Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/329A2C92A4D911EFAD958EAA762E951A.roa
File: 329A2C92A4D911EFAD958EAA762E951A.roa (raw, json)
Hash identifier: F06bXAJWCn5xavvqXeYktIeBu+OUM5grSA5V5vaDRVI=
Subject key identifier: 11:B0:8E:74:B2:68:8B:35:36:96:66:C0:D9:16:D1:C7:8D:36:32:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EDA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/329A2C92A4D911EFAD958EAA762E951A.roa
Signing time: Sun 17 Nov 2024 11:43:43 +0000
ROA not before: Sun 17 Nov 2024 11:43:40 +0000
ROA not after: Thu 28 Nov 2024 11:43:40 +0000
asID: 139880
IP address blocks: 154.194.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69338 (0x10eda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 11:43:40 2024 GMT
Not After : Nov 28 11:43:40 2024 GMT
Subject: CN=6739d6ef-4abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:14:a6:21:a9:ff:04:f7:5f:0f:c9:f1:b2:b0:
62:75:7c:18:5a:47:de:86:e5:50:21:56:b0:26:42:
e4:2d:82:c7:59:5f:9c:93:78:11:4e:91:0d:bf:36:
e9:1e:0c:ab:e6:6b:bf:17:38:e0:a9:95:6b:de:4c:
4c:1b:5c:df:ee:c7:b3:8a:36:f0:09:e8:4e:32:d0:
4a:72:e5:d3:9e:da:1d:de:54:26:af:0f:30:fd:f4:
39:f6:5d:51:7d:8c:9f:8a:a9:4a:55:49:03:6b:1e:
b6:79:1c:84:86:56:ca:1f:e4:32:44:36:2a:38:da:
8b:07:ac:77:d7:d2:49:b1:30:8d:e8:80:f8:a6:7d:
00:64:ec:53:e8:b8:12:a0:d9:64:e0:29:0e:b0:32:
da:0a:8c:ec:c5:2c:1d:28:fa:2c:cb:c8:cb:71:c6:
0f:b6:70:c2:cd:86:0a:bf:68:b7:e0:a4:ea:10:44:
30:01:9d:81:42:f7:50:13:36:3a:fb:94:d3:7f:33:
cd:bd:fa:ae:32:91:d8:6e:ef:c7:cf:70:f7:fd:f0:
1d:21:22:c3:61:1c:4e:eb:b9:80:aa:a5:9f:7c:ea:
ba:78:7d:3b:76:26:7a:4e:27:fb:e1:1a:7b:de:24:
1a:de:0d:24:c6:a7:fa:69:12:01:be:7b:01:94:97:
d9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B0:8E:74:B2:68:8B:35:36:96:66:C0:D9:16:D1:C7:8D:36:32:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/329A2C92A4D911EFAD958EAA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.128.0/18
Signature Algorithm: sha256WithRSAEncryption
69:8b:d5:06:d6:2e:2b:3d:7d:ec:01:f3:6e:ab:bb:6b:9f:52:
a3:d3:68:4b:31:b1:34:10:39:a0:7d:33:45:ed:eb:e8:a0:da:
88:a3:2a:cb:d7:07:0d:48:32:fa:97:de:9e:af:fd:85:23:be:
3a:7a:ef:2b:81:d5:ac:11:3c:3c:5f:6b:12:de:00:49:da:37:
87:03:52:42:99:49:b1:f1:e9:24:7c:a8:0f:47:59:dd:f5:38:
a9:9b:69:ef:1e:5a:ba:1c:2b:57:e7:b9:cb:61:e9:c3:93:98:
82:b6:81:70:20:ea:59:84:1e:bd:b0:b2:62:7f:44:c3:6a:80:
d2:b2:bf:0f:db:4d:a4:d5:17:f8:40:4f:79:6e:a5:e2:53:9f:
44:3e:93:02:85:c5:8c:0e:6e:ff:02:88:9f:9d:54:9d:5a:46:
23:0e:47:27:a7:34:d4:c6:81:f4:7d:b1:2d:f3:16:c1:6f:05:
5e:08:59:71:13:ac:4a:8e:9f:55:cc:73:0e:50:50:3d:58:8d:
9c:aa:bb:06:e8:4c:7a:c1:9f:1c:03:72:59:da:d9:b0:bb:66:
73:38:d1:e0:38:3f:bb:74:64:66:e7:d0:c9:54:43:19:d5:fe:
25:54:08:87:75:20:1a:3c:e1:81:42:77:26:88:1a:12:c8:82:
94:93:72:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:07 2024 by rpki-client on console-fra.rpki-client.org