Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/C929139AD2D411EDA667F5E7F1222468.roa
File: C929139AD2D411EDA667F5E7F1222468.roa (raw, json)
Hash identifier: Y9jS1YbuXtHVWCKhSi4H7ePiYPS8XtVmXoggJSJ3nwM=
Subject key identifier: 41:DB:F1:FF:B9:CF:6B:56:33:BE:69:53:D4:20:D0:F2:9E:9E:F7:B7
Certificate issuer: /CN=F369A086AF/serialNumber=847633DF4B099C1A52213A724D8C6AD2B2246F55
Certificate serial: 02
Authority key identifier: 84:76:33:DF:4B:09:9C:1A:52:21:3A:72:4D:8C:6A:D2:B2:24:6F:55
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hHYz30sJnBpSITpyTYxq0rIkb1U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/C929139AD2D411EDA667F5E7F1222468.roa
Signing time: Tue 04 Apr 2023 10:38:07 +0000
ROA not before: Tue 04 Apr 2023 10:38:02 +0000
ROA not after: Fri 04 Apr 2025 10:38:02 +0000
asID: 29286
IP address blocks: 102.164.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/hHYz30sJnBpSITpyTYxq0rIkb1U.crl
rsync://rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/hHYz30sJnBpSITpyTYxq0rIkb1U.mft
rsync://rpki.afrinic.net/repository/afrinic/hHYz30sJnBpSITpyTYxq0rIkb1U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369A086AF/serialNumber=847633DF4B099C1A52213A724D8C6AD2B2246F55
Validity
Not Before: Apr 4 10:38:02 2023 GMT
Not After : Apr 4 10:38:02 2025 GMT
Subject: CN=642bfe0f-293c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:c3:ff:fd:71:43:df:a9:2c:eb:df:32:e2:
a5:0e:41:a1:78:75:88:ea:1f:28:13:ae:26:29:87:
a1:74:83:62:9e:9a:64:e7:d3:40:be:16:13:3f:41:
e8:1c:24:89:b9:fe:ed:26:84:65:82:d4:24:f4:56:
7a:d9:78:29:0a:ba:36:62:22:51:b8:12:c8:c1:b8:
6d:2a:ed:c5:fc:2e:b6:7a:11:6a:66:2d:4c:48:4a:
d7:9c:e1:f1:e0:38:8c:27:5f:92:e6:df:cf:54:09:
26:7e:48:ac:56:1a:d2:db:e6:4d:f0:e3:5c:89:05:
ad:6b:ee:9b:99:b7:7a:3f:37:9c:a0:93:14:5c:4d:
53:57:ea:fa:1d:12:2e:5e:29:2f:89:dd:b7:2a:c3:
26:70:a7:f8:46:10:f8:ab:50:b6:6c:da:8f:d1:fa:
cf:6a:a0:7a:70:b6:b0:20:e1:8c:81:e0:16:b7:6d:
c8:db:3d:f5:7a:d8:eb:8f:b1:00:15:a3:d4:3d:f7:
ec:e5:00:57:a1:1b:ba:e6:27:ef:36:88:30:42:6a:
5c:e2:30:16:91:04:ba:43:4e:0f:8f:8c:7c:ef:7b:
85:90:16:3c:00:a7:3b:22:5d:e7:8e:03:07:f4:67:
a3:52:a5:5b:3c:b4:33:9b:1d:54:27:0e:26:c1:08:
17:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DB:F1:FF:B9:CF:6B:56:33:BE:69:53:D4:20:D0:F2:9E:9E:F7:B7
X509v3 Authority Key Identifier:
keyid:84:76:33:DF:4B:09:9C:1A:52:21:3A:72:4D:8C:6A:D2:B2:24:6F:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/hHYz30sJnBpSITpyTYxq0rIkb1U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hHYz30sJnBpSITpyTYxq0rIkb1U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369A086/297D7F7CD2D211ED95103DE0F1222468/C929139AD2D411EDA667F5E7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.164.225.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d9:e9:a2:ea:12:3c:93:57:61:ef:c4:76:dd:75:bf:7c:70:
02:5f:01:0f:53:2d:bf:d7:f0:03:d0:ac:3d:a7:0d:cf:3e:b2:
03:06:cb:92:b9:7c:3c:d6:27:dc:52:13:65:1d:16:73:4d:71:
7f:8d:dc:ce:d4:e4:9b:12:5c:ff:bc:29:17:5a:8c:2c:f6:fb:
3b:64:69:0e:4d:9f:db:fa:cc:7b:f3:25:e9:68:59:e3:41:11:
bd:29:b2:83:3d:4a:bf:8a:e8:5c:cf:b7:a9:7c:92:29:fc:38:
20:61:bd:a7:50:b3:83:c6:14:be:69:02:db:e6:f7:9b:ba:6a:
f0:cd:d4:86:0f:79:32:57:3a:06:30:72:8c:ff:c4:b2:8b:e4:
b1:70:30:3d:b9:9b:6e:5d:bb:93:83:d7:89:2e:04:da:b5:ce:
29:89:1b:e1:11:62:f7:2b:4d:30:fd:de:f3:43:85:b7:a5:13:
ab:1e:cf:ca:aa:ad:cc:8e:1a:fb:18:71:03:9f:d8:23:0e:34:
6b:10:84:69:b2:6e:15:0e:2d:31:8c:b6:90:0e:16:da:c7:ed:
0d:5d:19:cb:cc:2b:f8:2c:cb:e7:f7:c6:76:a1:e1:1e:00:83:
82:28:30:39:48:f2:c4:60:02:71:75:f2:ea:86:e1:fb:76:5a:
a3:2e:5a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:17 2024 by rpki-client on console-ams.rpki-client.org