Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/0908078845A711EEAB5673554AD9E6FC.roa
File: 0908078845A711EEAB5673554AD9E6FC.roa (raw, json)
Hash identifier: tqO3uk+osFvKeD1dMRNKDu46qC2fHNV6k3SbxzfnOnA=
Subject key identifier: 97:72:E9:40:74:A4:64:BD:7F:D8:11:32:C9:96:FE:B1:98:A4:B6:69
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: BB
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/0908078845A711EEAB5673554AD9E6FC.roa
Signing time: Mon 28 Aug 2023 13:30:21 +0000
ROA not before: Mon 28 Aug 2023 13:30:17 +0000
ROA not after: Sun 14 Dec 2025 13:30:17 +0000
asID: 15964
IP address blocks: 197.159.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 May 2024 00:04:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187 (0xbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Aug 28 13:30:17 2023 GMT
Not After : Dec 14 13:30:17 2025 GMT
Subject: CN=64eca16d-54df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:70:b5:3c:60:8d:40:17:52:7e:4b:64:50:22:
04:4c:7e:bf:db:74:18:cc:e8:77:83:27:f3:e0:8d:
c7:ec:8d:6d:38:fa:65:b2:69:f6:88:ac:c4:10:86:
3c:bc:29:fa:09:4f:57:03:93:4c:1a:4e:c6:08:f2:
98:f4:07:5f:51:1e:22:a2:d4:e7:30:f7:da:15:84:
ac:01:43:41:08:4b:a9:ad:ee:63:a6:1b:19:b2:83:
e3:1a:61:a1:e0:46:d6:57:0b:32:fe:99:4a:55:94:
54:d9:e8:83:5d:32:f2:0f:5d:4e:6b:0e:00:f1:0b:
43:1e:60:62:10:43:28:88:4b:14:99:5b:f6:8e:fd:
20:1c:cb:00:c6:13:ac:58:ee:7b:64:c2:ef:31:9b:
b4:15:1d:c1:8d:eb:77:16:b3:40:ea:33:69:0a:3e:
96:8f:de:b1:3f:ad:ed:53:e1:a4:f2:c4:2a:e3:f1:
7d:80:f7:ff:89:cf:13:c2:74:5e:e0:d9:30:4a:d4:
25:b4:f3:12:1c:6c:9b:00:8b:2a:28:ff:6f:e5:4b:
3e:de:a2:20:b3:83:42:49:bd:a4:a7:ed:ac:d6:d9:
76:52:fe:44:ff:c7:cd:5c:55:57:8e:71:8f:aa:bb:
70:f2:f3:be:23:a3:a5:8b:dd:a5:30:b5:52:0e:11:
38:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:72:E9:40:74:A4:64:BD:7F:D8:11:32:C9:96:FE:B1:98:A4:B6:69
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/0908078845A711EEAB5673554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.159.29.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:4a:f6:44:bf:95:73:0a:87:ae:d4:29:42:94:b8:f9:9c:dd:
6a:b2:eb:b2:ba:8e:e2:bf:9f:51:f3:fd:4a:09:28:3f:52:80:
99:87:37:14:86:4c:4d:61:67:13:cb:ea:67:6c:3b:06:7b:f8:
55:3d:c4:7b:3b:45:5c:75:6e:08:1b:0c:0c:c9:92:4a:d4:03:
1c:4d:04:b8:f7:7c:00:a9:4e:ca:cd:4e:7d:28:95:25:6b:98:
45:63:69:29:86:c6:93:24:ab:bf:c4:a5:cf:17:e9:cc:53:f9:
76:1b:37:f4:59:12:92:7a:c7:56:73:03:bb:03:a5:34:2b:47:
27:0b:67:f8:ef:a7:d8:de:21:15:aa:98:25:4b:ff:9e:85:76:
42:91:b6:da:23:61:91:0f:7b:5a:45:bf:df:63:78:31:63:fe:
c2:40:41:ac:09:83:1e:ed:09:a2:f4:10:87:d6:ff:7e:93:41:
5f:b2:75:98:55:31:47:88:c3:d8:20:f6:62:71:5f:4b:ba:71:
62:37:5a:95:03:17:40:cb:34:75:b4:18:b9:20:ff:11:4b:49:
b8:20:87:68:2f:9d:4d:11:5d:ab:8f:78:83:4c:d1:d3:2b:d2:
a5:be:05:8b:fd:5d:5b:03:9f:20:f5:ac:3e:12:a6:a4:a1:fc:
ce:42:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:06 2024 by rpki-client on console-ams.rpki-client.org