Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A29B97DE017211EFB090792D017001B1.roa
File: A29B97DE017211EFB090792D017001B1.roa (raw, json)
Hash identifier: e1YW7vjTHVIWXhXz130/7EQIEoKHOR4jAeZAs7iDymQ=
Subject key identifier: 58:23:AD:7D:3B:A7:DA:8F:13:AB:26:AC:4B:FD:2B:E7:51:51:98:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A29B97DE017211EFB090792D017001B1.roa
Signing time: Tue 23 Apr 2024 13:08:54 +0000
ROA not before: Tue 23 Apr 2024 13:08:50 +0000
ROA not after: Fri 25 Apr 2025 13:08:50 +0000
asID: 28458
IP address blocks: 154.212.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44870 (0xaf46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 13:08:50 2024 GMT
Not After : Apr 25 13:08:50 2025 GMT
Subject: CN=6627b2e6-0233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:0c:f6:68:50:b9:72:79:d8:64:15:87:a6:64:
5b:0b:eb:fb:40:37:48:86:f9:4e:92:17:92:3f:37:
55:fe:33:10:28:58:22:86:a4:a2:e2:38:91:cb:91:
78:63:b8:e2:cf:72:66:ed:1d:c8:7e:63:98:b6:ba:
37:15:c1:9b:fe:08:e3:58:63:19:7f:9e:c6:ae:d7:
3a:83:9c:7c:6f:70:bb:a4:42:12:eb:b8:ff:d8:9b:
2e:52:2c:44:1c:17:59:10:94:38:6b:1f:de:d5:e3:
01:4a:06:75:24:a7:40:ae:26:66:01:97:a4:31:38:
ec:87:dc:a0:9c:b5:c3:5b:a0:b3:b3:d7:12:c4:9d:
23:c6:5d:d4:38:77:c4:92:33:b5:a0:26:73:15:24:
09:fb:5e:a3:fd:d4:6e:bc:6d:80:69:c9:ae:76:13:
0d:fd:21:fc:13:c4:f3:6d:3b:df:89:72:ce:8c:7f:
c0:32:1a:f4:ac:6a:e7:b8:1b:87:28:c0:f1:33:f9:
ab:a1:95:01:58:c2:c9:33:52:ef:0d:ba:48:25:4b:
12:f5:be:fe:73:f3:e2:6b:b7:7b:b6:b8:41:48:fb:
73:fc:5b:5e:82:1d:7c:f4:13:26:ff:80:91:54:6b:
ed:4c:de:3f:26:87:d5:d0:47:21:93:40:a2:41:4c:
76:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:23:AD:7D:3B:A7:DA:8F:13:AB:26:AC:4B:FD:2B:E7:51:51:98:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A29B97DE017211EFB090792D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.6.0/24
Signature Algorithm: sha256WithRSAEncryption
27:3a:32:0c:81:d1:d4:a3:d3:12:4d:4c:3e:69:f7:de:38:60:
9f:86:55:3d:15:39:bf:a9:2f:89:a9:60:32:05:86:b1:97:41:
76:87:80:fd:bc:cc:c6:85:1d:a7:fa:63:ff:f6:6d:a1:bd:38:
09:10:26:7b:a1:ce:22:7b:56:9c:cb:bc:00:a2:56:f3:5b:4b:
a6:dc:52:59:12:05:fe:95:7d:68:ec:12:5e:7b:c9:fc:97:f2:
7d:58:55:b2:9b:73:d3:05:36:dc:05:69:56:d7:6b:a4:a2:b3:
4c:8d:a1:41:83:30:1a:0d:a1:3a:86:4a:39:17:fe:33:37:c8:
79:9a:64:2b:b9:85:dd:c9:fd:36:83:36:4c:3c:ae:22:bc:01:
ae:eb:92:e5:d1:0c:69:07:14:d4:2e:5a:cb:71:82:b9:64:1e:
37:63:5f:2e:e6:6a:69:fd:24:73:e6:e5:52:a3:1c:ba:84:3c:
71:a2:6a:98:b6:28:a2:c1:ea:45:6f:b5:33:3a:58:00:82:24:
89:b2:36:9b:71:2d:8e:8e:e1:81:ed:7f:0e:c6:b5:c2:90:44:
4a:83:8e:e8:68:b6:c0:eb:5c:77:48:7e:c9:5a:ec:14:11:4b:
c6:d7:42:77:d4:4f:8d:60:45:d6:19:8e:c0:00:c7:af:c5:14:
a6:f9:0c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:21 2024 by rpki-client on console-fra.rpki-client.org