Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29297F66E75411EEB73EBAAE775412E6.roa
File: 29297F66E75411EEB73EBAAE775412E6.roa (raw, json)
Hash identifier: Mf6IyCPqQnV1DhsAkZ0R2QjvbPoSwl7+Mdff9gPkDlM=
Subject key identifier: 29:54:20:40:E9:65:FF:6F:A4:2F:C2:66:50:CA:23:09:CB:0F:5B:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A48F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29297F66E75411EEB73EBAAE775412E6.roa
Signing time: Thu 21 Mar 2024 07:25:15 +0000
ROA not before: Thu 21 Mar 2024 07:25:11 +0000
ROA not after: Tue 23 Apr 2024 07:25:11 +0000
asID: 44559
IP address blocks: 154.218.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42127 (0xa48f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:25:11 2024 GMT
Not After : Apr 23 07:25:11 2024 GMT
Subject: CN=65fbe0db-7f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:51:9d:73:ba:ba:ac:2c:7a:cf:4d:c5:c9:f9:
fe:81:48:41:80:2b:dd:f2:fb:b6:08:d7:80:a3:72:
87:77:2b:3a:99:83:02:f3:08:0d:cb:1e:76:96:79:
54:31:3f:56:58:bd:d4:41:87:57:fd:39:1d:fd:a7:
5c:de:c7:61:ec:1e:33:aa:c3:3a:70:c7:08:71:4a:
08:b2:53:cd:a2:7b:69:3e:13:12:1f:1e:e9:54:fd:
bb:4f:2b:6e:b6:b7:e9:c7:b5:c7:aa:48:9c:40:3b:
8b:66:e5:f6:4c:50:64:cc:78:28:b0:46:4c:5d:2d:
68:2f:2c:42:54:59:9b:7c:d7:75:dd:ea:66:ac:dc:
2e:79:ee:36:2d:f0:83:c3:68:4e:4d:fc:ff:a9:86:
d3:11:07:50:60:db:06:a8:76:d0:bf:ef:4f:11:08:
04:d4:c1:81:ae:df:be:b7:86:87:da:69:60:ea:ba:
dc:78:e4:ce:e6:84:6b:2f:4c:64:74:6f:37:df:2c:
c9:6d:4b:03:30:85:b6:3d:d6:af:87:96:cf:79:55:
9e:b5:d6:a3:7e:15:37:ec:bc:38:c2:f1:62:44:e0:
13:e7:4d:ce:94:55:a8:65:5d:3a:78:b0:16:de:1f:
19:13:c7:59:f6:7e:3c:b5:9b:65:5c:48:f9:8d:72:
16:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:54:20:40:E9:65:FF:6F:A4:2F:C2:66:50:CA:23:09:CB:0F:5B:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29297F66E75411EEB73EBAAE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.49.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:9d:3e:e1:11:ac:4b:5a:61:a6:73:c6:df:07:4c:2f:70:2a:
8f:6f:ed:67:61:1d:ce:5d:ad:ee:a9:ea:07:34:88:9e:4b:d0:
5d:ba:80:7d:62:1e:68:d6:7b:55:49:2a:62:b6:ff:3f:fe:5a:
5a:0b:c4:37:26:55:56:ca:e4:06:4a:08:be:8f:31:02:f0:58:
c6:09:8f:6b:b5:09:fd:43:ba:fb:83:d6:e4:ee:6e:a1:81:85:
17:14:9f:83:ca:b2:3f:90:f7:92:a2:c4:5a:89:6d:3a:de:75:
b3:29:6b:33:12:48:b2:0f:d2:b3:f2:f3:46:0d:94:8a:01:49:
24:75:e7:7c:71:98:57:82:5f:03:8d:88:db:99:63:c8:b3:f8:
56:a2:ee:8e:d7:ba:eb:24:e3:4b:d2:9e:39:e0:f7:c0:14:60:
18:e8:c8:0d:85:66:6b:a5:40:e9:a4:b7:9f:c9:21:0e:3b:fa:
ad:e7:65:45:98:ba:15:80:54:a2:fc:c9:e0:91:af:64:0e:fc:
31:6c:88:fc:89:92:09:de:96:c2:b2:c2:aa:64:19:34:62:a5:
d8:66:e9:8a:ed:78:d1:05:f7:1e:20:c4:f4:35:91:eb:5b:36:
11:6f:dc:7d:02:6b:d3:45:ae:e7:c1:46:99:ce:ea:71:d3:a5:
b2:84:23:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:15 2024 by rpki-client on console-ams.rpki-client.org