Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C9CD5E0B4311EF863EEB1B017001B1.roa
File: 84C9CD5E0B4311EF863EEB1B017001B1.roa (raw, json)
Hash identifier: yrFPt8kb1jy39SoPXqDZ3ZaTArq3wowo873ecmdcDZk=
Subject key identifier: DB:42:32:6C:27:EB:3E:8B:5A:2F:56:50:7F:D8:3D:E7:35:23:E2:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B428
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C9CD5E0B4311EF863EEB1B017001B1.roa
Signing time: Mon 06 May 2024 00:56:49 +0000
ROA not before: Mon 06 May 2024 00:00:46 +0000
ROA not after: Thu 06 Jun 2024 00:00:46 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46120 (0xb428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 00:00:46 2024 GMT
Not After : Jun 6 00:00:46 2024 GMT
Subject: CN=66382ad1-b8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a1:a3:80:71:de:d6:be:4d:e5:8f:e4:3f:f8:
9e:17:5c:ec:d2:b8:30:81:74:0d:4d:6d:83:2b:a4:
af:90:f1:41:92:2e:2a:78:2b:55:6a:53:b2:d2:58:
9e:eb:af:03:6b:ef:15:47:74:e4:00:a5:2f:5d:18:
12:af:a0:f0:c2:9c:18:11:b6:a3:d9:4e:83:21:b3:
b3:32:a0:5d:3a:9f:c7:bd:8a:c5:55:e4:ad:43:20:
b5:e5:a0:20:78:2f:59:f3:bb:e3:ec:ad:27:c7:fe:
3a:01:8b:83:37:32:15:3b:90:38:fc:b0:d5:30:4f:
2c:03:36:c2:d5:99:d6:0d:e7:4b:88:81:58:42:bd:
d2:4e:b3:1b:b7:50:26:98:d2:cf:59:e0:0f:94:18:
6e:44:3f:32:ca:00:7c:e9:ec:ea:ac:e5:72:02:f2:
c9:75:dd:02:64:6c:c9:e1:b1:b4:3c:5f:0c:b7:db:
07:4b:75:ee:63:eb:c3:7e:fd:54:4d:53:ed:5b:cd:
e3:db:c4:60:ef:a7:11:53:4a:97:c9:b4:0d:7f:e8:
93:93:a9:52:ec:f3:57:eb:54:9b:bb:d1:95:d3:28:
ad:13:3c:82:98:7d:04:cc:c8:fe:b9:c5:3c:e7:bc:
3f:d1:33:c6:47:47:3e:f7:b5:c4:3d:0b:17:8c:6f:
d0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:42:32:6C:27:EB:3E:8B:5A:2F:56:50:7F:D8:3D:E7:35:23:E2:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84C9CD5E0B4311EF863EEB1B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:78:0a:d9:31:06:3e:35:49:84:63:ac:82:ad:48:f5:ed:0b:
fd:93:9e:3d:0c:dd:b6:9f:40:66:95:d3:cf:0d:be:04:61:14:
59:05:2b:7a:b9:a3:1e:29:c5:d0:81:83:ff:54:90:72:9a:6a:
56:71:61:0c:a3:43:cc:ad:8d:87:89:8a:61:86:d2:f8:2a:5e:
b7:67:f2:26:13:e2:90:06:60:7c:f1:cf:ff:6d:15:bd:67:c8:
be:91:e8:ab:4c:3b:a9:b4:d8:6e:8b:61:bf:8a:da:78:6c:22:
22:f5:78:d8:59:1d:a3:20:c8:e0:d6:96:21:4f:97:22:fe:fe:
b9:e0:48:32:68:41:d8:86:82:dd:a0:d5:dc:cb:5a:5a:1b:fd:
84:31:2f:e0:5d:11:26:b2:30:81:7b:f1:35:32:43:90:0f:97:
a4:28:69:8c:27:36:da:4a:e3:73:3a:d7:79:5b:a6:86:be:67:
53:c4:13:8e:c0:db:f2:d0:9e:0b:f3:43:a7:25:a4:fa:ee:33:
a2:83:b3:51:76:22:ce:8a:0d:ff:04:6e:16:5d:bb:91:ac:3f:
dd:9a:bc:61:25:3d:f1:74:8f:24:04:73:ff:40:19:9e:0a:48:
38:62:98:99:14:9e:f1:9a:df:94:01:a7:f4:4f:b2:2f:78:5b:
da:6c:1f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:24 2024 by rpki-client on console-ams.rpki-client.org