Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067E6EFC06D211EFA6940901017001B1.roa
File: 067E6EFC06D211EFA6940901017001B1.roa (raw, json)
Hash identifier: dU7mKMLqA4wYvp4U+BHS8sRE7Wd1PiOQVkJeMdCvXyM=
Subject key identifier: 45:9C:D4:FB:C2:DD:B5:38:7E:6C:FA:D5:2D:51:9D:20:3B:23:70:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067E6EFC06D211EFA6940901017001B1.roa
Signing time: Tue 30 Apr 2024 09:14:19 +0000
ROA not before: Tue 30 Apr 2024 09:14:16 +0000
ROA not after: Mon 20 May 2024 09:14:16 +0000
asID: 39600
IP address blocks: 154.94.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 09:14:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45747 (0xb2b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:14:16 2024 GMT
Not After : May 20 09:14:16 2024 GMT
Subject: CN=6630b66b-85ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8a:3b:e9:45:6d:04:bf:ac:e5:30:e1:e7:42:
8e:48:9f:2a:3f:01:42:39:d0:42:34:8f:b4:bb:fa:
f5:79:7e:35:b8:8c:b9:3a:db:ee:8f:a9:d2:e1:91:
d5:a5:5d:4a:ab:84:95:ee:67:52:34:6c:a4:26:19:
30:19:e6:2a:27:85:a3:6d:7c:f5:88:17:07:43:87:
05:86:f2:04:33:9e:e1:6a:59:8a:51:95:28:4d:a9:
b6:a8:ea:ad:e0:ba:c2:0b:d4:33:b7:08:57:58:2e:
c8:e4:a9:44:1b:4b:26:86:ae:49:53:5a:cb:fa:80:
a5:7c:ad:69:b6:a3:56:c5:4c:c1:14:67:f2:02:e3:
2d:08:99:c6:5e:e5:7a:d6:df:2c:c8:08:71:6f:48:
f0:36:18:cd:3c:be:a8:6d:3d:b6:01:d7:ca:91:30:
94:a3:2a:cf:b1:ec:29:dd:75:46:05:f0:ec:9e:66:
99:cb:9b:7e:a3:a2:1c:5a:12:2d:6c:c6:f2:9e:e3:
5c:8c:32:65:79:49:b7:45:9c:da:e3:31:bb:c3:dd:
ef:93:8f:0c:97:31:f7:0b:a0:6b:a7:2d:ae:fa:8a:
da:ac:2b:87:92:75:46:46:61:6d:37:41:0c:ad:44:
8a:87:84:fc:a9:d4:5a:d8:8c:3b:fa:b5:cd:4e:af:
bd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9C:D4:FB:C2:DD:B5:38:7E:6C:FA:D5:2D:51:9D:20:3B:23:70:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067E6EFC06D211EFA6940901017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.24.0/21
Signature Algorithm: sha256WithRSAEncryption
cc:6e:bb:3e:86:ee:fb:5f:25:63:e3:b6:a2:98:d0:8b:9a:1b:
ef:1c:8a:4d:ef:a1:d5:18:04:40:1a:bc:9d:7e:15:b3:17:d4:
d4:48:b5:a3:2f:fe:5c:79:0c:71:c4:14:fd:70:6f:37:bc:6d:
42:56:c4:af:9d:55:97:7b:d6:86:0f:a0:f3:80:8c:6e:bd:62:
7c:51:8b:0a:25:80:5b:b2:5d:44:cf:ce:aa:ad:07:cf:b0:07:
a2:26:89:8a:6b:40:7a:02:94:d7:2e:7c:1e:06:02:a2:a9:07:
b3:cb:8e:91:cd:c9:86:b6:44:fb:da:f9:74:0d:f8:81:55:a2:
d5:9a:18:c4:7c:b2:a2:d8:30:be:8d:a1:6d:2f:62:fa:2e:34:
df:ad:c2:5e:c5:28:aa:d5:0f:6a:cc:6d:86:eb:37:6b:1f:b6:
f4:78:c7:4c:82:a4:04:c9:3b:66:08:fa:f6:d8:41:f9:62:2e:
59:ed:ed:f4:a4:6c:38:cd:f9:0d:cd:0b:4c:c5:89:3b:91:40:
61:14:b9:1b:1d:e8:b2:49:da:e1:26:62:59:fd:03:11:7c:cb:
63:16:bb:d0:7a:20:e6:d2:f8:64:d7:38:f6:b4:c4:47:37:87:
ca:88:1f:9c:e5:9d:74:c6:e1:5c:93:33:7f:34:64:4e:d9:1b:
c5:1c:22:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:17 2024 by rpki-client on console-ams.rpki-client.org