Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEC907B8A19211EFB3242C8A762E951A.roa
File: CEC907B8A19211EFB3242C8A762E951A.roa (raw, json)
Hash identifier: oSJYBU4Mw3RqkHfJ5YPK68i0JI6hutf0IPC3Zpu0ClU=
Subject key identifier: 29:50:4F:23:6A:B7:72:0A:03:B5:8A:A5:DC:09:A7:FC:0C:B5:2C:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C95
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEC907B8A19211EFB3242C8A762E951A.roa
Signing time: Wed 13 Nov 2024 07:42:18 +0000
ROA not before: Wed 13 Nov 2024 07:42:14 +0000
ROA not after: Thu 06 Nov 2025 07:42:14 +0000
asID: 18004
IP address blocks: 154.92.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68757 (0x10c95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 07:42:14 2024 GMT
Not After : Nov 6 07:42:14 2025 GMT
Subject: CN=6734585a-a960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d4:7b:21:4d:f3:bc:09:f0:79:8b:00:ee:1b:
31:cc:ef:c9:cf:23:43:74:b0:6a:06:2a:0e:38:77:
59:c0:ad:e3:a2:75:49:2a:67:dc:6b:1d:98:68:79:
7c:dd:4a:e0:fa:7a:e5:f0:f9:16:de:80:1f:bf:a9:
94:17:8d:51:03:5e:ab:91:1c:68:d9:83:5a:6c:e6:
9a:63:de:be:a1:b1:33:8b:e7:ad:8b:ca:d3:f2:0f:
39:06:8d:d5:87:4a:04:39:e4:ed:8f:55:91:31:b7:
d8:33:31:04:a9:67:9a:a3:8f:ff:f7:4a:9d:6d:36:
e1:53:64:2c:ef:fe:e7:f9:da:2a:14:14:e6:12:8c:
bc:4c:a6:20:f9:92:52:3d:05:b8:a6:34:c3:76:36:
c2:7d:be:27:57:3b:74:da:7c:99:66:e2:e3:7d:be:
5c:8b:f2:7f:8c:dd:f5:52:9b:d3:1d:c5:df:3b:b4:
54:e2:ab:d3:50:d6:99:91:b3:1a:ab:ec:94:f3:ac:
e2:47:bf:5d:8d:50:ae:82:3d:32:7e:7a:d3:bd:14:
f4:78:7b:0a:83:99:52:fe:75:6b:c9:dc:4f:c2:2c:
0a:7a:96:af:44:c3:cb:72:fa:77:17:44:a5:67:71:
e7:58:4c:a5:bb:b8:97:5f:ab:f8:1e:8e:52:4c:b2:
e5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:50:4F:23:6A:B7:72:0A:03:B5:8A:A5:DC:09:A7:FC:0C:B5:2C:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEC907B8A19211EFB3242C8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.29.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:cc:a7:7b:2b:de:69:fa:27:22:04:ba:4d:d0:9b:fc:2d:86:
ec:4e:92:b0:9e:67:3f:ba:88:ca:c6:38:4d:dc:d2:41:bb:e3:
b9:27:bb:6f:c3:89:04:f9:37:87:a2:5a:a8:67:75:6a:8a:83:
ac:32:bd:b6:d9:19:16:fa:f8:78:ab:6a:a5:cb:77:68:c5:c1:
0a:dd:b7:61:3e:f8:a6:20:fa:6d:34:b0:98:ef:71:d5:e7:23:
87:81:e5:0f:90:8c:72:0c:07:91:b7:7a:21:b4:36:d0:99:01:
56:c5:89:73:2f:78:e9:72:8b:6b:40:79:7f:0a:08:25:23:7c:
94:64:dd:57:96:c9:ad:21:dd:44:1a:75:4f:65:d9:6f:f7:c7:
34:bf:27:e8:3e:65:4f:0a:41:99:a8:d9:f1:69:1d:3c:4e:1f:
43:f5:0d:3d:70:1b:f2:0d:52:b4:a3:3e:3c:60:87:45:59:76:
40:83:3f:b6:36:57:2f:ab:99:f3:76:7a:a5:c8:ae:e1:be:b7:
c0:db:e8:dd:71:7b:4c:c2:b3:2f:1e:29:42:0c:8d:49:9a:81:
cd:ef:f6:7e:eb:ea:47:6e:ba:a1:1f:c0:cf:36:a7:7a:83:50:
57:6e:97:f7:cf:1f:8f:fc:16:9a:cc:9d:82:93:26:28:8a:a4:
33:37:73:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:25 2024 by rpki-client on console-fra.rpki-client.org