Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7757FC772411EFAC259C7E762E951A.roa
File: FC7757FC772411EFAC259C7E762E951A.roa (raw, json)
Hash identifier: FKX0R2l+PZBdtZBMtr/PVQS6H0ZP98PmLa0ZBF1fpwg=
Subject key identifier: 73:27:3A:EE:73:0A:C1:15:9D:A3:A5:C5:15:9A:DF:DA:CE:F2:55:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F166
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7757FC772411EFAC259C7E762E951A.roa
Signing time: Fri 20 Sep 2024 07:50:21 +0000
ROA not before: Fri 20 Sep 2024 07:50:17 +0000
ROA not after: Wed 04 Dec 2024 07:50:17 +0000
asID: 23674
IP address blocks: 154.192.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61798 (0xf166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 20 07:50:17 2024 GMT
Not After : Dec 4 07:50:17 2024 GMT
Subject: CN=66ed293d-862e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4b:42:ef:7c:cf:e2:20:18:50:54:b1:a4:79:
35:1e:5d:a9:2f:4a:c0:7e:d7:c5:b4:03:75:05:98:
20:7d:9a:46:6f:cc:91:dc:31:12:d9:82:5b:48:0f:
a1:e1:af:0e:1f:d3:c8:4c:29:ea:4d:b9:3d:82:40:
3b:8f:1b:71:6f:1b:25:d2:f2:c4:96:6b:31:7f:33:
b0:c1:4d:0b:dd:97:00:b8:18:f5:7a:77:c2:06:7b:
89:2e:f1:ff:7a:fc:88:aa:1e:c1:d7:52:60:09:ab:
02:a6:9d:13:60:71:e7:a4:ad:ba:de:14:3d:8d:41:
ba:b6:8d:a6:36:3e:ff:d7:d4:b2:a0:c0:8e:10:81:
e5:7c:dc:eb:1c:40:ec:bf:5e:55:b7:f4:63:f3:d9:
a0:17:69:1e:63:a4:71:93:f0:33:c2:b0:a3:10:5c:
56:4c:7b:b9:64:8b:db:15:de:ea:36:d5:4e:f2:f8:
75:bf:9c:b6:73:84:98:ae:cd:15:ef:59:2f:67:f4:
ec:b6:16:04:9b:34:71:82:32:4b:d8:53:15:0d:f3:
8d:db:24:47:f8:6c:04:13:46:2c:db:df:c9:8e:41:
07:ab:a3:1a:f6:52:ce:ca:3c:f9:e0:52:e4:c5:2f:
6b:8b:53:87:85:94:d6:0b:55:30:22:87:a7:2a:3f:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:27:3A:EE:73:0A:C1:15:9D:A3:A5:C5:15:9A:DF:DA:CE:F2:55:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7757FC772411EFAC259C7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.192.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:bb:b3:9c:67:ca:0c:19:da:62:98:3c:df:8b:aa:6c:e0:bb:
30:e5:ed:a4:5c:f9:49:03:14:58:4b:e2:43:53:fd:d0:af:dd:
ea:a5:75:bf:f3:40:4f:ba:a1:ed:18:71:45:3f:47:af:a0:80:
56:3c:15:c2:57:da:a8:3e:67:56:d9:56:f2:36:4a:bf:90:74:
cc:8b:db:21:36:c6:e3:a6:c5:cc:24:18:cb:69:d3:fd:69:a3:
26:df:1f:3d:e7:b3:10:df:90:e8:c7:9a:32:3a:70:1b:97:7e:
bb:2e:4d:a1:5b:99:b1:5b:10:3b:2a:e8:7a:1b:38:ae:33:01:
9e:b9:e7:4e:eb:16:87:27:a9:18:02:97:df:ef:e7:f8:8b:41:
dc:55:8d:02:c4:7c:e5:cd:a5:69:8b:85:81:08:34:b7:cc:85:
13:ed:93:31:1e:59:0b:75:e9:08:b2:0a:65:6a:9a:03:37:a5:
69:e9:00:8c:e0:89:5c:54:76:b4:11:e5:74:bc:6e:66:31:57:
3a:22:c1:b7:e6:11:9a:70:af:26:fe:5d:11:15:94:21:8f:75:
06:94:06:10:c5:56:d3:23:bb:b0:d5:6a:97:63:c0:b2:f2:28:
dc:23:e2:e1:13:a4:58:b1:8a:73:91:69:74:12:ac:ae:43:47:
3f:5c:86:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:32:35 2024 by rpki-client on console-fra.rpki-client.org