Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDC93D1AA8EC11EF92939E49762E951A.roa
File: FDC93D1AA8EC11EF92939E49762E951A.roa (raw, json)
Hash identifier: EPAZ2KDAdpNSBpl1BpAQQWuXCgEl0jYMae7CnenB/O8=
Subject key identifier: 36:6D:BB:44:71:3C:EB:78:E8:07:4F:03:12:F5:81:30:13:CF:27:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011123
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDC93D1AA8EC11EF92939E49762E951A.roa
Signing time: Fri 22 Nov 2024 16:15:29 +0000
ROA not before: Fri 22 Nov 2024 16:15:26 +0000
ROA not after: Tue 03 Dec 2024 16:15:26 +0000
asID: 62240
IP address blocks: 154.195.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69923 (0x11123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:15:26 2024 GMT
Not After : Dec 3 16:15:26 2024 GMT
Subject: CN=6740ae21-baec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:17:ec:84:ce:8b:be:32:76:29:69:db:0d:dd:
ae:29:6b:9f:f6:1f:e6:3d:06:94:1d:39:f1:ca:13:
bf:52:dd:73:54:28:a8:9f:77:a2:ef:e8:8a:07:b0:
3f:38:98:15:96:66:82:ca:9e:9e:21:9c:fa:d4:f1:
f1:e6:eb:86:d5:21:44:b6:2d:7c:2a:af:0f:60:c4:
94:b0:7e:17:b0:5d:cd:1a:84:eb:17:ea:25:3f:0a:
c4:7b:d5:9d:0c:1e:18:65:54:05:0b:8e:79:55:34:
90:96:e6:cb:ce:38:71:59:e3:20:a8:50:d6:ac:68:
b3:e5:20:87:0c:71:e6:f5:8d:2f:7e:34:5f:13:83:
a4:c6:5a:d9:ca:03:cb:9b:55:e5:27:63:5f:65:25:
7d:0e:d5:11:3a:6f:4c:a7:98:11:b4:e8:20:05:7f:
29:d2:84:61:8d:e1:be:ec:18:8b:b7:f0:40:45:f7:
e1:f2:4b:9a:f9:d7:bb:5e:fc:1d:ec:c8:f1:15:b5:
4f:da:a0:3b:8f:d7:d3:e6:c3:1d:53:8a:c8:77:ca:
48:e1:4c:60:6e:3c:f6:ca:a5:87:3a:19:15:e2:e8:
48:69:6a:64:92:06:a5:79:a6:ab:4f:fc:c5:bb:ea:
5a:c1:fc:08:21:28:79:40:5a:85:cd:7f:8f:f1:e1:
3a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6D:BB:44:71:3C:EB:78:E8:07:4F:03:12:F5:81:30:13:CF:27:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDC93D1AA8EC11EF92939E49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:bc:a0:6a:bf:fc:ff:ef:60:1a:2f:6c:80:1a:34:74:8b:8d:
bc:d7:64:ec:00:a7:79:d2:93:b8:21:1d:8d:3f:5e:9b:87:37:
21:41:cf:f2:ec:a8:31:05:53:50:9e:5c:f5:48:e6:54:91:e1:
18:78:a9:6c:46:6c:9b:11:6e:8b:1e:ec:db:42:ac:1e:6e:b2:
de:4a:92:4b:3e:f7:06:f7:6f:29:26:5e:dc:65:e6:0e:b4:f6:
71:4b:79:26:02:d4:ee:14:1c:ca:97:56:3e:06:cd:a6:79:35:
48:20:27:e5:2e:c3:57:80:83:19:dd:05:ec:0c:63:d3:4a:9a:
54:0a:72:84:80:c7:46:95:cc:24:e9:9f:ad:32:9d:bc:36:11:
f1:7b:ca:b0:a2:1f:9f:07:a9:ce:e5:ab:cf:06:60:90:28:c6:
9f:0f:e7:f6:b5:12:3a:81:d1:5a:1a:3e:3c:33:12:83:ba:c9:
94:2c:37:93:f5:53:15:72:de:0c:f0:18:cf:03:99:01:57:cb:
d5:23:80:3f:90:0d:db:2d:f9:a9:9a:d8:be:a9:9f:4b:ce:dc:
f4:a8:f6:f4:ec:45:fc:8e:11:2b:39:56:fa:d0:72:87:a5:6c:
fd:0c:d6:48:27:08:a8:13:b9:95:cb:35:6c:2a:1f:b4:8c:54:
99:ab:62:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:54 2024 by rpki-client on console-fra.rpki-client.org