Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29DE25D4014D11EFB64145FF007001B1.roa
File: 29DE25D4014D11EFB64145FF007001B1.roa (raw, json)
Hash identifier: lESzFtiPm1tFrC1caaQ3w6YnnQs1ROjmTt8y/bY3j+8=
Subject key identifier: E1:B4:ED:1D:60:55:49:E2:BD:23:7B:0A:05:02:5B:90:8C:46:4E:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 843B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29DE25D4014D11EFB64145FF007001B1.roa
Signing time: Tue 23 Apr 2024 08:40:40 +0000
ROA not before: Tue 23 Apr 2024 08:40:36 +0000
ROA not after: Sat 11 May 2024 08:40:36 +0000
asID: 3561
IP address blocks: 45.194.100.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33851 (0x843b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 08:40:36 2024 GMT
Not After : May 11 08:40:36 2024 GMT
Subject: CN=66277408-bc91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:f5:b4:65:0c:76:d0:2c:c5:33:c7:8b:7e:
b7:47:06:73:53:1b:82:0e:46:73:a4:da:2c:85:d8:
94:3b:a6:80:34:cb:60:b9:f4:71:55:db:f3:e7:c3:
ab:ce:c7:20:a3:7d:30:9b:37:41:2c:db:95:47:f8:
4f:99:99:be:4c:51:08:a3:d8:0e:fc:4b:4f:f6:25:
78:18:67:89:cb:10:fb:5d:b9:52:ec:8f:61:cc:57:
b1:1c:3b:1a:65:8f:cb:06:0d:f2:3f:21:e3:45:97:
3f:86:39:89:99:56:61:ff:fb:9a:bb:aa:04:09:d2:
ef:2b:68:87:05:89:69:01:dc:4f:6d:5c:a0:5c:40:
a6:4f:d5:22:24:15:b4:24:6b:6b:3d:77:49:dc:04:
06:2b:98:88:e9:f6:d4:5b:f0:33:51:63:7b:7d:42:
94:09:3a:74:c1:fb:4b:ad:ad:f3:0f:34:e7:59:c3:
07:b2:e5:1a:9c:34:66:a1:50:ef:d9:4f:22:38:3b:
cf:81:9b:57:35:68:5c:c0:d5:dd:7f:6c:e3:2b:67:
72:ba:f9:88:dd:4c:15:9a:71:a8:c6:03:5b:45:80:
83:f6:24:ab:9e:c6:9d:76:e9:5f:30:8d:12:4d:98:
c7:f4:61:15:ba:78:c3:96:e7:b7:84:2f:82:08:b3:
0b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B4:ED:1D:60:55:49:E2:BD:23:7B:0A:05:02:5B:90:8C:46:4E:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29DE25D4014D11EFB64145FF007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:1e:24:69:3f:32:b8:72:a2:af:13:4d:35:66:9d:81:bc:25:
99:fb:a6:82:69:80:e2:9d:10:ec:2d:68:29:03:26:e4:00:87:
06:a3:14:65:2a:7e:91:ab:8c:bf:cf:3a:ac:0b:56:c1:83:ba:
61:d1:64:d1:3a:f3:2c:d0:b2:24:64:42:5e:25:9d:22:d4:bc:
32:31:9b:b8:a5:94:ab:4a:a7:b0:0a:3c:2a:b5:cd:aa:11:71:
aa:26:76:87:6f:4c:2a:34:87:4b:9d:07:63:ee:a1:06:7e:56:
9f:90:96:5a:e0:b9:52:1a:1b:37:7f:c9:ce:5b:f5:8f:5f:43:
ba:1b:00:62:cf:32:1d:f5:2f:70:13:6a:9c:3c:9e:1c:00:0a:
04:f0:c6:3a:08:2a:fe:48:7c:11:da:b2:d3:68:aa:4a:5d:27:
7f:3a:cb:d7:be:a4:a6:46:fb:26:19:73:fd:5a:1e:6b:f9:01:
06:13:03:f2:5c:48:cb:73:a4:99:33:2f:56:cd:66:59:db:1b:
22:e0:58:9d:05:23:72:22:8e:2e:71:15:5d:63:aa:c8:04:79:
41:0b:be:e1:ee:93:88:32:e1:ff:6f:06:70:59:0b:36:b2:3f:
78:4e:01:73:53:72:b3:69:63:a0:ea:bb:6b:aa:f4:83:77:91:
63:18:ae:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:50 2024 by rpki-client on console-ams.rpki-client.org