Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC2D5F5A976B11EFB5042969762E951A.roa
File: FC2D5F5A976B11EFB5042969762E951A.roa (raw, json)
Hash identifier: 9I8+eeEG2dX2RGvEPPavGqRqp+HIb3hAMf4FZ95DLP4=
Subject key identifier: 2C:9E:86:DA:2E:61:7C:7D:07:FA:6C:3B:C6:1D:79:B4:3E:61:36:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010492
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC2D5F5A976B11EFB5042969762E951A.roa
Signing time: Thu 31 Oct 2024 09:39:12 +0000
ROA not before: Thu 31 Oct 2024 09:39:08 +0000
ROA not after: Sat 21 Dec 2024 09:39:08 +0000
asID: 63139
IP address blocks: 154.194.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66706 (0x10492)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 09:39:08 2024 GMT
Not After : Dec 21 09:39:08 2024 GMT
Subject: CN=67235040-8c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f0:55:17:c4:67:14:4d:69:47:03:3a:8d:ba:
01:26:a1:41:62:23:29:db:d6:85:6f:82:15:08:c3:
59:40:be:25:3c:20:0d:95:01:b2:3e:38:3d:01:8c:
7b:51:19:98:02:15:21:9f:32:69:9d:ef:22:d6:2c:
4c:09:04:a5:d0:55:0b:83:10:25:a0:46:93:3d:45:
b6:20:82:ae:f4:5b:cf:aa:51:7c:11:ce:85:e2:e5:
27:af:76:dd:c3:b0:ab:29:8f:13:e6:5a:82:23:52:
7c:31:f0:d9:0a:13:dc:fd:ce:ef:b8:33:d1:51:bd:
e4:99:a0:fd:f0:f2:8f:0a:2b:d1:7d:65:06:ae:0c:
43:fa:3b:ca:a0:8d:51:88:19:80:fe:81:42:d3:7f:
af:81:8e:9b:d4:66:a7:35:32:e4:1b:5f:e4:f0:62:
86:21:12:ae:df:1c:42:13:bc:f3:7d:e5:50:29:79:
35:d8:36:36:57:4b:1a:5b:58:b7:8a:e9:0c:7b:61:
e3:d8:bf:1c:de:77:57:51:89:18:c6:df:01:8c:5d:
c3:d8:51:1a:35:c8:60:b4:69:26:e4:0a:40:54:44:
7a:c1:58:0c:01:a2:ce:30:e1:92:98:f4:dc:e2:27:
dd:a3:38:09:f8:5b:7a:ce:cf:a7:e5:72:bc:3b:07:
57:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:9E:86:DA:2E:61:7C:7D:07:FA:6C:3B:C6:1D:79:B4:3E:61:36:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC2D5F5A976B11EFB5042969762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.68.0/24
Signature Algorithm: sha256WithRSAEncryption
41:95:f6:9b:c4:0b:eb:a3:96:4f:e9:df:a6:70:20:1e:d6:f3:
01:40:13:f5:52:35:a1:31:64:89:8c:e3:78:f6:ce:3f:2a:52:
a2:3c:78:c7:85:22:7a:cb:94:d0:2e:87:82:04:a5:e1:8c:94:
71:15:ff:db:1f:7a:85:ca:19:2e:28:3c:21:cf:24:6a:0c:14:
1f:c6:0b:12:58:18:4e:0d:53:11:93:ca:f2:b2:41:dd:df:ce:
fd:1b:5e:48:43:0d:d0:69:c8:7e:a9:a9:30:53:7b:da:57:63:
60:f7:42:d5:a6:25:e2:87:41:6a:64:38:b0:58:60:9a:f9:5d:
36:cf:87:3e:29:d3:16:a7:fe:74:a3:86:bc:4b:35:94:7e:f1:
d9:1f:32:52:8c:7d:a8:0f:40:29:29:dd:e8:c5:4c:3b:06:83:
73:6f:d6:21:01:15:c3:77:e4:3b:62:e8:ea:09:37:b2:e8:e0:
86:f4:8a:c2:c2:67:0d:ea:21:d3:34:1b:d1:09:fd:e6:94:d1:
35:71:44:e6:aa:ae:5b:7b:7c:a5:07:5f:2e:f7:54:9f:e4:24:
46:76:69:f4:37:c4:ca:ce:5e:08:86:9a:a0:cd:4d:5f:3c:39:
1b:b6:5c:51:7a:3c:ae:bb:03:8c:4f:69:45:5f:30:e3:09:eb:
b4:ec:52:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org