Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29E8D8FC278311EEAE3F01214AD9E6FC.roa
File: 29E8D8FC278311EEAE3F01214AD9E6FC.roa (raw, json)
Hash identifier: 6lXCAO1mMTwUOmJc+PgNhMRuQ2znO9gN75GU0aNoOlg=
Subject key identifier: EB:6F:FA:76:E1:77:F9:0E:3A:B5:D6:BC:B6:E3:4A:7B:1C:58:1C:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29E8D8FC278311EEAE3F01214AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:57:59 +0000
ROA not before: Fri 21 Jul 2023 04:57:56 +0000
ROA not after: Thu 13 Jun 2024 04:57:56 +0000
asID: 5065
IP address blocks: 154.85.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13227 (0x33ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:57:56 2023 GMT
Not After : Jun 13 04:57:56 2024 GMT
Subject: CN=64ba1057-35e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:93:03:45:e9:cf:5f:8c:95:a8:66:40:62:
7e:1d:d2:58:c4:56:2f:f4:d8:01:53:0e:38:b3:45:
f1:55:e6:42:67:c4:bf:35:33:1e:02:db:b5:cb:33:
2c:b4:09:79:75:fd:4c:42:66:ed:4d:fe:94:94:75:
3f:e5:dd:0f:8b:b1:2d:5c:bb:66:56:bb:1f:0e:cd:
b0:1c:d7:b0:48:29:d4:97:f6:29:ba:a1:1c:19:24:
87:fe:3f:78:0d:cb:7b:92:a9:63:b3:00:58:b0:df:
9f:42:12:3a:3c:e2:fe:d4:aa:24:85:73:41:32:3e:
09:0c:ca:b8:aa:bb:61:06:b3:cf:97:92:ee:8a:76:
07:81:78:2f:51:33:b6:ef:37:6d:d9:6e:f5:54:1c:
00:89:27:71:13:2c:29:07:12:dd:f8:b7:e3:a7:65:
86:89:d0:a9:c7:8c:2d:c3:24:32:74:ff:c1:73:44:
88:c3:23:12:8d:56:08:12:dc:98:6b:ec:5f:f5:06:
77:d1:2f:e3:9a:ce:c3:48:52:3d:c8:ee:5a:53:53:
9e:f8:c4:f7:35:ec:38:3c:44:8e:52:29:fc:c6:3d:
b5:f9:5d:ce:59:1e:51:55:69:89:07:3b:53:69:ed:
9b:5d:9b:db:6f:c3:94:b5:30:b7:48:1a:29:f0:26:
6e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6F:FA:76:E1:77:F9:0E:3A:B5:D6:BC:B6:E3:4A:7B:1C:58:1C:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29E8D8FC278311EEAE3F01214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.121.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:09:4e:b1:ea:27:30:1d:ae:9d:ad:59:25:6f:46:97:07:81:
07:fd:7a:55:ad:ac:84:f3:ff:98:cf:6b:d7:74:58:39:b5:0c:
fd:92:9e:96:e7:76:7f:5c:5d:c3:a2:ae:ab:c7:4b:aa:f9:8a:
e1:30:0f:2a:98:f3:7d:0b:9d:61:7a:f1:e1:ea:de:68:25:1d:
8e:29:4b:80:70:ef:f6:ec:cc:2f:8a:95:73:9a:81:b5:72:de:
c0:b6:9d:4c:98:f0:d8:73:1c:7c:51:df:37:69:5a:a0:b9:36:
f7:c4:c3:1a:c1:16:75:15:9b:4b:08:c1:a5:f0:5b:d2:88:10:
38:54:a5:76:cd:13:28:6a:2c:fa:35:ca:05:f8:be:0e:dd:46:
c5:4f:51:d7:fa:2c:4c:ff:f9:2f:b0:c2:17:8d:a7:b4:04:44:
7c:df:c2:d5:6e:48:89:9c:d6:6c:06:36:15:13:de:5e:7f:d8:
fd:62:f4:b3:e9:54:5a:98:4f:e9:7a:50:47:cc:77:8b:60:fc:
22:ff:8c:74:b9:fd:01:f9:1e:ae:81:bc:5f:04:e7:d5:d9:1f:
29:7e:16:76:78:5c:17:cc:82:b8:a1:c7:db:6b:79:3d:95:c6:
a9:76:fa:b9:ed:fb:87:db:6b:4d:03:e0:b1:b0:c5:28:37:d8:
5a:9d:de:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:18 2024 by rpki-client on console-fra.rpki-client.org