Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF497E44A9A911EFABA5B46D762E951A.roa
File: FF497E44A9A911EFABA5B46D762E951A.roa (raw, json)
Hash identifier: p3GG+3DRtlFR/2IPrepyIRUZF2vbhiEf7h0G3RdlQ90=
Subject key identifier: 64:80:36:CF:70:87:1A:0B:BE:1B:FF:2D:7F:97:4E:1E:B6:35:42:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01117C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF497E44A9A911EFABA5B46D762E951A.roa
Signing time: Sat 23 Nov 2024 14:48:27 +0000
ROA not before: Sat 23 Nov 2024 14:48:23 +0000
ROA not after: Mon 23 Dec 2024 14:48:23 +0000
asID: 6079
IP address blocks: 154.202.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70012 (0x1117c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 14:48:23 2024 GMT
Not After : Dec 23 14:48:23 2024 GMT
Subject: CN=6741eb3b-87a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:44:fb:13:54:5d:2d:05:9e:3d:af:54:7f:4b:
bb:57:90:db:e2:69:aa:34:16:f0:fe:7f:b9:71:5a:
c7:80:ed:84:f4:74:a1:1f:70:3e:98:03:f2:e6:05:
0b:c7:9a:10:8a:ad:07:2d:26:ca:ae:cd:36:85:12:
09:87:05:98:80:b3:cf:39:f4:64:65:aa:d4:2d:6a:
f9:b7:06:13:30:bf:cd:01:9d:f1:53:b2:ed:a2:af:
95:f1:18:99:98:90:81:44:41:2b:22:bf:07:f2:db:
ba:1c:c6:10:05:ff:58:26:4e:c8:c2:3d:04:87:54:
9b:ac:be:aa:bb:a2:1d:73:7e:b1:4b:7d:09:98:cd:
2e:3b:35:b4:27:e3:82:4d:ea:90:96:26:ab:7b:a8:
3a:31:6e:af:49:79:0b:26:93:f7:2d:f3:91:04:5c:
64:f2:22:10:5c:90:6f:ee:6a:2a:ac:1d:56:b5:79:
12:de:17:44:54:d8:ec:61:ad:32:65:7c:c4:a7:41:
24:a2:fd:d7:62:55:fb:f1:de:09:3b:c1:40:52:98:
4a:ec:9e:f3:c2:91:22:fc:ae:dc:49:61:93:c7:16:
aa:62:5c:22:e0:2e:76:29:4b:ff:a5:79:cf:61:a1:
4c:a2:81:65:12:17:36:5a:9a:a9:fa:ad:bf:84:1d:
92:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:80:36:CF:70:87:1A:0B:BE:1B:FF:2D:7F:97:4E:1E:B6:35:42:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF497E44A9A911EFABA5B46D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.140.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:37:a2:36:ab:34:e5:20:7f:26:24:95:68:95:1c:af:46:b4:
9e:8c:76:a2:c4:e2:f6:ab:07:31:ed:92:e8:8f:f5:5c:ec:41:
3c:91:d0:32:95:2f:14:2b:7d:0e:3f:34:06:cf:e1:7b:54:be:
c9:aa:e8:e5:7f:f3:d6:c9:9f:b3:ad:86:61:2f:81:ff:d5:bf:
d1:e1:30:ed:2e:be:12:d2:52:4a:b4:ec:59:c0:7f:63:fe:96:
d0:c0:f3:70:19:55:59:17:a4:c0:56:b5:65:03:af:91:58:d9:
d7:b8:5f:ff:60:55:41:33:41:b5:28:7a:16:13:75:c8:79:9f:
f7:88:d6:e1:25:b3:fc:ca:f9:52:ab:1b:59:db:08:9e:3c:47:
bb:55:66:7a:51:18:88:7f:16:cb:88:54:c0:8a:a6:83:f7:78:
21:56:5d:54:8c:14:68:70:d4:0e:ad:62:ad:c0:92:45:eb:95:
f5:42:12:ee:62:15:2f:52:87:42:16:bf:e0:cc:81:1a:a5:1c:
74:7b:85:4f:7c:19:ae:f9:0d:92:c3:06:4e:4f:c8:c0:62:f9:
cd:b8:70:8c:5c:9d:bf:ec:18:dd:b4:3d:5b:8b:40:79:5c:9f:
2e:53:cf:ed:2b:9b:81:a3:ae:93:cb:a2:c9:90:a5:29:8e:98:
95:b7:c3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:55 2024 by rpki-client on console-fra.rpki-client.org