Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F129EF269E711EF93469757762E951A.roa
File: 6F129EF269E711EF93469757762E951A.roa (raw, json)
Hash identifier: SpGEY8qxULprPPYLtc7mQcGJvLiHk3G4eP40yW67Yjo=
Subject key identifier: CF:01:91:ED:00:BD:B3:A8:D5:88:E6:FE:D6:8A:6B:43:B4:9E:9B:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E95A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F129EF269E711EF93469757762E951A.roa
Signing time: Tue 03 Sep 2024 11:26:59 +0000
ROA not before: Tue 03 Sep 2024 11:26:56 +0000
ROA not after: Thu 03 Sep 2026 11:26:56 +0000
asID: 149641
IP address blocks: 154.92.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59738 (0xe95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 11:26:56 2024 GMT
Not After : Sep 3 11:26:56 2026 GMT
Subject: CN=66d6f283-d593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:a7:ee:5e:0d:e1:02:25:04:2f:ec:45:29:
61:f8:46:9d:ca:35:1e:5d:d9:85:df:e2:44:54:a4:
a3:dd:22:25:18:e8:4b:17:ac:bc:eb:67:f6:81:1e:
e8:24:7c:f7:1e:a8:35:5c:12:23:95:d1:5c:25:15:
90:bf:5a:b9:50:23:59:b1:27:79:b0:db:d0:4d:c6:
69:0d:76:f7:00:72:38:47:29:8f:34:2b:df:6d:60:
2a:52:09:62:de:bc:f9:40:28:35:67:eb:8e:92:2e:
95:fb:f5:dc:7b:18:20:7c:4f:a4:df:2a:65:3b:b6:
17:37:f5:d1:7e:01:85:99:78:e5:f6:d4:1e:81:38:
a8:45:da:69:c6:24:c1:a5:7b:2a:35:9f:cc:09:aa:
ac:c1:8f:28:2c:91:57:3d:b8:ee:7f:97:1f:bf:57:
07:c8:c0:53:a5:aa:5b:dc:73:7d:26:50:33:0e:a8:
77:5a:dc:a9:55:e4:fe:fb:0e:fc:93:9c:a4:79:18:
c4:bc:f3:40:64:37:52:0f:8b:13:10:85:a4:93:69:
cf:2d:88:e4:3d:77:0c:96:be:3a:fe:61:13:26:5f:
c0:39:50:5a:44:47:04:fe:bf:91:50:1f:7f:4c:ce:
a4:55:96:39:8b:0c:68:d5:75:96:28:65:80:93:a2:
e7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:01:91:ED:00:BD:B3:A8:D5:88:E6:FE:D6:8A:6B:43:B4:9E:9B:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F129EF269E711EF93469757762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.2.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:5d:0e:65:3c:4d:e4:a6:91:b0:01:2d:3a:2e:07:51:ec:a9:
df:2a:c0:ab:80:07:c9:be:d9:ba:16:1e:f2:f1:cf:09:e2:09:
6b:c4:12:17:84:38:0b:e4:50:43:c5:a1:1f:65:de:b7:d4:81:
fa:83:0a:8d:37:a2:a2:3a:8d:fe:66:16:06:6d:0f:80:d2:df:
9f:ae:6d:a3:81:09:f9:5f:d4:5e:61:05:3e:77:a4:4c:16:6c:
00:ef:b7:bf:6b:f6:54:a0:aa:89:7e:c8:12:82:79:00:c9:e3:
b0:0a:ca:08:a8:09:af:ab:e4:de:70:0d:71:b4:83:3e:55:68:
7a:9b:5f:e5:34:76:72:37:c6:85:d2:55:2b:3f:2c:a3:6e:cc:
d4:1e:4e:13:ac:db:af:51:3a:5b:e2:5d:5c:41:22:ac:cc:b6:
c4:d6:df:78:a4:71:76:9a:13:77:63:26:ca:5b:26:f6:2f:9f:
85:95:2a:f6:30:ac:d7:5b:db:15:19:78:c7:5d:ee:7d:a5:0e:
86:ee:ab:b2:24:b4:b8:ff:9b:e0:43:e4:b0:d2:d0:45:4e:a4:
2c:91:8b:ab:28:a6:4b:6a:39:9f:83:c4:cb:72:e8:9f:dc:48:
e5:b5:4f:f5:34:ed:54:80:78:11:d1:1c:6f:b6:f4:02:88:92:
f1:10:5f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org