Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/329D5926A54311EEA7A66B2ED25BE465.roa
File: 329D5926A54311EEA7A66B2ED25BE465.roa (raw, json)
Hash identifier: 1pPOf7iWBENGk84AGGgfnWlGuOjuG2CHIm2+lZTlGVY=
Subject key identifier: 76:BB:9E:4A:F0:88:61:48:CE:BD:56:F4:F4:82:C9:D9:09:8B:02:A5
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 020E
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/329D5926A54311EEA7A66B2ED25BE465.roa
Signing time: Thu 28 Dec 2023 05:37:33 +0000
ROA not before: Thu 28 Dec 2023 05:37:29 +0000
ROA not after: Wed 07 Jan 2026 05:37:29 +0000
asID: 4809
IP address blocks: 154.72.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Dec 28 05:37:29 2023 GMT
Not After : Jan 7 05:37:29 2026 GMT
Subject: CN=658d099c-8915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b9:73:83:d6:c2:e5:63:0f:73:ad:e3:01:f4:
be:91:36:e4:57:a6:ee:56:e2:4e:36:10:6a:6a:43:
15:d2:3c:4c:99:1b:95:46:2a:9a:5e:68:4a:36:e6:
13:d3:7f:a0:97:e5:b0:3a:78:31:22:19:6a:b3:52:
31:be:99:9e:5b:b1:1a:d8:a1:74:36:b4:88:6d:18:
b4:43:ef:ed:12:54:78:84:4b:1b:fd:4a:b7:72:c9:
d9:77:eb:6f:16:86:37:68:6b:41:13:e7:84:7c:f5:
b5:6a:35:8d:16:20:72:5a:25:33:06:fb:de:1c:d9:
04:52:ab:f4:94:95:aa:82:4d:26:6a:cf:59:58:40:
67:d4:85:56:a4:d0:1f:93:66:67:1c:5a:9f:72:6f:
d4:e9:68:77:09:9e:b9:b6:53:a4:d8:ae:8d:04:57:
eb:8f:8a:1e:b0:a2:ed:47:95:1a:15:12:21:b4:16:
11:2d:c3:9f:dc:06:95:04:4d:10:b6:2e:c9:3a:15:
4d:df:34:1a:bb:9b:f5:36:55:af:93:e7:5c:ee:30:
d2:e4:12:ea:e8:4b:cf:bc:30:6a:be:f0:4e:70:97:
d2:c7:eb:fb:70:15:e8:cd:ce:31:44:f0:fe:f1:0e:
91:bd:40:8b:c6:9c:45:2e:21:7f:61:92:d6:47:5d:
c9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BB:9E:4A:F0:88:61:48:CE:BD:56:F4:F4:82:C9:D9:09:8B:02:A5
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/329D5926A54311EEA7A66B2ED25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.41.0/24
Signature Algorithm: sha256WithRSAEncryption
76:84:eb:ab:a3:f7:8d:22:44:ea:98:34:f6:a1:00:62:da:b5:
78:5e:24:e5:81:00:e6:a7:41:c2:70:a2:1f:06:e5:22:41:56:
c7:ee:42:f4:38:6e:d3:12:c7:12:8b:25:f9:7c:2c:76:75:0c:
ed:3f:55:f6:e2:25:ff:83:16:b8:04:72:fe:e8:f8:0b:03:9e:
e4:85:a5:5b:34:89:2b:6c:aa:4e:c0:bb:5e:d4:1a:73:9b:18:
d3:75:6d:b5:70:be:95:a0:24:a3:60:a5:e9:64:92:b4:f2:5d:
e4:f3:0f:30:cb:6a:1e:67:9c:94:55:94:06:98:4d:4f:d5:35:
14:05:35:ba:fa:f5:01:45:51:43:1b:22:9e:78:b2:7c:cc:78:
fa:d3:70:10:ad:c3:51:b3:78:d0:de:ad:14:0b:0e:c4:6b:d7:
e6:6f:22:3a:b0:ab:dc:11:a1:02:b7:a1:4e:79:dd:8e:32:06:
e5:7a:38:e2:29:44:5b:4a:9c:75:b4:19:d7:c5:65:be:15:3b:
87:4b:8d:a2:76:87:e7:b1:e4:fb:27:cb:50:35:82:97:b7:bf:
13:17:2d:7f:04:46:71:16:3d:d3:5d:43:69:e9:a0:4d:e5:74:
13:56:c2:a7:c5:54:e4:ec:42:95:a4:3f:c4:c5:f1:6c:f5:da:
9b:69:f5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org