Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF5910AEA72211EF9F30EC86762E951A.roa
File: FF5910AEA72211EF9F30EC86762E951A.roa (raw, json)
Hash identifier: gjRlgwBXJTAhVSops+VaG9oNuJDcEJ5CcmtvN5UBSvs=
Subject key identifier: 70:10:B0:E9:6B:4F:07:34:9D:B5:92:A3:3A:6B:7A:46:03:4C:60:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F6B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF5910AEA72211EF9F30EC86762E951A.roa
Signing time: Wed 20 Nov 2024 09:37:03 +0000
ROA not before: Wed 20 Nov 2024 09:36:59 +0000
ROA not after: Mon 02 Dec 2024 09:36:59 +0000
asID: 39600
IP address blocks: 154.202.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69483 (0x10f6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:36:59 2024 GMT
Not After : Dec 2 09:36:59 2024 GMT
Subject: CN=673dadbf-ec64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:17:b7:63:6b:df:e5:d7:b0:f3:dc:d5:62:5a:
79:b2:5d:74:af:cb:58:52:35:8e:a6:a4:61:43:b0:
6c:cb:74:64:dd:e3:09:a8:58:0a:26:ca:8c:ff:84:
93:aa:c5:2b:86:be:9c:de:8a:b6:f2:9c:c2:00:96:
b9:3e:15:64:c6:85:cf:58:28:da:97:1f:67:56:1c:
fb:16:b1:ad:48:b0:0a:c1:f5:04:e0:ad:da:b5:84:
56:25:12:28:83:d5:6d:58:89:4e:96:00:9d:51:ac:
be:68:47:42:ca:a8:60:7b:fc:2b:81:7f:34:ee:d2:
7c:75:ce:30:1d:75:21:14:5c:c4:40:b1:34:fa:2b:
fd:db:13:41:38:4f:78:c1:15:f4:3e:5a:1a:ed:76:
3b:ee:8d:64:ec:9f:53:d1:5c:88:97:3d:fa:1b:14:
8e:8f:b8:f7:48:e1:c1:7b:a4:c8:28:79:cb:7e:79:
f6:f1:bd:69:31:4e:56:dc:73:38:74:5c:67:6d:ea:
92:53:52:3b:62:62:40:3e:44:a7:bf:cf:c3:40:b8:
9d:3e:ed:62:18:2a:21:7e:b7:b3:1f:c2:48:88:b6:
79:bd:63:fe:0a:03:a6:98:0d:37:4d:ff:a0:a1:24:
4d:92:fb:93:71:01:6e:3e:cd:71:50:71:a5:6c:12:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:10:B0:E9:6B:4F:07:34:9D:B5:92:A3:3A:6B:7A:46:03:4C:60:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF5910AEA72211EF9F30EC86762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.16.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:15:aa:c5:14:c7:4a:43:47:ff:b8:f9:65:a3:7c:b1:7d:da:
e7:f5:c9:5c:09:5d:a2:31:8a:11:61:3d:ba:40:a6:63:1e:ed:
b3:80:44:1a:3f:49:80:f4:ce:49:cd:28:00:92:97:f4:19:84:
55:52:68:93:eb:9e:2a:35:5d:93:0c:09:9f:ea:51:93:3c:43:
97:4a:b7:a4:1c:8b:f3:83:91:2c:70:17:57:70:c7:54:14:8c:
7c:5f:91:9b:45:e5:1a:35:a9:84:fd:ae:2d:a9:9c:34:bb:0a:
a1:d7:43:42:a1:c1:d4:14:02:07:87:04:24:2e:04:99:8b:e4:
08:af:78:c8:53:a1:90:0a:17:a6:0e:29:cd:a5:1d:7e:c3:88:
6e:81:c5:12:38:b2:5b:03:16:0e:19:e5:03:83:5d:a8:c4:72:
38:5d:4b:d0:78:99:28:c5:a6:24:fd:2a:14:e1:55:6d:98:f1:
6c:d1:30:19:59:64:b2:dc:33:ed:2e:41:36:db:2a:40:04:11:
7a:6f:d2:a2:a1:8c:5b:4a:b4:2c:11:38:89:58:04:08:5d:8d:
84:f9:23:e2:6b:26:5f:8f:5f:b0:4c:fe:3b:c8:87:19:cd:19:
78:43:f6:2c:cf:de:69:1e:33:45:84:a2:cd:fb:6f:0a:d3:0c:
0d:7f:91:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:32 2024 by rpki-client on console-fra.rpki-client.org