Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF015DFE904E11EFAEE6C597762E951A.roa
File: FF015DFE904E11EFAEE6C597762E951A.roa (raw, json)
Hash identifier: TBDC3SZgo65SIEQwlGQq6kXRK8Vzh1SMA6iaURRVn7M=
Subject key identifier: 8A:E4:5A:B1:95:BC:00:E3:0B:8E:1C:F9:A9:82:F4:AC:A7:3E:2B:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01007B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF015DFE904E11EFAEE6C597762E951A.roa
Signing time: Tue 22 Oct 2024 08:24:03 +0000
ROA not before: Tue 22 Oct 2024 08:23:59 +0000
ROA not after: Tue 26 Nov 2024 08:23:59 +0000
asID: 8796
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65659 (0x1007b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:23:59 2024 GMT
Not After : Nov 26 08:23:59 2024 GMT
Subject: CN=67176123-0395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:35:6b:f6:64:6d:b6:a3:5f:18:57:ca:0c:86:
38:a0:f5:80:5a:73:40:02:87:09:5a:fa:de:60:a6:
45:08:ac:ee:38:55:9a:76:ed:3e:3c:66:b2:69:be:
b2:d8:d4:5b:5b:5c:3d:31:ff:e0:bc:e6:d4:e8:6e:
47:ea:9c:33:64:56:7b:69:fc:22:a0:e7:7c:1d:13:
95:fa:fb:9d:c2:ad:ea:8a:2f:4c:50:fe:73:3d:1e:
94:72:af:2b:bf:ac:1f:a5:90:30:0b:57:8d:dd:01:
3d:97:32:48:49:60:0a:1f:7e:0a:6a:58:5d:81:f2:
28:41:51:90:e5:3b:a7:eb:19:66:67:f6:21:6e:d7:
d0:9d:74:2a:86:6a:d1:5a:58:06:02:ef:11:44:a0:
55:05:55:29:ed:d4:b6:2b:4b:3b:dd:b6:5c:c4:37:
5d:a2:c9:85:18:8e:a7:8f:ed:49:f2:9f:b5:cb:27:
2f:40:31:83:50:3a:e2:cc:ae:3e:bd:ca:60:fa:ff:
a8:ed:38:58:d4:72:18:68:53:ba:a9:dd:9a:bc:21:
a9:d4:bc:42:1a:82:58:e9:7c:d5:bb:eb:e3:8f:8a:
22:cc:b5:db:72:a7:1b:1e:c5:a5:80:4d:f9:b3:d9:
9f:86:01:2f:93:6b:03:eb:21:c0:2b:e1:46:83:37:
04:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E4:5A:B1:95:BC:00:E3:0B:8E:1C:F9:A9:82:F4:AC:A7:3E:2B:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF015DFE904E11EFAEE6C597762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
99:0b:34:d4:8c:56:9c:e1:f4:f6:83:17:99:9e:88:4c:37:ef:
aa:22:92:3d:f6:af:fc:db:f5:0c:39:01:76:a0:75:a3:03:ee:
5d:f1:8f:38:a8:86:cc:de:55:0f:a6:03:1b:2e:e8:c5:07:36:
d1:36:8d:15:b5:1b:94:09:83:eb:6d:36:31:98:28:32:d8:55:
fc:53:1f:ca:f1:bc:a7:94:04:57:29:3c:72:d2:3f:8c:d5:a9:
ec:f3:c3:33:51:79:1c:fc:34:3e:2c:98:2a:a8:59:d7:f3:d4:
69:0a:78:25:ac:e6:94:dd:50:d9:2f:28:1b:4b:d2:df:d4:fb:
52:01:93:3a:4e:58:c1:63:37:28:07:dc:27:9c:40:74:f0:db:
a7:92:36:b6:68:93:8a:90:c2:f7:eb:56:b9:eb:77:d7:06:1e:
f2:04:bc:34:a5:18:34:6c:99:70:3f:48:b2:26:2c:bd:1c:bf:
1e:7b:75:b3:c6:a0:6f:4e:c4:53:ed:33:62:d5:e1:49:ad:ad:
4f:fa:ea:28:12:53:83:52:6d:18:bf:af:f7:29:d0:c6:d5:28:
d6:11:c1:cc:94:7f:8f:e1:b3:10:d8:b6:77:c1:9d:07:81:a6:
4c:19:2a:97:5d:71:f9:25:90:9e:06:8b:7f:f2:e6:ad:bb:5a:
5b:b2:72:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org