Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCBE83988B9711EFB2FCF35D762E951A.roa
File: FCBE83988B9711EFB2FCF35D762E951A.roa (raw, json)
Hash identifier: //+Mhs9nylTjhB4YkBqG/UZIyHn9CFERyV0h7iAjO9A=
Subject key identifier: E3:C5:B0:93:EF:99:13:41:B7:5D:AD:66:F1:A8:35:B1:61:15:1B:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE99
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCBE83988B9711EFB2FCF35D762E951A.roa
Signing time: Wed 16 Oct 2024 08:23:57 +0000
ROA not before: Wed 16 Oct 2024 08:23:53 +0000
ROA not after: Fri 22 Nov 2024 08:23:53 +0000
asID: 18779
IP address blocks: 154.203.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 08:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65177 (0xfe99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 08:23:53 2024 GMT
Not After : Nov 22 08:23:53 2024 GMT
Subject: CN=670f781d-b400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:37:8d:b1:31:2b:8a:fc:0f:54:6d:ec:94:60:
32:de:0d:fa:1f:fc:c3:22:72:0d:8e:ec:6c:fc:37:
e9:bd:ae:da:1a:0f:dc:8a:47:78:f7:5e:de:72:80:
4e:50:d7:57:13:8c:83:a9:3d:28:5f:31:67:f3:ed:
36:69:a7:84:ba:50:66:bf:e4:62:53:43:15:f6:95:
ff:2c:b4:3f:ef:87:4c:c0:a4:d4:05:8c:4a:f4:47:
97:aa:14:32:2d:5a:2f:55:52:26:75:03:83:c2:7c:
ad:b4:18:d4:83:40:5d:7c:20:3f:94:f0:a4:07:73:
13:d6:63:e3:b9:ea:a8:6a:32:24:22:9b:e9:c1:b0:
35:1e:92:08:05:04:07:56:10:ac:a6:d1:2b:3f:06:
fd:cc:ea:6a:15:87:fb:b3:0e:32:c7:9a:f6:91:b8:
87:b5:72:a3:30:39:b3:1b:cf:38:d0:5b:d2:af:52:
eb:12:1f:a5:12:8d:b8:a1:a1:6b:ce:55:73:d2:08:
42:af:eb:3e:a5:8b:3d:d7:ff:35:49:1d:94:f1:28:
d8:53:ab:f9:e3:d4:af:8a:a4:b5:6e:d8:4d:29:4c:
7f:67:23:d2:a5:48:c9:26:9d:80:d9:f7:d3:0d:01:
54:d2:97:3e:0e:bf:65:c2:39:38:73:a9:70:da:f5:
3d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C5:B0:93:EF:99:13:41:B7:5D:AD:66:F1:A8:35:B1:61:15:1B:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCBE83988B9711EFB2FCF35D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.60.0/23
Signature Algorithm: sha256WithRSAEncryption
07:e7:04:6d:8f:6c:43:21:b1:a6:c8:dc:c4:ea:85:9f:e9:49:
42:2e:bd:8c:77:36:bc:95:bb:5f:e5:6d:3f:91:2e:e3:3e:23:
fb:43:02:04:13:af:7c:8f:ec:75:26:82:66:43:67:1b:40:3e:
88:e7:14:66:ed:a1:4b:ba:b2:18:3c:bf:93:a4:e6:9f:12:0f:
c5:0b:09:f2:74:98:f9:15:6c:f8:3f:2f:b6:73:be:80:ce:4a:
d4:dd:56:31:cf:85:00:de:03:9b:ad:d4:12:aa:85:c9:0a:c7:
9f:6d:3c:66:9a:ed:61:37:03:07:83:59:9d:27:b5:5c:e8:7a:
14:a1:36:51:aa:9d:d0:4d:37:ec:8c:4b:88:58:81:be:a6:13:
09:18:2e:6b:84:4d:21:1c:22:a1:c8:25:c0:73:69:c5:9d:34:
61:48:e0:66:33:0e:b7:5b:64:03:a5:02:de:e0:72:22:7e:0d:
a5:f7:9f:40:01:fa:d8:5b:62:fa:f7:a2:f4:62:2b:73:0f:b2:
0e:a2:2a:a7:48:07:7c:09:34:a3:b4:25:ab:62:42:9c:75:1d:
34:aa:ac:27:6b:e2:cc:71:0e:45:94:bb:d2:03:9f:48:a2:1d:
26:73:c0:50:d4:1e:7f:0b:90:17:9a:a7:83:17:79:02:41:b4:
60:52:ac:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:15 2024 by rpki-client on console-fra.rpki-client.org