Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC1E497A286211EF86ED25ED7CDC24C2.roa
File: FC1E497A286211EF86ED25ED7CDC24C2.roa (raw, json)
Hash identifier: Mopc/Kj+XT4V6HLyGTtoKIo1Dp8ahJurSC0jXgy5kFU=
Subject key identifier: D1:30:C4:A6:67:E6:04:E6:F3:B1:21:7B:A6:D1:A0:FD:CA:B1:0B:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC1E497A286211EF86ED25ED7CDC24C2.roa
Signing time: Wed 12 Jun 2024 02:25:07 +0000
ROA not before: Wed 12 Jun 2024 02:25:04 +0000
ROA not after: Sun 15 Jun 2025 02:25:04 +0000
asID: 134687
IP address blocks: 154.197.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49611 (0xc1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 12 02:25:04 2024 GMT
Not After : Jun 15 02:25:04 2025 GMT
Subject: CN=66690703-7fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:59:e8:fe:4b:5d:a8:be:d3:be:8a:a4:b3:
ff:bc:d5:cd:b4:93:61:79:0d:ef:49:94:4c:88:91:
35:d3:a7:4c:38:7c:44:e7:92:28:6e:5f:42:b7:99:
c0:4a:c6:62:3e:a9:4e:a3:45:f6:46:98:c5:ba:e6:
9f:c2:53:1c:52:79:dd:f5:e7:47:58:6a:77:8e:05:
e0:c5:98:64:8b:4b:04:35:57:ae:cc:74:6a:d9:20:
f1:2e:bf:92:87:33:96:64:f3:72:99:bb:10:8c:f0:
4c:7e:2a:78:32:83:69:58:f2:b0:c9:65:b4:92:af:
10:7c:ab:08:fe:56:84:1c:f6:44:6e:37:68:40:91:
1d:7c:36:a1:4f:fa:bc:e6:a3:1f:b8:87:c7:a7:f2:
3e:bc:5c:65:dd:a2:a5:58:9f:1d:fa:e4:9d:01:1b:
9e:88:8b:0d:e9:71:87:cb:60:cf:f9:dc:45:a9:62:
94:f5:6a:9a:4a:ec:f0:ca:e7:5c:04:8d:27:3f:a4:
ff:fb:c3:82:5a:30:2e:fe:09:44:89:48:40:1e:5a:
ac:03:58:a8:9a:aa:f8:30:26:42:91:3b:44:a1:7b:
5f:cd:f8:80:26:45:08:fd:41:d9:df:3a:30:34:3e:
9b:4a:f4:1f:de:4e:d6:2c:76:67:6e:93:3e:f4:a6:
cd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:30:C4:A6:67:E6:04:E6:F3:B1:21:7B:A6:D1:A0:FD:CA:B1:0B:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC1E497A286211EF86ED25ED7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.38.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:7c:cf:ad:be:42:53:a9:88:5b:65:c0:15:6c:35:a3:c5:57:
38:1d:11:7d:48:c6:d7:15:34:d7:5f:1f:62:0d:f7:1a:51:ea:
53:03:fb:58:a7:e1:1b:59:74:f1:c3:b7:65:ba:b3:08:2e:d5:
16:94:52:81:27:6a:e7:93:ad:15:10:0b:54:6d:35:ad:f8:7d:
b5:4a:15:ee:c3:6c:1e:59:65:cb:7b:8c:f0:b3:dc:8f:ae:85:
72:58:fb:7a:d2:b9:9c:09:58:f9:ab:fd:4a:84:16:9f:3b:0a:
bb:69:ba:5d:ca:85:58:9b:71:74:e5:94:2d:46:54:76:52:09:
22:9a:c6:3d:e3:f8:b9:80:c5:20:8a:29:b1:1b:f3:25:2a:40:
e6:26:29:f4:69:75:a4:33:96:e9:b7:6c:a2:5d:a4:8d:43:90:
72:5c:5a:9f:4f:c3:4a:8e:35:c5:45:a5:2a:28:c5:b4:ae:22:
12:80:b5:61:03:0c:e5:18:74:03:a2:92:be:88:91:57:35:e2:
34:4d:1e:24:b4:5f:3e:4a:77:e8:3c:4e:81:7d:ee:1e:c3:2a:
0f:ba:7a:c6:09:0a:b7:b1:54:22:cc:b4:ad:12:bb:17:2a:38:
93:b4:e6:2e:1f:c1:fa:29:77:7f:0c:81:f6:2c:67:61:b4:1e:
74:89:09:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org