Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/1DEB29B0A59011EF81CC37A8762E951A.roa
File: 1DEB29B0A59011EF81CC37A8762E951A.roa (raw, json)
Hash identifier: ipxVZoG7l9vAL2eHiKt1mmsMW7NtIt8TToPFkdvKUdE=
Subject key identifier: C7:45:47:DC:5A:3B:6F:BA:B6:FC:FC:8E:2D:E2:60:E0:50:A8:36:17
Certificate issuer: /CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Certificate serial: 055D
Authority key identifier: B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/1DEB29B0A59011EF81CC37A8762E951A.roa
Signing time: Mon 18 Nov 2024 09:33:07 +0000
ROA not before: Mon 18 Nov 2024 09:33:03 +0000
ROA not after: Fri 31 Dec 2049 09:33:03 +0000
asID: 328475
IP address blocks: 102.207.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.mft
rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1373 (0x55d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Validity
Not Before: Nov 18 09:33:03 2024 GMT
Not After : Dec 31 09:33:03 2049 GMT
Subject: CN=673b09d3-5d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:74:43:21:ff:01:6d:13:9d:1c:bd:f6:1b:f4:
ac:09:63:83:33:12:21:fc:46:74:f3:09:28:26:95:
e3:66:de:9a:ac:d3:26:10:8d:e3:7e:1d:7b:9f:7f:
3a:42:6e:fb:2d:39:3b:7b:2c:ea:3b:87:ac:22:64:
28:cd:36:5c:22:9a:74:ac:ec:bc:51:f3:8c:68:d0:
63:7a:db:b3:f4:34:c9:c6:79:81:ea:11:bf:f0:17:
ee:90:37:70:18:44:28:df:95:b7:ae:45:af:89:2b:
a9:0d:04:9f:b2:d6:ae:fb:69:d7:26:4b:da:e8:f7:
a9:be:28:fa:4b:51:d7:a5:8b:24:0c:cc:bf:f0:dc:
fd:9c:a0:38:59:3a:81:58:8a:37:ae:59:7e:87:5d:
28:2d:9b:c0:7f:d4:87:a8:d1:d1:85:f2:08:95:0c:
90:66:0a:b5:2a:02:0d:92:c6:fc:aa:f2:46:cd:5e:
90:f7:73:ab:b1:f7:43:df:96:6d:f3:f6:ae:0b:ba:
5f:93:e7:a2:f8:df:1e:98:66:67:06:1b:55:1e:09:
db:db:e6:e7:00:7e:aa:02:e8:a0:ad:bf:92:eb:5c:
88:da:42:91:e0:77:9d:d8:c5:f0:26:7f:f7:ef:f8:
d5:f9:20:3f:9e:86:23:7a:52:34:a2:ea:4c:ea:48:
9b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:45:47:DC:5A:3B:6F:BA:B6:FC:FC:8E:2D:E2:60:E0:50:A8:36:17
X509v3 Authority Key Identifier:
keyid:B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/1DEB29B0A59011EF81CC37A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.68.0/22
Signature Algorithm: sha256WithRSAEncryption
05:94:dd:dd:0f:fe:b1:a5:f4:37:eb:8e:92:0f:d4:95:2f:9b:
6b:d1:3b:00:19:e3:26:1e:2f:97:41:35:f3:fe:73:9a:69:90:
e9:47:d5:25:f8:f0:e2:53:83:19:57:c0:18:fe:90:4d:d5:8e:
5b:aa:24:aa:51:54:1d:3d:dd:8e:21:89:71:16:fe:7c:10:f8:
5a:c5:52:40:64:06:74:5c:17:db:35:fa:9f:3e:ee:36:ae:22:
ad:d1:c1:c1:76:67:a1:1e:54:bf:d3:01:9d:c0:65:f0:f9:ef:
00:30:76:4b:d5:43:ef:b4:aa:aa:95:29:9f:f1:42:ea:1a:06:
e0:56:9d:d8:35:da:d0:41:5b:c8:a7:bd:ed:c3:bc:e3:e9:01:
a5:9c:18:66:af:de:ba:2f:c0:8f:5d:3d:97:de:13:d1:70:c8:
47:64:3b:9a:1b:e3:fc:5c:3b:95:00:07:6f:2f:56:4d:1e:2e:
41:7a:a0:17:f2:35:7f:aa:c1:7f:5b:a8:12:85:c5:e4:70:1c:
79:59:92:5a:34:60:fe:a4:21:f6:bb:67:1a:21:8d:e8:c5:5f:
e3:8e:0a:9b:03:0d:23:2c:14:d3:47:f8:6e:12:af:3d:96:78:
af:2c:ac:e5:80:c0:73:92:fa:33:37:98:35:67:97:a6:c5:0d:
d3:58:28:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org