Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBDCC34C976611EFA2EEBA4A762E951A.roa
File: FBDCC34C976611EFA2EEBA4A762E951A.roa (raw, json)
Hash identifier: 2yQr4PdDXktD4BQ1qULCz79FEW0kU05+UgULR/ysi80=
Subject key identifier: 11:54:B1:24:84:3E:AB:BA:4B:76:0C:16:34:A4:DA:62:59:BE:E0:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010480
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBDCC34C976611EFA2EEBA4A762E951A.roa
Signing time: Thu 31 Oct 2024 09:03:24 +0000
ROA not before: Thu 31 Oct 2024 09:03:20 +0000
ROA not after: Sun 01 Dec 2024 09:03:20 +0000
asID: 54600
IP address blocks: 154.202.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66688 (0x10480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 09:03:20 2024 GMT
Not After : Dec 1 09:03:20 2024 GMT
Subject: CN=672347dc-2940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e6:de:e8:a0:bc:17:db:d5:25:14:c0:a0:7d:
e8:fe:72:29:4e:c4:27:c4:c4:1c:c7:8d:90:dc:58:
8b:18:d3:87:b8:6f:ee:8c:14:52:2d:ee:fc:cb:a6:
87:60:15:ae:bc:2c:4f:d8:f0:84:1f:46:0e:b9:d5:
6c:3e:dd:a4:16:ad:bb:d7:7d:71:d3:4e:89:72:cf:
67:22:ee:47:ec:95:06:b1:7e:bd:7b:94:7e:5d:d2:
54:27:f6:b4:ac:6c:90:04:c9:7a:d1:df:6b:0c:11:
e8:43:58:43:27:e7:1c:e6:fb:01:f2:6f:ca:c4:5e:
6b:f8:ed:25:ea:bf:c4:61:46:a1:84:fe:37:7e:9c:
ac:de:32:45:ae:24:c9:4d:85:06:46:f2:ee:86:8c:
e5:7c:4f:f2:5a:50:77:23:b8:d7:8e:99:bf:1a:c9:
73:c5:bd:a4:d6:d9:a7:4d:ba:a8:36:e8:4e:e7:42:
6f:c4:cd:76:10:0a:87:4b:f0:78:b5:92:d2:14:bc:
00:31:09:17:6d:48:10:93:b8:50:87:a6:9e:53:2f:
e9:3f:72:b4:a7:21:ff:49:32:e7:cb:44:75:1e:ed:
66:88:24:4c:d2:f8:3e:90:20:08:5a:a1:18:0a:9e:
5d:b0:74:2e:7a:b3:90:a7:9d:b7:7a:36:07:74:b6:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:54:B1:24:84:3E:AB:BA:4B:76:0C:16:34:A4:DA:62:59:BE:E0:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBDCC34C976611EFA2EEBA4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.224.0/20
Signature Algorithm: sha256WithRSAEncryption
64:3f:ff:16:b7:a0:dc:21:59:fe:de:29:34:ae:6b:9e:6f:cb:
69:2d:0f:c7:98:3c:41:16:34:ad:48:b5:95:c1:10:d7:57:0e:
6f:ab:54:7e:ea:7e:37:52:d7:9c:e3:3c:ce:75:a7:02:30:0f:
6d:c9:12:cb:45:c1:54:6e:0f:bf:31:2f:61:a6:9d:88:3f:56:
55:16:8c:8b:f1:8a:1b:d1:93:aa:6a:9e:5a:71:d0:00:49:d1:
42:da:61:2a:ef:74:bf:a4:c8:02:cc:e3:ee:e0:08:17:c4:22:
81:cd:9d:57:00:4d:d0:55:8b:aa:6f:fe:63:4e:60:ec:dc:32:
3e:d6:28:0e:af:ad:cc:14:3d:96:f6:ec:d6:56:2c:cd:bd:e7:
7d:32:e8:74:c5:c3:15:33:28:ec:25:b6:c8:6c:3e:49:dd:2e:
97:4c:8d:e0:3c:c9:95:2e:5f:e3:5d:44:24:c2:f4:b3:6e:3a:
54:3e:11:43:9d:b0:01:e9:56:c1:36:29:f4:f2:0a:a3:02:46:
64:c6:a4:3b:17:26:c0:2b:9b:da:d2:0a:a7:3b:46:b1:63:70:
2e:67:d9:f4:81:01:6a:10:1a:77:6c:3a:8f:af:a1:ee:a7:2b:
d2:59:e1:bc:4c:d8:ae:9e:85:9c:14:91:b0:61:be:48:b3:e2:
45:89:bc:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org