Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18F35D56FAF011EEAB621421017001B1.roa
File: 18F35D56FAF011EEAB621421017001B1.roa (raw, json)
Hash identifier: oyDioZjnaUrgoUmdM3nngEszqExlY4Tf4nxFfV1rrwQ=
Subject key identifier: 4A:11:E5:CD:30:DB:77:8D:FD:F6:85:82:A2:4C:69:6D:DA:3A:3B:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACC0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18F35D56FAF011EEAB621421017001B1.roa
Signing time: Mon 15 Apr 2024 06:19:21 +0000
ROA not before: Mon 15 Apr 2024 06:19:18 +0000
ROA not after: Thu 30 May 2024 06:19:18 +0000
asID: 63139
IP address blocks: 154.94.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44224 (0xacc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:19:18 2024 GMT
Not After : May 30 06:19:18 2024 GMT
Subject: CN=661cc6e9-b73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4b:cc:c2:f3:b9:5b:14:f0:60:24:29:9b:c9:
6e:1f:38:12:05:3b:2e:2d:b4:dd:b2:92:94:c5:f5:
1a:46:bf:11:47:e2:31:b2:1a:d1:23:87:6d:c0:c0:
12:f9:06:96:e3:46:10:62:34:f1:51:7e:f7:92:03:
39:4c:f4:d0:e0:49:e0:5f:23:f2:72:62:d9:fe:08:
8d:de:7b:4d:cf:12:33:ed:46:3c:e2:de:d7:0f:c0:
fd:ca:bd:6f:cd:62:e8:fe:c3:ea:9e:97:bc:d7:1d:
af:b3:f6:d3:98:94:c2:b8:f2:e9:48:db:85:41:09:
08:0f:6f:c8:c4:9f:1e:67:4f:ca:79:f0:74:09:cc:
b6:88:7f:fd:8a:7f:e5:2c:f9:39:e0:3f:43:be:64:
04:a9:9e:10:ae:dd:c0:16:ec:31:2f:90:dd:a3:14:
82:81:0d:26:e1:f7:c3:4c:28:b9:b8:31:e8:95:18:
a6:c2:5f:3f:c3:f5:a0:68:f3:ac:0e:04:6e:3d:e0:
84:32:8a:31:61:b7:02:d4:45:d1:d4:a4:1c:51:68:
c5:1c:c5:9c:08:4a:7a:52:dd:61:07:4c:fc:2b:1a:
a7:16:26:ee:b1:5c:02:c2:0c:fa:2a:17:cf:55:4f:
46:b8:bd:80:1c:e9:4e:22:6a:cb:ab:c0:68:ef:26:
00:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:11:E5:CD:30:DB:77:8D:FD:F6:85:82:A2:4C:69:6D:DA:3A:3B:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18F35D56FAF011EEAB621421017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ef:44:c8:ba:39:63:f6:2e:67:c7:62:59:d5:a1:65:f8:57:
ee:1e:74:1f:f5:42:f0:d0:2d:68:51:af:df:31:25:0f:c9:4f:
5c:79:f8:e1:eb:da:a5:ec:2f:55:a7:d9:71:e6:f4:f6:36:05:
27:5b:7e:0e:5c:cc:84:f5:4c:83:72:de:52:41:3f:41:f7:16:
1b:ba:cd:6b:6e:7f:50:3d:02:18:1f:b4:1c:fb:46:24:d7:d9:
c5:df:b6:22:03:9e:92:93:03:7a:20:f9:4d:4d:82:22:60:b7:
09:a3:15:63:8f:53:06:6c:c1:ce:e1:f9:a9:c4:d6:d3:3b:e1:
8d:fd:ee:5e:28:b5:45:32:67:05:5d:7c:2c:0d:1e:17:0a:ee:
d7:fe:ca:07:56:2f:22:0e:69:f9:5d:c8:41:e1:54:59:61:17:
4f:6d:af:72:e7:e6:b7:c8:f1:47:d7:7d:97:de:10:81:fc:3f:
7c:41:31:e0:2f:f5:ad:4c:af:d6:fa:9e:36:20:9c:76:56:6d:
e3:e3:a8:63:56:4e:b5:95:1e:ac:48:64:fc:d4:68:3b:17:48:
4f:75:57:e6:c9:11:42:06:a1:af:11:fa:77:01:0f:1a:d0:88:
cc:80:ca:86:75:09:a8:47:51:d2:5e:f0:a4:b9:77:9a:7f:1f:
1c:29:a0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:16 2024 by rpki-client on console-fra.rpki-client.org