Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFB58EECA0D811EFAFE5D54C762E951A.roa
File: FFB58EECA0D811EFAFE5D54C762E951A.roa (raw, json)
Hash identifier: U+3yEzHUOthnB7auttSWDtzaydcCyGjGSA/FtmitQRQ=
Subject key identifier: AB:FF:CC:F8:D2:9C:B0:D2:AA:50:E7:F5:B6:F4:B7:DA:79:2D:30:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFB58EECA0D811EFAFE5D54C762E951A.roa
Signing time: Tue 12 Nov 2024 09:32:14 +0000
ROA not before: Tue 12 Nov 2024 09:32:10 +0000
ROA not after: Sat 07 Dec 2024 09:32:10 +0000
asID: 138915
IP address blocks: 154.223.48.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68632 (0x10c18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:32:10 2024 GMT
Not After : Dec 7 09:32:10 2024 GMT
Subject: CN=6733209d-2608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c5:75:69:17:50:1e:8d:18:92:f3:ef:90:d8:
e6:9d:11:ac:03:44:ca:30:98:da:63:d2:3b:28:e6:
3b:91:e1:b4:66:f2:50:1e:59:a5:a8:07:63:a7:93:
84:34:38:a2:b9:d0:92:8f:9e:4f:31:de:e2:74:f8:
3f:7f:ff:82:86:8c:c3:24:69:c5:da:b5:e6:42:0b:
f9:d7:20:a7:81:75:e3:74:65:59:5b:33:d5:78:8a:
ff:ea:e4:2d:80:fc:90:bb:9b:0c:86:50:75:38:e7:
85:53:9a:61:da:50:0a:12:37:d5:40:b2:e1:f9:77:
1f:4d:9e:98:5d:39:b4:bc:a5:8b:af:de:90:7e:c4:
34:9b:96:e5:e5:fc:04:87:eb:60:43:7a:2e:79:c5:
c1:12:01:4f:8d:83:cb:5c:71:c1:23:dd:16:bc:a8:
df:cc:ba:93:1b:d6:8d:72:07:aa:64:19:59:33:43:
bc:e6:9b:05:e7:da:da:32:c9:2e:f6:db:f3:e6:67:
42:fd:e9:3d:71:c8:70:fe:24:49:bf:de:85:54:de:
0f:63:d6:2e:32:b1:74:76:38:f5:b5:67:5d:5c:03:
03:63:fc:c7:a8:cb:b9:32:86:72:eb:82:21:e2:d1:
b4:9a:76:76:79:af:37:52:09:36:35:7a:e6:5b:e1:
9f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FF:CC:F8:D2:9C:B0:D2:AA:50:E7:F5:B6:F4:B7:DA:79:2D:30:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFB58EECA0D811EFAFE5D54C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.48.0/23
Signature Algorithm: sha256WithRSAEncryption
84:c1:a7:9a:c8:fb:97:38:10:be:74:29:3b:a1:fb:5c:6f:8c:
48:0f:e3:08:18:f7:9c:96:c5:33:d3:08:94:81:b0:7c:6b:66:
03:71:f8:f0:06:b2:a6:65:6d:7a:0b:68:83:9c:c6:3e:18:e0:
49:ca:61:3c:71:d2:e8:14:d7:07:a1:61:30:63:2d:8d:d4:d8:
b9:ca:dc:c5:ee:85:5a:6e:da:82:74:8c:e0:1c:f5:6d:9a:6b:
9d:22:59:92:3d:1c:8a:a5:33:4a:c3:3a:73:04:01:99:c8:47:
07:00:25:3c:98:2f:a9:69:cf:0b:92:7c:31:3d:f8:50:da:73:
c6:c4:f8:6d:95:51:2d:3d:eb:21:f2:e7:0c:78:76:4a:07:06:
08:8b:a6:96:04:26:39:9a:ab:03:6a:0f:bb:df:74:ab:16:3e:
bd:be:e7:cb:28:9c:7f:4c:4a:37:0f:79:cb:65:e0:c6:da:61:
bf:ef:1b:b8:ad:6d:24:95:fe:85:7e:48:d9:df:0f:7a:ae:95:
83:fa:0e:70:88:bb:c8:2a:8b:d8:5f:3e:fe:f0:9a:fc:74:f7:
b8:25:55:5f:7c:4e:b2:4c:5d:21:41:6c:f6:66:d3:70:d1:74:
ee:63:6d:d9:b8:b4:18:8f:1f:b1:36:3a:e3:22:98:22:05:9b:
65:eb:68:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:48 2024 by rpki-client on console-ams.rpki-client.org