Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29FDB198FE1811EEBA89745C017001B1.roa
File: 29FDB198FE1811EEBA89745C017001B1.roa (raw, json)
Hash identifier: pcWB/FHT7Yq3VRZPPNLBcM2lM+qcmI9W18D1Lw0LStU=
Subject key identifier: 2E:BB:9D:88:40:B4:18:3A:CD:3F:78:A4:45:D8:55:26:27:16:C2:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE42
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29FDB198FE1811EEBA89745C017001B1.roa
Signing time: Fri 19 Apr 2024 06:43:43 +0000
ROA not before: Fri 19 Apr 2024 06:43:40 +0000
ROA not after: Sat 04 Jan 2025 06:43:40 +0000
asID: 211392
IP address blocks: 154.83.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44610 (0xae42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 06:43:40 2024 GMT
Not After : Jan 4 06:43:40 2025 GMT
Subject: CN=6622129f-6fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:02:4b:a8:82:9c:fb:9a:57:9f:cc:fd:12:e7:
c9:5a:ef:43:41:35:f2:07:62:0e:98:58:6e:b2:20:
d7:a9:62:cf:aa:28:da:ea:34:a5:00:dd:58:53:0a:
a6:ef:76:51:d0:90:c7:8d:23:2f:52:26:1c:25:4b:
f1:6a:4d:b8:c6:4a:49:80:7f:d5:77:19:93:14:2c:
e7:8e:f0:45:65:ef:c0:44:e1:33:f6:9a:50:44:c0:
72:0e:75:a3:fc:bc:bd:3b:96:b7:c4:92:0a:1c:a3:
d6:8a:e1:64:90:45:18:97:0e:12:1d:d6:71:01:41:
b8:71:5e:32:53:97:41:5a:51:fb:e3:78:2a:80:e4:
39:52:1b:48:0b:46:dd:9b:79:74:38:5b:52:6d:b7:
a4:fd:7e:68:5d:50:19:ea:a9:dd:52:62:4b:67:72:
56:5d:ca:86:f2:6c:ae:a0:c2:6a:9a:be:26:2a:9b:
b9:7c:4b:7b:20:26:c4:60:b5:5c:1c:7d:67:18:f1:
de:be:e2:14:d2:8f:d4:56:d3:5a:63:a3:87:fe:7f:
af:d3:84:62:94:28:5d:a3:0e:c9:7d:83:61:3e:44:
97:dc:3d:f3:dc:7e:0d:1e:e9:84:04:ab:99:fd:33:
94:74:30:e1:f5:1a:86:8d:ab:57:33:f1:9c:0a:29:
6c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BB:9D:88:40:B4:18:3A:CD:3F:78:A4:45:D8:55:26:27:16:C2:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/29FDB198FE1811EEBA89745C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.31.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:43:95:81:d9:71:dc:b7:8c:27:3e:1d:29:b6:89:d3:d0:
42:d0:57:5f:95:d4:3a:48:4e:e6:98:66:e8:b0:b2:5c:d6:35:
72:ca:39:bd:c9:15:57:18:8b:3d:8a:7c:f0:0b:e6:de:22:c5:
07:a9:1b:ef:8f:7f:8f:25:a1:3c:98:c4:c8:52:bc:e9:6c:c1:
95:45:17:69:55:19:77:b5:18:16:b9:da:22:29:81:bf:67:0d:
a2:f4:2e:42:84:bc:69:d8:e1:da:63:fc:ac:e4:47:2b:93:a3:
c4:7d:4f:ab:99:90:a1:5a:5d:6e:89:40:9c:32:0c:62:e8:16:
24:22:6d:ca:c8:28:30:4b:f8:27:39:0f:ac:87:86:7f:b0:7c:
fe:41:1f:45:55:94:4f:e7:7b:b7:0f:1e:af:11:17:38:cd:cb:
da:a2:91:7b:5d:7f:20:93:61:57:8e:01:79:8a:96:e6:5e:45:
7e:c2:b9:0e:ff:3e:c1:26:21:48:43:dc:33:52:dd:5d:ce:a6:
c2:b0:38:6a:d7:0f:1a:0b:13:dd:0b:33:25:d2:6b:aa:34:5f:
4f:81:d9:68:d9:f2:d1:6a:a9:ef:5e:cb:2c:c6:c2:5d:58:05:
73:4a:05:06:93:ec:59:f4:7c:82:c5:6a:b1:ab:2f:6a:71:4b:
36:dc:84:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org