Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC88C6369AA611EFA6F53847762E951A.roa
File: FC88C6369AA611EFA6F53847762E951A.roa (raw, json)
Hash identifier: csUR0ZiEQYLloiKm0O1WZZvCoiASbkU+GGJ4Sa++eE4=
Subject key identifier: C5:CD:A7:97:8D:7F:23:5D:56:B8:37:69:51:20:EE:B2:FC:B2:A2:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010696
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC88C6369AA611EFA6F53847762E951A.roa
Signing time: Mon 04 Nov 2024 12:19:06 +0000
ROA not before: Mon 04 Nov 2024 12:19:02 +0000
ROA not after: Mon 09 Dec 2024 12:19:02 +0000
asID: 141883
IP address blocks: 154.214.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67222 (0x10696)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 12:19:02 2024 GMT
Not After : Dec 9 12:19:02 2024 GMT
Subject: CN=6728bbba-5cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:64:7c:68:90:9a:44:41:87:f0:45:22:8a:53:
5c:db:51:11:17:07:1e:45:04:c1:ce:32:b6:d6:16:
10:d8:39:fe:a2:97:a6:5d:83:24:35:1a:29:0c:e4:
7e:fc:cb:01:19:89:4c:2d:90:cb:09:af:fe:f7:b5:
19:6d:7b:5a:b5:d5:d2:9a:f1:bb:31:fc:43:bf:f7:
e0:63:f9:35:44:8e:7a:8a:5c:79:36:3f:28:9e:28:
87:c0:7b:5c:49:ff:92:1a:d1:eb:e9:30:97:10:2c:
17:a8:57:77:cd:2f:e2:b6:a3:d0:ea:1c:c1:71:fe:
e0:d1:2d:c3:ec:06:63:6f:2b:62:ee:78:d5:f1:b5:
67:09:8c:1e:0d:2a:0f:53:88:75:10:64:39:2b:b0:
78:80:46:82:0c:24:60:49:95:f8:f5:ba:11:ba:66:
9f:73:08:dd:dd:70:01:42:33:31:42:88:3f:5c:c1:
4d:81:d7:a2:79:49:1c:28:be:5f:9f:09:01:27:4c:
b0:a4:94:da:c3:a4:c2:6c:4a:20:60:e3:02:48:3d:
d4:d5:01:ab:3b:44:bb:8b:53:85:d9:ed:2d:8e:9a:
6c:fc:52:f9:74:6b:7e:9d:1a:30:86:41:c0:67:e7:
61:4d:7d:d3:26:83:14:ad:0c:37:00:1e:ca:5d:d6:
e9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CD:A7:97:8D:7F:23:5D:56:B8:37:69:51:20:EE:B2:FC:B2:A2:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC88C6369AA611EFA6F53847762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.32.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:3b:87:7d:a6:01:2d:5f:bb:67:25:e4:dc:a5:3f:db:4f:e4:
0d:3b:75:5c:d1:97:61:06:b2:f5:16:35:b9:78:00:b9:3c:76:
57:58:5f:ec:56:b8:f4:56:fd:b3:0a:29:5e:dd:e1:e9:e7:e4:
0c:84:da:28:01:af:38:78:b9:dc:e2:9d:86:78:54:e3:4e:46:
9e:03:ad:08:6d:d0:fb:72:c1:89:e1:4b:71:8e:2f:6f:1e:ba:
25:36:47:b9:46:03:b7:4b:75:f3:1b:ca:e4:e7:6d:c0:05:51:
ea:99:dd:f8:ac:37:e4:c5:71:41:1b:b5:23:a2:2c:48:96:e2:
1e:78:bc:56:bc:39:8b:a4:7a:e7:0c:e1:f7:5e:98:6c:12:2c:
41:3f:41:60:48:3d:f4:35:5d:fe:39:98:c0:94:3c:4e:d1:9d:
45:c3:65:74:b2:a1:c5:f7:c7:bf:a5:b0:95:5f:96:b3:2f:e0:
a7:9f:69:a9:4f:fc:38:ee:d2:52:5a:d4:ce:29:b0:54:77:18:
c9:73:4e:3d:57:e8:3f:65:b3:9d:37:03:86:ce:35:82:ad:ec:
4d:6a:c5:07:e4:b0:fd:16:9a:f3:08:06:a3:f1:c5:02:ed:ba:
a6:ba:38:b9:b9:63:7c:a6:1c:40:c1:28:80:e6:3c:12:9c:d9:
b9:3d:e8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:35 2024 by rpki-client on console-ams.rpki-client.org