Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCAFC27882B911EE9644502F4AD9E6FC.roa
File: FCAFC27882B911EE9644502F4AD9E6FC.roa (raw, json)
Hash identifier: xDCqWQsSt6myPtwi3XfoXBBCwCBOyEHjEho0BQSCw7I=
Subject key identifier: FF:C5:DB:17:B6:75:BC:77:3C:5C:E4:2E:6B:1C:A1:87:FF:E5:D3:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FD8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCAFC27882B911EE9644502F4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:49:41 +0000
ROA not before: Tue 14 Nov 2023 06:49:38 +0000
ROA not after: Tue 12 Nov 2024 06:49:38 +0000
asID: 397630
IP address blocks: 154.202.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20440 (0x4fd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:49:38 2023 GMT
Not After : Nov 12 06:49:38 2024 GMT
Subject: CN=65531885-ce6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fe:88:2e:e7:56:3b:8d:9c:cc:1d:21:04:50:
b7:c2:b0:96:2b:2d:66:51:44:42:02:09:d2:14:ce:
f4:93:85:67:40:a6:10:26:56:d3:bd:e8:71:e8:5f:
ff:3a:d6:80:50:d2:90:46:59:f5:95:8c:7b:78:02:
bd:90:86:7e:5e:92:e4:8e:01:2b:ea:16:62:98:5f:
ea:3a:e3:1c:50:bf:c2:e5:bc:bf:b9:ac:5e:55:bb:
21:6f:81:f0:e5:b7:57:9b:49:5f:6f:b6:e0:c2:79:
68:4d:3e:1d:62:98:92:89:fb:fe:1f:12:6f:a0:f4:
b7:70:af:43:7c:4c:e6:90:a7:51:1c:3f:24:f1:df:
2d:43:e3:8a:06:d2:3e:81:d8:ef:fd:cd:4e:26:f6:
d2:4e:c8:9c:04:ae:df:51:68:1d:a1:ea:d1:50:31:
52:a4:f8:6c:20:6c:db:88:5c:5c:3b:ee:7c:94:4a:
5d:77:d0:ad:60:06:bf:98:be:26:27:61:d4:87:6e:
47:87:b5:56:2b:ac:52:af:26:22:6e:d6:5e:50:9d:
6e:15:5f:fd:3b:96:62:75:5b:9f:ce:03:e9:29:24:
6d:22:63:4c:cb:31:af:1a:02:c6:a5:79:e0:82:7f:
90:96:8a:27:2a:03:ad:58:10:93:d0:15:ab:f7:28:
f2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C5:DB:17:B6:75:BC:77:3C:5C:E4:2E:6B:1C:A1:87:FF:E5:D3:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCAFC27882B911EE9644502F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.116.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:8d:f4:ed:02:fa:8a:7a:46:18:87:38:a3:d5:af:5d:95:b4:
9c:eb:45:21:a8:30:c6:f1:39:ac:4f:0f:d0:5b:0c:c2:3d:ea:
4f:8d:4a:a0:f1:63:b7:35:bd:64:8b:fc:f6:2e:d1:04:61:cd:
c8:20:6a:41:18:90:02:60:5a:d7:7a:3f:c8:3c:08:15:24:3d:
84:13:e7:1b:82:05:31:1b:ad:c7:46:d8:52:e8:af:47:be:96:
ee:0f:8a:3c:a3:5b:e6:b3:7e:89:59:9f:52:99:3e:97:ac:15:
22:bd:93:7d:e0:bd:b7:7c:7a:59:a9:69:c8:5b:4a:45:ee:44:
13:77:5a:69:42:21:1c:7b:4a:5c:f5:a4:a3:2c:71:66:35:ac:
fb:03:f8:76:ce:9c:22:ad:74:27:fd:7b:33:b3:ee:7a:a9:71:
3c:fa:27:7f:0a:29:7c:8a:fc:4b:f0:44:52:be:c6:13:94:5c:
e9:88:db:3a:f3:c2:ec:da:f3:6b:61:55:fb:8a:04:9e:97:10:
3a:3a:99:01:c3:e0:db:64:f0:25:fe:36:7f:8d:78:0e:b4:7e:
08:55:88:27:39:d9:21:cc:20:08:ce:e7:2e:62:d5:64:ef:7a:
93:75:8a:77:1d:57:d3:12:d4:3a:a8:5e:89:c1:97:7a:18:cc:
5f:fa:e3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org