Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E37B5AC047C11EFA5F79567017001B1.roa
File: 0E37B5AC047C11EFA5F79567017001B1.roa (raw, json)
Hash identifier: PxUhhuV9rWONQlacXVSV0ClHUAcJG5SaDmCMfoW1KdY=
Subject key identifier: 7A:E0:F1:6B:1A:02:74:B4:8A:F8:C7:A5:B3:D3:FD:80:CA:0F:8D:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E37B5AC047C11EFA5F79567017001B1.roa
Signing time: Sat 27 Apr 2024 09:53:53 +0000
ROA not before: Sat 27 Apr 2024 09:53:48 +0000
ROA not after: Sat 25 May 2024 09:53:48 +0000
asID: 212238
IP address blocks: 154.203.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45483 (0xb1ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 27 09:53:48 2024 GMT
Not After : May 25 09:53:48 2024 GMT
Subject: CN=662ccb31-2c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:ed:5d:c3:92:33:bf:ad:19:96:b5:fb:40:
fb:b8:e4:ec:89:01:b1:d5:e9:b1:9d:bf:bd:07:63:
4a:4c:19:d0:6c:9e:a7:74:f2:69:e1:53:cb:b3:b8:
1e:d9:3e:02:15:fc:a2:89:7b:07:a2:7a:94:5e:26:
3f:90:bc:69:c2:8d:d7:92:3f:e7:ad:95:ba:76:68:
dd:69:55:b9:c3:90:3b:77:96:48:2e:5f:cb:21:f0:
0c:22:4c:c2:9e:09:87:85:23:25:cc:4b:f8:8e:7f:
0d:ea:b9:7f:0b:34:7a:59:09:b9:e6:e4:da:de:c7:
48:23:ab:06:76:99:b4:4e:a6:75:58:fe:5a:8e:28:
17:02:57:e4:00:62:99:6f:94:17:05:b4:03:8d:79:
a9:55:90:bd:3c:55:24:d4:2a:c0:0d:b5:87:25:aa:
ed:f8:3c:61:09:57:ec:d1:f0:1d:98:7c:05:7e:ae:
17:91:07:20:ed:11:8c:22:dc:6d:ed:f9:4a:49:a1:
f1:63:27:c9:4a:c9:d9:bd:ed:ac:12:41:4e:ae:7d:
1c:36:d5:2d:19:96:19:64:0d:3e:01:3d:a9:c8:e7:
21:fe:c2:bf:16:d9:09:ef:c6:63:ab:a4:fb:ee:3f:
42:6b:dc:a1:27:9a:a9:17:66:a4:69:08:f3:2b:92:
33:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E0:F1:6B:1A:02:74:B4:8A:F8:C7:A5:B3:D3:FD:80:CA:0F:8D:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E37B5AC047C11EFA5F79567017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.94.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:a5:d5:d7:ff:aa:da:f1:6d:f4:5c:7f:b5:f5:ff:c1:ff:4f:
16:1d:f9:19:bd:e3:42:09:7d:90:e2:cf:37:69:07:88:87:4e:
7f:67:c5:dc:4c:58:a6:05:d4:4c:70:0d:50:42:2a:65:39:6c:
21:2a:bd:92:ec:ec:64:a6:b1:ac:aa:10:4d:b3:60:09:85:2c:
0e:56:0d:d5:33:5c:c6:6b:28:bf:c7:df:b3:16:9a:2c:83:c4:
39:79:ea:eb:48:21:d3:56:46:6b:12:47:03:db:37:38:7c:42:
d4:59:b7:5b:49:13:01:40:f8:66:87:51:3d:7e:ea:a7:af:3d:
12:81:ae:dd:a2:70:dc:fe:49:ff:49:ab:be:48:73:bc:a7:5f:
91:a1:34:86:ce:66:fe:b1:03:b1:27:c9:3a:28:b2:8c:4d:dd:
64:80:b7:d8:05:ec:d0:49:96:30:71:0f:db:c7:e7:57:65:d5:
0d:45:9b:0f:76:c7:91:0c:20:f3:91:2d:be:24:1e:eb:ae:20:
7b:0c:92:af:bb:1b:80:09:21:00:d7:9d:07:c0:2c:03:f6:01:
d2:c3:38:59:c3:0c:43:89:3d:1d:43:28:49:8b:24:8e:a1:a5:
0a:d8:2d:ff:91:d2:fe:08:7b:91:b4:7a:d6:e0:0a:bf:d2:3e:
9c:3e:2d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:11 2024 by rpki-client on console-fra.rpki-client.org