Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43611CDEAD5D11EFA492AA45762E951A.roa
File: 43611CDEAD5D11EFA492AA45762E951A.roa (raw, json)
Hash identifier: jpFw3DqgEromcamUJgx9meFKaX7nPGl4/bQ78SnYoTg=
Subject key identifier: D5:B6:FB:AD:45:62:93:C8:A8:1F:18:D2:32:A0:E0:C0:85:C3:8C:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0114EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43611CDEAD5D11EFA492AA45762E951A.roa
Signing time: Thu 28 Nov 2024 07:49:15 +0000
ROA not before: Thu 28 Nov 2024 07:49:11 +0000
ROA not after: Tue 11 Feb 2025 07:49:11 +0000
asID: 9009
IP address blocks: 154.92.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 Jan 2025 06:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70895 (0x114ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 07:49:11 2024 GMT
Not After : Feb 11 07:49:11 2025 GMT
Subject: CN=6748207a-130b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:25:f2:ca:8f:ef:f3:4f:d6:2f:44:b6:98:b6:
66:f5:c1:a8:86:28:54:9b:4d:6a:bd:64:31:78:4f:
52:18:f3:48:25:ec:bb:27:d1:3e:48:8f:d3:a6:4f:
40:22:88:d8:b9:ff:19:55:61:06:12:48:b5:0f:bb:
ab:94:31:0f:fa:ab:a4:8d:ee:96:c6:f0:ee:ac:47:
f1:90:b3:14:b4:c4:8d:4f:be:d9:9f:f9:3b:01:39:
71:60:7b:e1:08:1c:5c:99:48:f2:2e:92:11:5a:48:
f2:9c:fb:94:c7:a7:e7:d6:7b:c4:0d:36:a6:f1:2c:
81:c0:d0:8e:58:6a:86:2c:a4:57:e9:f5:cc:03:05:
4c:19:3a:fe:5a:ac:46:06:23:8a:c2:29:15:35:bb:
a1:aa:bb:a7:28:85:48:14:5c:18:17:6b:97:a5:dc:
f7:ec:e3:ba:9c:62:20:d6:76:81:0d:37:19:bf:de:
14:5e:4e:46:29:31:05:ea:5d:09:4d:08:8f:cd:e6:
af:09:db:a7:62:9c:51:8d:a7:ca:44:e6:fb:4f:ff:
d5:92:aa:1f:14:26:59:52:d9:82:70:09:c2:f6:24:
2f:01:3a:c5:8f:d0:2d:34:f7:24:2f:b3:4e:64:fa:
85:12:e2:60:87:61:ec:bb:ef:b3:7d:8d:52:a9:47:
46:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B6:FB:AD:45:62:93:C8:A8:1F:18:D2:32:A0:E0:C0:85:C3:8C:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43611CDEAD5D11EFA492AA45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.112.0/21
Signature Algorithm: sha256WithRSAEncryption
39:61:a0:ff:fc:c3:83:5d:a1:7a:26:aa:5b:fd:b0:16:5d:8b:
fd:5c:0b:1c:1b:4f:55:3f:84:bc:ac:73:55:b0:e1:d3:fc:d7:
70:88:c7:9a:de:7c:33:d6:73:77:9e:11:dc:84:20:69:d9:ac:
e4:1f:90:65:6c:f5:f0:07:63:a6:9e:ca:92:ae:ce:bf:b1:f2:
e9:2f:83:5e:64:b3:62:a5:af:ed:43:72:13:ce:78:45:fb:1d:
0f:a5:bd:79:ed:e8:ec:7d:2b:23:44:29:d6:15:d7:f9:42:20:
e9:84:c7:b0:c0:a4:34:8c:f0:90:70:5d:e5:5a:56:68:47:8c:
6e:eb:7a:c5:88:2f:0a:fd:b3:d9:9d:ae:54:b5:d9:64:01:a6:
6d:78:51:f0:cd:23:eb:53:87:d8:d3:32:0b:82:6e:e5:7c:4a:
04:e8:9a:79:7d:43:18:fe:36:06:2d:56:be:3e:f0:a3:22:11:
63:ee:43:f7:40:27:1e:5f:19:39:bc:de:84:2a:04:10:92:89:
33:4d:7a:e0:2f:c6:4b:1c:21:c8:94:46:e9:a5:b3:88:1a:48:
e4:32:ac:4e:c6:fa:6a:cf:09:2c:8d:e9:35:fa:9e:59:28:a2:
0b:66:5e:06:3e:80:67:40:fd:d6:72:d6:58:66:fc:65:fd:f0:
9f:a4:9e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 13 08:37:13 2025 by rpki-client on console-ams.rpki-client.org