Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0FB728014211EFB450EA23017001B1.roa
File: 2D0FB728014211EFB450EA23017001B1.roa (raw, json)
Hash identifier: Lha9a/6T67irOkHM60SkOBb5M18eKSRR+SoN7EuLeZ8=
Subject key identifier: 64:EF:4A:AD:FD:62:EF:F4:6E:39:95:1D:07:0F:53:99:27:25:82:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AEDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0FB728014211EFB450EA23017001B1.roa
Signing time: Tue 23 Apr 2024 07:22:01 +0000
ROA not before: Tue 23 Apr 2024 07:21:57 +0000
ROA not after: Thu 30 May 2024 07:21:57 +0000
asID: 63139
IP address blocks: 154.93.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44763 (0xaedb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:21:57 2024 GMT
Not After : May 30 07:21:57 2024 GMT
Subject: CN=66276199-0b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b2:13:e4:2e:39:38:14:85:b7:cd:37:a6:af:
48:80:c7:db:c1:7c:da:13:b1:87:4e:63:ad:91:28:
8e:25:10:da:f3:95:5a:c5:c2:27:5e:e4:74:b9:7d:
49:16:40:ba:a0:35:04:b7:9f:18:ce:a9:de:0b:83:
7b:cb:54:ae:61:c0:59:78:5f:93:fc:91:17:5e:12:
43:1a:f1:57:43:89:5f:d0:5c:eb:ae:12:03:a8:0b:
30:08:51:1d:9e:a0:30:a7:bd:f5:4b:55:88:7f:a6:
85:0f:ab:89:72:c7:c2:b3:c5:25:36:b9:0b:dd:93:
a9:41:bc:9e:83:f2:50:b7:41:de:18:f4:3d:03:89:
ee:84:4f:05:87:ce:3c:71:b4:5e:51:f9:68:18:13:
ff:cf:14:c3:c7:7b:3c:7a:68:f5:e5:de:e6:34:bf:
11:a4:83:06:38:ea:c6:5a:f1:48:eb:87:b7:cb:d1:
bd:aa:be:eb:54:34:9c:e7:e0:2d:e1:b5:11:47:bd:
7c:5f:2d:00:ab:71:bd:6d:91:3e:1a:1b:78:87:94:
5b:2f:48:02:f6:10:89:92:52:0c:c1:d0:51:dd:56:
87:61:6b:6c:e0:53:44:94:b3:29:75:73:cd:a6:8e:
f5:c0:da:4a:ce:66:80:0b:19:d7:1f:2e:54:d5:df:
94:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EF:4A:AD:FD:62:EF:F4:6E:39:95:1D:07:0F:53:99:27:25:82:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0FB728014211EFB450EA23017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.78.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1b:4a:bd:4a:91:5d:e4:a6:a8:f7:99:c2:c6:8f:09:8c:f0:
9e:08:a1:6c:76:3c:42:4b:b6:47:18:8f:db:42:ff:52:d7:4c:
1f:93:dc:d3:9a:ad:bd:94:4b:43:4a:a5:ec:79:33:b5:0c:46:
fe:b1:99:8f:8f:6a:82:e6:20:32:75:9f:ec:a4:b6:38:ed:b6:
e9:6c:1d:49:1d:63:b5:4e:e9:88:5c:63:f3:0f:a8:af:28:48:
0a:0c:10:b7:14:7f:49:02:65:9d:02:9f:09:14:7e:2a:36:7d:
07:5e:62:f4:30:08:dc:89:de:24:84:b1:7a:1c:d6:d3:48:0c:
4b:11:24:2c:a4:51:35:ef:bd:81:63:23:e7:8e:db:3b:91:0e:
01:82:4c:97:d7:7f:01:fe:f2:79:fd:eb:14:5c:ee:58:56:28:
57:6f:71:6a:c6:3d:ec:2a:8c:5d:fd:f4:38:18:4b:c9:0e:cb:
59:ea:37:93:4f:ab:17:c0:ad:a4:c2:9b:27:ce:2d:79:ef:84:
97:f2:1b:c9:77:7b:f0:9f:f9:ba:66:ed:55:df:1e:dd:21:16:
93:78:25:32:08:27:b0:f0:1d:c8:9d:cc:1f:e9:71:27:bc:c3:
69:19:70:29:66:eb:13:9a:e0:6c:38:cb:03:4f:15:50:70:29:
ce:f5:00:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:13 2024 by rpki-client on console-fra.rpki-client.org