Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/D327BE38980311EE8CAFD532D25BE465.roa
File: D327BE38980311EE8CAFD532D25BE465.roa (raw, json)
Hash identifier: S6gTdluMy3bxrOQWOaTfSvtXEYSyREhvKUaAZL3cXu4=
Subject key identifier: 98:78:D0:0C:7D:34:79:CF:90:D1:E5:DE:52:AC:F0:09:A3:BC:19:6E
Certificate issuer: /CN=F367F26DRI/serialNumber=9D87B3117AA1BD7828B7DD464D73076BAE8DCC96
Certificate serial: 06C1
Authority key identifier: 9D:87:B3:11:7A:A1:BD:78:28:B7:DD:46:4D:73:07:6B:AE:8D:CC:96
Authority info access: rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/D327BE38980311EE8CAFD532D25BE465.roa
Signing time: Mon 11 Dec 2023 09:01:09 +0000
ROA not before: Tue 12 Dec 2023 09:01:04 +0000
ROA not after: Fri 01 Dec 2028 09:01:04 +0000
asID: 328366
IP address blocks: 81.26.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.mft
rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1729 (0x6c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F26DRI/serialNumber=9D87B3117AA1BD7828B7DD464D73076BAE8DCC96
Validity
Not Before: Dec 12 09:01:04 2023 GMT
Not After : Dec 1 09:01:04 2028 GMT
Subject: CN=6576cfd5-ca68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:c2:2a:7f:a1:23:7d:dd:e8:2e:7f:23:67:
b0:6b:a0:3f:00:ac:61:17:9e:1d:38:09:42:52:80:
0c:b6:29:82:da:38:da:5d:69:12:ab:e0:99:82:7a:
73:31:34:c1:26:5e:76:c8:d3:27:e9:9c:85:5d:2f:
eb:db:c8:6a:8a:b2:68:97:71:ce:16:6e:c4:e0:04:
06:99:16:1c:cf:3b:36:9d:8e:40:de:b3:dc:3a:62:
eb:86:8c:84:bd:64:a0:a5:f6:61:93:e9:0a:27:42:
ee:58:5e:f9:e8:42:06:aa:fd:c7:7d:c6:97:48:1b:
4d:f8:c5:99:58:ae:a5:d8:18:25:b3:f6:3d:4b:94:
3e:8d:fb:85:ca:9e:15:99:4f:aa:e0:c8:db:5b:d4:
38:18:f0:15:ab:c0:c7:a1:8a:07:b7:2b:89:f9:70:
5c:4f:d4:0f:f7:90:3c:b0:e4:79:c0:e1:33:f3:4a:
1d:65:c3:90:e5:06:53:78:86:66:02:e5:1d:92:6c:
64:b4:01:cf:c2:e4:79:28:7a:bb:90:14:0a:fc:bc:
78:eb:f3:43:65:a5:6a:2b:35:27:52:47:df:07:cb:
9c:c8:0d:f9:d5:23:9d:6e:5d:92:4a:ca:f3:69:16:
58:d4:8f:60:e5:84:f3:08:0f:3f:db:f6:16:37:4c:
56:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:78:D0:0C:7D:34:79:CF:90:D1:E5:DE:52:AC:F0:09:A3:BC:19:6E
X509v3 Authority Key Identifier:
keyid:9D:87:B3:11:7A:A1:BD:78:28:B7:DD:46:4D:73:07:6B:AE:8D:CC:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/nYezEXqhvXgot91GTXMHa66NzJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/nYezEXqhvXgot91GTXMHa66NzJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/3F4041FC70B911E9A7F25D3FF8AEA228/D327BE38980311EE8CAFD532D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
81.26.72.0/21
Signature Algorithm: sha256WithRSAEncryption
45:9e:97:5d:90:0d:79:02:8f:68:bd:d9:7a:23:0f:ff:6e:f7:
9b:3b:dd:53:e5:9c:c1:52:32:c6:72:bb:c1:e5:08:72:c4:22:
e3:58:cb:9c:a3:dd:2a:0a:94:0a:61:d7:5d:aa:ee:e2:23:ee:
f7:8c:80:c4:36:23:a4:cd:3c:1e:bf:ba:2d:ec:6f:33:01:74:
6f:9a:0e:4f:57:c3:9c:8a:2b:03:b9:4d:7d:32:ab:24:fe:fe:
37:cd:6f:d6:29:44:5a:52:20:6d:d0:e2:af:44:bc:fe:27:a2:
f4:e3:61:fb:f0:a6:c6:fe:b2:58:9c:a9:cc:69:d7:c6:ef:61:
06:18:7a:f1:7b:39:9f:e9:ed:9b:24:43:ec:ce:29:a0:cc:45:
fa:93:42:e6:4d:24:a2:8a:38:d6:03:fa:dd:38:55:39:06:5f:
94:2f:c4:fc:f6:68:f1:a2:37:ec:8d:38:a2:3c:0b:75:e5:c5:
7e:24:db:d7:33:94:3a:06:bc:c1:bf:c5:20:e7:28:5a:62:52:
a7:02:62:fa:8e:29:47:c9:ce:13:6f:b4:cc:81:d6:fc:99:71:
17:99:46:71:10:c7:72:0b:14:e6:86:ba:b2:02:17:37:fd:8f:
e7:c4:16:d8:de:4a:15:7b:9a:f2:ae:ed:ea:3c:9c:4e:3a:75:
5a:59:45:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org