Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/335FE40CE73111EE91CF649D775412E6.roa
File: 335FE40CE73111EE91CF649D775412E6.roa (raw, json)
Hash identifier: iTcFFY0UchmUyigXd9FZeGqHxGMBBVst6EC5XCwxkX0=
Subject key identifier: 8E:0E:4F:EC:8E:BD:2B:FB:05:FF:84:6C:67:16:F6:CF:BB:A0:B1:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A338
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/335FE40CE73111EE91CF649D775412E6.roa
Signing time: Thu 21 Mar 2024 03:15:00 +0000
ROA not before: Thu 21 Mar 2024 03:14:56 +0000
ROA not after: Tue 23 Apr 2024 03:14:56 +0000
asID: 44559
IP address blocks: 154.207.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41784 (0xa338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:14:56 2024 GMT
Not After : Apr 23 03:14:56 2024 GMT
Subject: CN=65fba634-e0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:58:51:86:f2:5d:a3:2d:c3:ca:1c:0b:7e:8f:
1b:55:7e:2a:3a:95:0c:e1:57:87:ff:b3:6d:00:7c:
c9:f5:88:2b:2c:f3:15:85:75:cf:f2:53:1a:65:31:
b3:81:a8:30:9d:4d:ec:ee:9f:08:14:71:8d:ce:ec:
fd:c1:de:90:50:a0:20:1c:7c:6b:53:63:8e:a3:a2:
59:c3:1c:25:c3:c9:28:c8:21:84:d9:3a:17:63:83:
d6:9d:aa:1a:62:48:83:47:70:1b:c6:2c:a3:2d:a2:
93:f3:89:1b:4d:ad:a4:e3:92:54:52:82:f6:11:81:
94:7c:15:4f:00:59:67:de:19:a7:41:ee:18:30:ac:
55:2d:76:4a:5d:c4:79:01:69:f7:47:89:c4:2f:06:
4b:2b:df:56:dd:ce:3a:af:f5:e6:19:5d:a7:e2:1c:
d3:39:2b:ca:41:9f:20:c2:9a:4b:46:f6:b2:42:25:
44:2f:31:0f:1c:e7:bf:98:f3:1d:b1:29:a0:57:c7:
a5:b7:70:45:a9:5e:f8:98:5c:26:a6:de:08:c9:aa:
85:86:b5:2f:7a:98:35:96:e2:5d:99:2b:64:89:bd:
8a:34:14:98:8a:87:81:80:f7:a8:99:fb:46:db:25:
0f:a4:c5:e4:82:0d:77:cf:ec:43:02:30:39:6a:21:
ee:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0E:4F:EC:8E:BD:2B:FB:05:FF:84:6C:67:16:F6:CF:BB:A0:B1:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/335FE40CE73111EE91CF649D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:cd:cc:4f:4a:19:79:9c:0a:c0:f6:e1:f0:39:ac:fe:f5:cb:
c3:71:f4:43:68:d8:7e:ce:e5:8f:c9:f1:3c:ce:31:2d:00:48:
e6:2a:44:69:84:9d:8f:c7:26:d0:4c:00:df:84:9c:9e:cb:76:
39:0e:3f:8f:98:32:95:63:b2:86:b2:56:0f:dc:98:dc:e8:62:
f3:a0:b6:25:2b:7b:e8:5d:f6:6e:ae:3a:10:6b:76:7d:2e:33:
2c:12:c4:95:3b:b1:28:7b:c0:fa:e3:34:7b:dc:22:6c:0f:d8:
86:cf:65:c7:a6:ee:81:22:3e:3f:f0:92:94:3f:61:e0:cb:ec:
e9:e0:1a:a1:19:48:61:c9:55:91:e0:1b:be:fd:b7:93:1b:e8:
a1:58:74:29:f6:0a:e9:c4:9c:98:37:fc:cf:6e:1f:3d:d4:5a:
e7:92:29:c7:0e:a3:5a:e0:f4:03:48:c1:da:c4:4b:d4:cd:e7:
e6:9a:7e:ae:24:52:87:53:ef:3e:67:aa:e9:15:8c:d5:89:29:
7e:58:44:97:7a:ee:47:80:32:ea:eb:fd:19:ba:df:bc:70:39:
53:a0:21:5b:0e:0a:6c:24:63:27:39:e1:44:69:85:2c:b7:63:
09:84:66:3f:b6:f0:e2:03:30:3d:e2:df:b9:9d:94:b7:a4:7b:
70:d7:00:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:16 2024 by rpki-client on console-ams.rpki-client.org