Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCFC7EEF00B11EEBA000568775412E6.roa
File: FBCFC7EEF00B11EEBA000568775412E6.roa (raw, json)
Hash identifier: ZuKuqsR8Jn+AoRftto+dMl/uKh049bYuMD10LkjIipk=
Subject key identifier: 2B:D2:3F:BD:13:D5:3C:03:42:C5:DE:A1:8B:CB:D7:F3:25:AC:0E:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A84E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCFC7EEF00B11EEBA000568775412E6.roa
Signing time: Mon 01 Apr 2024 09:41:16 +0000
ROA not before: Mon 01 Apr 2024 09:41:12 +0000
ROA not after: Sat 11 May 2024 09:41:12 +0000
asID: 138915
IP address blocks: 154.205.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43086 (0xa84e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:41:12 2024 GMT
Not After : May 11 09:41:12 2024 GMT
Subject: CN=660a813b-efa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d6:68:0e:fe:6a:4e:8c:8f:21:07:11:c5:19:
17:ab:5d:2f:7d:86:9f:18:27:df:70:f5:75:ff:28:
7f:0d:68:ef:92:a9:53:e5:bf:fd:7e:44:7c:01:12:
87:1e:da:a6:a0:a3:ca:bd:2c:d9:4b:23:32:d3:31:
13:65:a7:01:60:6c:bd:10:b5:b3:f6:e9:33:52:b0:
3e:38:b6:6b:c2:18:d0:42:e2:56:1f:b7:1d:58:ed:
49:12:62:83:c3:92:1a:75:ea:73:35:87:4a:72:19:
8a:02:cc:f8:32:b7:e0:64:c5:75:40:5b:de:28:d9:
2e:e1:c7:c4:4a:62:3d:dd:10:b1:6f:9d:1e:c3:dc:
50:d0:41:ad:01:fd:46:e1:9b:64:dd:fc:71:78:b8:
d1:db:a0:fa:1c:40:69:ab:f7:8d:e0:67:36:d0:c1:
cd:f7:60:e0:3f:d1:b8:ef:4c:13:80:c3:b8:34:78:
41:68:e3:9f:bb:59:d7:56:7e:2b:08:92:55:5b:28:
1c:16:91:95:6f:e3:25:71:90:b8:b6:3c:79:ab:33:
b9:e5:36:3e:ef:39:b7:dd:56:9a:c8:1d:52:6a:ca:
0b:dd:bf:7b:23:9f:36:de:60:a7:ab:ae:ae:07:27:
4c:81:40:3f:e0:dc:09:10:45:84:94:b6:a1:58:4c:
06:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D2:3F:BD:13:D5:3C:03:42:C5:DE:A1:8B:CB:D7:F3:25:AC:0E:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCFC7EEF00B11EEBA000568775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:df:85:a9:05:77:1f:41:8a:a2:47:f0:83:0b:ef:d0:64:b1:
75:2f:c3:cf:39:18:12:68:35:aa:e0:75:f2:17:56:a5:67:28:
d2:e3:94:83:cd:d4:f9:7d:8e:c3:5c:8a:57:17:b9:c5:5a:84:
a1:85:77:0a:7a:37:2b:4c:46:11:a1:13:71:5f:ce:26:df:0e:
df:b2:f9:4e:d3:6d:3b:d1:01:31:af:41:d8:cd:5b:90:6b:81:
77:d2:da:a3:d7:9e:da:80:76:91:c8:47:35:94:3e:7a:10:eb:
95:6a:8c:cd:21:85:59:5c:85:57:35:49:c7:e8:1a:9d:dd:fe:
50:c6:c8:30:17:53:e7:38:04:98:ca:c9:29:8d:b3:6b:6b:47:
43:6b:27:23:fc:0f:0b:fe:79:83:f2:1b:25:f7:14:30:f4:90:
92:fe:d7:fd:bd:46:ad:f5:1e:2e:36:85:66:e2:8c:9d:93:6c:
0c:6b:5f:34:82:b1:cd:09:71:ec:c8:7f:7a:f7:94:74:15:c9:
71:06:c0:b4:fc:7d:2a:72:fc:8a:82:15:ed:40:0d:e4:c5:6a:
2a:18:72:9b:f9:e8:b4:9a:5b:4f:be:61:f9:1e:b4:8a:5a:c9:
a0:4a:dd:06:88:7e:a0:17:85:dd:a9:0b:a7:15:f0:fc:cd:60:
01:de:8f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org