a1:61:56:b7:98:9a:e9:23:82:8c:cc:09:
18:59:4c:cd:6b:5b:56:81:71:b8:6f:e0:29:d2:71:
35:5e:f6:fe:57:4e:9e:3e:bc:66:31:05:10:46:c4:
a8:cb:ed:15:e5:bf:ab:f7:ea:f9:8b:3a:8a:ef:f4:
e1:44:09:56:90:35:14:f4:b0:9a:6b:a7:e8:b5:94:
8b:7c:6d:0e:21:19:07:cc:02:b8:c4:d6:bf:81:d2:
16:c6:36:36:cb:01:ef:02:b5:74:e3:b0:3e:f1:83:
c2:00:1a:4e:51:49:1a:60:01:f1:20:7f:6c:dc:00:
40:d6:c6:55:f6:65:2b:d4:1c:10:bf:6a:d6:df:2f:
cd:8c:62:11:f8:81:97:b8:ba:47:27:78:07:a5:19:
b3:ea:38:94:1e:bc:f2:2b:ac:0d:85:25:8f:df:2f:
3b:d3:8b:f8:e8:af:75:a5:18:61:34:97:dd:8d:56:
d6:33:c5:5a:b9:2d:23:6c:11:bd:01:5c:16:c9:8c:
89:6c:11:04:89:c6:71:dc:ba:76:c6:cf:6c:fc:7e:
29:f5:fb:ca:7d:bb:86:dd:62:84:fe:50:37:82:70:
11:8c:7d:80:07:55:0b:c0:06:11:29:02:78:38:ca:
34:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:55:6E:5F:AB:FA:4E:9A:FE:BB:C4:E0:06:0D:D1:D4:50:2D:90:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB86235AA91F11EF908C0184762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
be:ed:70:56:47:82:c3:0b:1c:80:c3:c5:45:51:81:bc:c8:74:
68:a8:b9:0b:f1:8c:85:20:f4:d4:ab:70:29:a7:92:86:7f:41:
86:96:38:af:57:4a:c3:cd:81:93:2d:c4:d5:b5:50:4b:8a:f8:
ac:fe:1c:eb:a7:63:ee:86:6e:35:de:29:d3:63:d1:a2:49:1c:
4d:a2:cf:ce:eb:d4:ee:c3:68:15:8f:28:79:21:e6:de:ea:aa:
50:4a:16:41:70:5d:d1:8a:76:7c:90:d9:4b:6c:fe:e8:db:53:
ee:a8:2c:9f:96:96:07:6e:28:57:4a:8a:ae:44:e9:e5:5b:7f:
80:94:d0:90:5f:3b:6b:a1:1b:d4:ba:3b:08:80:a4:ce:fb:7e:
78:a5:ce:8d:d0:0f:e9:f8:af:ad:a7:88:3f:cb:35:78:7b:f0:
1d:75:3b:95:a7:2c:57:72:f3:92:83:19:0f:1c:47:47:a7:4d:
cd:1d:82:d0:94:93:35:f9:6b:11:56:1a:ec:2d:3a:47:bc:e9:
e8:f7:4e:07:51:74:5a:c1:4d:9c:d5:83:f1:f4:be:72:b3:a0:
13:9f:c3:6c:eb:22:b0:5d:37:e9:7a:93:e2:e0:9f:c3:45:7c:
62:77:8b:7b:ed:36:5d:9c:c5:4d:a3:11:dd:b9:d4:22:83:93:
d9:e6:a6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:47 2024 by rpki-client on console-ams.rpki-client.org