Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDFCF6E010DC11EE9967DA2A4AD9E6FC.roa
File: FDFCF6E010DC11EE9967DA2A4AD9E6FC.roa (raw, json)
Hash identifier: L7bg0/4umFswTZnwwQ7Kl+Sn4qI24hxlmWkZ6Pwwn5w=
Subject key identifier: CA:F0:6F:83:13:B1:2C:D2:61:4A:1A:9B:20:91:FA:1C:48:39:9D:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D6C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDFCF6E010DC11EE9967DA2A4AD9E6FC.roa
Signing time: Thu 22 Jun 2023 09:13:04 +0000
ROA not before: Thu 22 Jun 2023 09:13:00 +0000
ROA not after: Fri 05 Jul 2024 09:13:00 +0000
asID: 210334
IP address blocks: 154.89.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11628 (0x2d6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 09:13:00 2023 GMT
Not After : Jul 5 09:13:00 2024 GMT
Subject: CN=6494109f-2312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:fc:42:cb:f9:8c:97:8a:b6:51:c3:1d:a3:
d2:4c:4b:8d:b7:e9:23:e7:ed:8a:d6:1b:ff:9d:38:
ee:76:e9:f6:1d:e3:ea:7d:4f:9e:e9:eb:dc:62:a7:
9c:76:ee:c6:d8:dd:fe:71:19:3b:3c:16:2e:96:37:
67:98:72:3c:cc:5a:1a:f6:e4:2c:38:0c:76:64:15:
49:c4:19:12:9d:ea:8e:2c:60:b8:29:53:3a:70:da:
73:a2:42:76:e1:3f:13:57:e3:e4:0e:0f:20:27:92:
77:c9:83:ef:ee:cb:d5:66:e4:84:ae:15:09:1d:3e:
b1:c8:e3:06:cd:91:4f:b3:f3:31:b4:d1:ae:46:a7:
c6:6d:a2:19:d0:c7:ea:79:34:81:5f:47:bf:10:9f:
22:46:7c:e2:65:50:f4:c2:10:42:49:b4:4b:bd:30:
67:12:d3:7e:17:c5:66:70:b7:42:1f:eb:eb:2d:e6:
46:fa:06:a2:24:1e:f9:da:af:c3:63:0c:38:49:88:
fb:ed:19:08:f2:87:03:b0:55:19:58:a6:4b:30:42:
d6:38:1e:66:15:42:ce:e4:39:e3:68:40:9b:29:37:
d0:7b:31:3c:76:1e:fa:8a:41:7f:53:1f:44:30:0d:
91:d7:e8:08:78:cb:81:d3:2b:58:81:5d:cb:5f:b3:
c9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F0:6F:83:13:B1:2C:D2:61:4A:1A:9B:20:91:FA:1C:48:39:9D:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDFCF6E010DC11EE9967DA2A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:92:20:42:7f:ec:c3:ee:b5:20:e4:0d:87:e5:64:43:02:a6:
7e:36:e9:8d:44:b3:77:0b:eb:78:5d:5e:ed:7d:8a:a6:f9:7e:
20:55:5c:7d:b6:e6:4b:d3:40:da:d0:19:21:2a:4b:a6:93:1e:
d6:f8:c0:12:80:bc:07:b0:1a:a7:56:a2:e1:ea:e2:7e:6a:a3:
10:be:0b:3e:f7:06:22:76:80:35:bb:18:5e:d4:6a:ed:76:f6:
e1:ce:70:1e:a2:79:b7:ac:c4:ff:3e:e2:af:94:5b:b4:7e:c9:
99:77:d4:b0:90:7e:ba:dd:d1:d0:54:98:41:c2:e3:20:7a:ae:
8d:7c:61:89:5d:76:8b:39:7b:bc:05:62:d0:19:85:cc:12:f3:
68:58:5c:77:45:ca:55:66:9a:b7:b8:57:bc:76:ab:7d:ed:5a:
b4:3b:39:d4:0a:15:72:49:0e:39:3b:a3:02:09:b9:5b:49:6b:
46:47:09:7b:b2:a2:4c:ff:cf:1d:2e:38:60:5a:00:9d:4b:f8:
a0:0e:c6:bc:7e:24:6e:d0:bf:27:dc:fe:f9:4b:65:fa:ef:54:
4a:2c:a5:18:d2:06:f7:05:a9:c4:0e:6c:4e:ce:fc:bb:da:60:
28:f4:93:d2:48:8e:ed:13:86:5a:c2:34:f8:76:ef:72:f6:1e:
14:55:5d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:44 2024 by rpki-client on console-fra.rpki-client.org