Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E5F2425DEF11EFB13B0373762E951A.roa
File: 24E5F2425DEF11EFB13B0373762E951A.roa (raw, json)
Hash identifier: FCsYxl4ekohqXjemhF3bSOdwoCDIKZwQPyS503/eMpo=
Subject key identifier: 09:D4:87:B5:47:EA:E2:A5:A5:D3:99:C9:07:49:F6:EB:02:D8:D7:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E129
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E5F2425DEF11EFB13B0373762E951A.roa
Signing time: Mon 19 Aug 2024 05:51:57 +0000
ROA not before: Mon 19 Aug 2024 05:51:53 +0000
ROA not after: Thu 31 Dec 2026 05:51:53 +0000
asID: 17561
IP address blocks: 154.196.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57641 (0xe129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 19 05:51:53 2024 GMT
Not After : Dec 31 05:51:53 2026 GMT
Subject: CN=66c2dd7d-c2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:c9:a2:79:96:fa:44:30:8a:13:9e:1b:63:
8c:d2:93:60:26:6b:49:0b:3a:d3:b5:d4:86:e1:a5:
cd:62:10:d5:43:02:d1:ac:d1:e0:af:53:98:0c:12:
63:b1:1c:75:5d:60:67:e9:65:59:36:24:f6:3d:fa:
d2:20:11:1e:a4:60:d6:4f:21:fe:57:fa:c9:5a:09:
b0:0c:66:bb:e8:5b:91:5f:67:47:1e:b0:27:23:e0:
76:be:17:53:14:c1:99:70:4c:dc:5e:09:a1:28:62:
5b:4c:9e:59:35:7e:57:46:42:36:ab:3a:9b:ed:31:
1e:1a:00:30:b1:3e:2f:61:cd:63:b1:fe:49:b9:4b:
87:33:92:9a:8d:17:f3:50:2a:82:18:61:da:67:95:
af:15:f4:77:06:e2:9e:cc:33:ef:a2:0b:50:f4:7f:
e6:bd:9d:ab:d1:f7:de:e7:56:83:13:7b:ce:ea:73:
06:84:26:ee:97:1a:e2:82:bc:8c:bf:d2:6e:34:c3:
22:2a:f0:bb:a9:79:0c:88:0d:bd:25:b9:cc:03:65:
fb:1c:5d:88:9b:8d:47:3b:70:b1:75:5e:59:19:55:
fa:1f:b6:fb:71:53:c7:3c:1c:c3:2c:ad:b9:5f:59:
dd:71:3d:44:9f:55:db:c3:87:96:60:c5:73:32:ab:
59:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D4:87:B5:47:EA:E2:A5:A5:D3:99:C9:07:49:F6:EB:02:D8:D7:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E5F2425DEF11EFB13B0373762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:2f:e5:fe:8f:6c:84:10:9a:db:47:a8:5d:62:3e:db:44:c9:
89:ad:4d:68:9d:d0:5f:41:d5:d3:c6:42:ee:2c:fe:a6:41:5c:
e4:db:8a:44:82:a6:fb:4d:2b:de:5d:b6:2a:ea:19:ac:42:80:
73:8b:ef:90:f0:4c:dc:af:76:db:be:fe:c1:bd:be:48:a6:29:
80:42:3f:36:eb:10:72:50:7c:8d:24:28:74:4d:20:61:31:61:
66:dd:87:06:ee:7b:3f:00:56:ff:7d:b1:37:c8:b8:84:a8:21:
bc:13:8b:7c:d3:eb:40:5e:6f:96:5d:c1:ff:b1:15:54:e5:35:
dd:c8:08:b3:9c:a9:46:b0:ce:02:36:71:ee:eb:40:5d:32:3a:
ca:c3:8c:49:a8:d5:fa:43:fe:81:1b:80:95:45:c7:a9:c5:9e:
c0:de:54:42:53:1c:c6:7b:49:59:9d:5d:08:b8:7b:dd:b0:a6:
3f:13:86:7c:bd:d0:4c:f2:ef:95:ff:93:a2:3a:83:fe:12:67:
d1:9b:21:c7:a3:15:96:72:71:f4:cc:8b:4b:3b:16:c6:40:e0:
b0:64:ae:63:18:fe:d8:15:3c:41:44:9e:6e:59:ff:f3:4b:95:
2f:63:52:ee:5f:a3:ac:74:e9:aa:f4:5f:3c:7b:c3:a8:64:5a:
0f:67:93:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org