Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42D4FA4CC50511EEAC489DB3775412E6.roa
File: 42D4FA4CC50511EEAC489DB3775412E6.roa (raw, json)
Hash identifier: oa0ECJym/TW4ok3rvqIBHRyJZvGXfCnp7UR0OOfKaos=
Subject key identifier: E2:8F:C6:47:72:97:68:FB:38:4C:76:7B:6F:0A:7B:97:34:2A:80:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 863D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42D4FA4CC50511EEAC489DB3775412E6.roa
Signing time: Tue 06 Feb 2024 15:34:48 +0000
ROA not before: Tue 06 Feb 2024 15:34:45 +0000
ROA not after: Thu 13 Jun 2024 15:34:45 +0000
asID: 212238
IP address blocks: 154.202.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34365 (0x863d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 15:34:45 2024 GMT
Not After : Jun 13 15:34:45 2024 GMT
Subject: CN=65c25198-e720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:68:3d:90:5c:06:ed:b5:57:35:28:94:e1:
2b:9f:8f:83:05:50:69:ec:d0:01:6d:af:3a:53:cf:
15:83:77:a6:d2:ab:1f:4f:88:71:25:56:5d:da:73:
f8:20:fd:4f:42:f5:58:3f:e6:cc:ec:03:9a:ca:91:
6a:5a:b7:ae:1e:74:0f:f5:95:c4:68:ed:d4:c3:ae:
3e:e2:af:48:48:fd:90:82:80:10:f4:37:0e:36:70:
0b:35:90:8a:97:f9:e0:d7:d3:45:aa:06:5c:56:43:
8d:3f:d6:b7:45:2c:81:f7:e6:be:1d:da:86:4f:9e:
e8:e7:1d:92:79:a1:17:57:c0:58:f6:75:9f:d2:95:
40:f1:e9:99:da:0e:f5:79:b0:c7:6a:45:b4:e1:2d:
d3:9a:2e:59:16:e5:4a:0f:70:32:60:b9:f4:a8:d2:
69:90:b9:64:c8:c9:39:2c:c5:64:ec:14:bc:7d:31:
bb:e5:19:4f:b7:ac:a8:e6:79:62:8c:68:43:45:d9:
bf:1e:66:06:c1:e4:aa:aa:db:32:84:c1:38:c9:94:
36:fb:39:72:7a:38:db:20:53:4c:8c:78:15:c9:ad:
5a:cd:ea:12:88:ef:f4:d6:da:dd:37:40:0a:b8:80:
c7:13:45:47:61:29:88:1d:cc:9c:17:98:88:0c:b0:
9b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8F:C6:47:72:97:68:FB:38:4C:76:7B:6F:0A:7B:97:34:2A:80:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42D4FA4CC50511EEAC489DB3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b0:0e:e9:b9:eb:2d:a4:b2:d4:eb:bd:0c:14:da:f1:a5:df:
f2:cb:4d:29:fb:e0:9f:58:2f:30:69:1f:0e:3e:6e:36:b6:2b:
58:71:59:8c:cc:0b:a0:e4:c1:51:33:89:9a:aa:2d:30:19:b1:
90:3e:94:7a:f6:e0:55:9d:f8:fa:8d:7f:68:0e:ca:8d:9b:9a:
06:02:66:45:24:10:17:af:76:e8:8c:dc:0c:87:ae:c1:f9:d8:
c7:0a:42:17:07:a7:6c:ff:55:11:ec:78:68:dd:cc:95:23:5a:
99:a2:00:f3:28:67:f9:83:f9:18:05:31:48:58:5f:13:03:ce:
44:9f:d0:d4:7f:69:0c:4b:c3:dd:57:b0:36:a9:42:33:5d:a4:
17:5f:42:45:33:95:b9:82:4d:13:93:11:32:c7:36:0f:1b:da:
a3:b7:f9:4d:88:63:59:db:99:41:49:f6:ee:09:ef:28:51:f1:
b9:17:d7:ae:ce:38:78:52:3f:bb:58:a4:22:1b:58:51:3b:76:
05:a1:91:a5:21:21:ba:bb:26:5b:a8:ed:40:b5:b3:76:72:ae:
5c:74:1a:9a:ca:c9:07:04:e1:22:52:48:2b:81:80:c6:ed:83:
94:3f:a6:b7:54:f5:71:74:5d:83:71:de:c1:4d:0b:0b:76:27:
d9:5b:68:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:42 2024 by rpki-client on console-ams.rpki-client.org