Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDE61712B34911EEBC2A227A775412E6.roa
File: FDE61712B34911EEBC2A227A775412E6.roa (raw, json)
Hash identifier: ce8CRNCMaXXSsuDbwN0wVMgU8GaozO6m7CFQ/h/zbsI=
Subject key identifier: 30:25:83:9E:FC:B9:2D:BD:50:DC:6A:3C:F5:99:D5:CC:B8:06:48:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7546
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDE61712B34911EEBC2A227A775412E6.roa
Signing time: Mon 15 Jan 2024 02:01:27 +0000
ROA not before: Mon 15 Jan 2024 02:01:23 +0000
ROA not after: Fri 13 Dec 2024 02:01:23 +0000
asID: 8796
IP address blocks: 154.205.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30022 (0x7546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 02:01:23 2024 GMT
Not After : Dec 13 02:01:23 2024 GMT
Subject: CN=65a491f7-475f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9e:39:62:cf:c1:d4:02:77:49:29:2d:7d:6f:
16:bd:5b:9c:6c:ff:15:d5:4f:e8:3c:f1:76:53:d4:
d1:e9:83:71:8c:2c:93:23:77:40:6f:18:22:b1:ba:
bf:77:05:dc:2a:30:f8:32:23:4c:de:4d:a2:3c:72:
19:0b:68:b0:c2:bc:b1:32:5b:a0:0b:0f:6d:f7:cf:
de:97:98:aa:79:31:04:51:29:2a:2b:d5:b7:fb:6e:
40:0a:b5:b4:74:71:c8:5f:8f:e7:84:15:69:c2:b3:
14:57:b0:f7:6e:e1:e7:7e:2a:91:7c:27:31:43:27:
12:8b:2d:56:8b:43:f7:f3:31:92:a8:70:be:40:23:
d2:f8:82:2a:50:52:35:db:5a:e2:b2:1a:82:e1:c1:
89:4a:e0:66:36:62:10:e2:87:41:9b:7b:1e:05:5f:
78:e4:44:36:04:c5:b1:c4:ee:6b:84:75:92:93:bb:
d6:59:61:04:59:51:83:54:23:70:5c:59:34:3f:27:
84:cd:ce:1d:5c:c4:dd:42:5c:db:39:28:89:fd:6c:
36:35:22:e7:1c:ed:7c:52:8f:ef:1d:25:c2:19:59:
d3:ad:85:7d:6f:cf:9a:44:36:da:47:71:b0:61:de:
3f:79:e8:5a:f1:33:c3:1d:17:45:77:e7:c3:8c:02:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:25:83:9E:FC:B9:2D:BD:50:DC:6A:3C:F5:99:D5:CC:B8:06:48:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDE61712B34911EEBC2A227A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.199.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b9:c7:91:36:15:62:3a:62:31:1a:7c:6c:b0:6b:66:9e:21:
61:9e:d3:9c:f0:fe:7f:ca:db:c6:60:eb:20:9a:2b:12:28:64:
14:57:e6:9c:2e:97:8a:ab:9f:89:ec:63:80:b3:a0:ad:0d:6f:
1c:0f:a6:d4:35:08:05:12:c8:e7:c8:f9:eb:aa:bb:e8:88:c4:
1f:45:56:33:67:3a:12:89:a1:a4:7e:18:67:ae:71:f9:46:ba:
f2:b3:df:25:11:f4:ed:db:84:55:3c:27:5d:70:b5:a5:ba:08:
c0:01:58:68:44:94:32:19:e8:8e:d7:bb:f8:95:f0:3b:74:6e:
51:4c:16:9c:77:3a:9d:ba:5b:2c:11:4f:a3:f7:2f:08:f8:57:
76:32:ee:80:97:dc:aa:05:b5:03:3b:4b:f1:bd:c8:52:78:bd:
e1:23:4d:10:ab:c3:e3:ba:d8:4a:2f:b1:82:f4:07:60:02:ad:
e2:76:41:2b:98:31:7a:1b:da:2a:a2:b9:0c:3b:d8:f4:e2:39:
f5:3d:97:aa:eb:26:b9:91:d6:9a:a6:f2:4e:ce:ab:94:12:6a:
ce:2f:e2:38:fc:da:b3:ee:30:5e:41:be:83:7a:a1:25:bb:d9:
8f:49:01:9b:75:bb:70:d7:20:39:5e:a0:e6:2c:02:04:10:be:
64:dd:b6:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:36 2024 by rpki-client on console-ams.rpki-client.org