Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF39D7AEDB111EEBDD99F82775412E6.roa
File: FFF39D7AEDB111EEBDD99F82775412E6.roa (raw, json)
Hash identifier: i6eFwkfu7R67fHSUfEYpCS2Ffg+BUFP1gzVFhg4107Q=
Subject key identifier: AD:96:25:77:AB:CA:71:7E:C3:62:9B:79:51:F8:98:A5:C1:D6:7A:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6FF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF39D7AEDB111EEBDD99F82775412E6.roa
Signing time: Fri 29 Mar 2024 09:52:05 +0000
ROA not before: Fri 29 Mar 2024 09:52:02 +0000
ROA not after: Fri 26 Apr 2024 09:52:02 +0000
asID: 62240
IP address blocks: 154.195.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 09:52:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42751 (0xa6ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:52:02 2024 GMT
Not After : Apr 26 09:52:02 2024 GMT
Subject: CN=66068f45-1318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:49:84:b5:72:1e:a1:60:77:c9:1c:6f:49:66:
75:1c:5f:d6:bb:85:f9:f9:b7:31:f7:32:58:fb:3b:
f8:17:4c:31:0c:65:19:60:ab:54:6d:a6:f2:b5:55:
b9:4c:cb:a4:3a:87:19:20:3e:d5:a7:d9:71:cc:e9:
ba:4e:4e:ad:eb:6c:1b:d4:4c:53:c3:3a:37:40:cb:
e0:33:5b:a3:e4:dc:d6:c8:9e:08:f9:4d:7f:f5:15:
5b:3b:f7:4b:70:e5:1a:35:4a:e1:3a:b6:88:3b:9e:
de:1c:e7:a3:21:81:38:0b:66:77:c3:e9:24:a0:73:
b0:f1:d6:fe:14:12:9e:a9:53:15:54:ce:15:c8:14:
b5:a4:cf:d9:72:d6:d0:aa:42:41:2b:67:2b:20:45:
88:3f:f2:24:a4:27:eb:55:56:24:df:a6:d9:07:36:
67:a5:6b:e6:64:ee:a1:20:81:0a:cc:0a:83:8e:04:
84:87:a0:22:81:16:38:bb:87:cb:b3:3e:7e:72:2a:
18:03:35:ea:c6:49:cf:dc:ac:7d:19:18:b7:c8:fe:
47:57:49:f8:40:65:fc:07:59:3a:22:09:0d:15:31:
25:58:9b:05:40:ca:6b:48:31:47:9b:c5:d5:c4:c1:
81:61:a3:c8:90:df:76:36:e7:12:76:c1:e7:5e:35:
88:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:96:25:77:AB:CA:71:7E:C3:62:9B:79:51:F8:98:A5:C1:D6:7A:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF39D7AEDB111EEBDD99F82775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.6.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:0d:06:fc:ff:b5:7d:46:99:6f:f1:74:38:d4:3f:ed:a5:b3:
fd:af:ac:69:e8:29:3b:1d:12:99:c5:80:ce:ed:5c:c3:c4:8d:
14:8d:69:65:d6:54:47:c7:b3:db:d7:f4:91:c4:0a:d8:92:f7:
dc:53:d4:67:7f:4d:2b:fd:48:0c:c8:32:f4:7a:68:1a:3a:16:
cd:4f:16:14:17:84:57:64:21:ca:4f:dd:ce:f4:34:c3:ff:84:
0d:fa:de:04:b7:ee:92:49:e2:5f:08:8d:11:41:cf:f9:dc:08:
96:4a:7f:fe:f4:73:3a:bf:65:27:46:cb:d7:be:1b:f6:f5:3e:
9a:b7:bf:03:80:ba:39:1b:2a:4f:08:24:27:1c:32:9f:6a:6b:
51:ad:89:44:a8:da:f7:96:06:a1:07:29:bd:68:4c:61:27:9b:
11:99:7d:07:73:56:a1:44:51:d9:5e:17:77:9c:a7:52:0d:59:
5d:5b:f0:8d:ab:92:87:73:73:0a:e9:e2:39:87:3c:82:9e:f7:
e1:f9:91:92:84:67:91:db:c7:3d:f3:a4:e0:4e:b0:b1:0a:40:
05:48:52:0c:0e:30:21:b3:7c:57:8f:fb:d9:95:61:85:17:06:
17:44:1d:50:45:10:e9:d1:23:19:1a:15:3d:76:65:07:6e:73:
ba:79:7d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:41 2024 by rpki-client on console-fra.rpki-client.org