Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E7F802EFBAE11EEBE1A6932017001B1.roa
File: 1E7F802EFBAE11EEBE1A6932017001B1.roa (raw, json)
Hash identifier: QwJSzhQujNHywizxvYtIJBvTAXY08i7SxBZxRP0nq50=
Subject key identifier: C6:D3:C2:F6:2F:51:78:D4:40:F5:26:D9:62:B0:1B:47:51:EF:5F:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADD1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E7F802EFBAE11EEBE1A6932017001B1.roa
Signing time: Tue 16 Apr 2024 04:59:35 +0000
ROA not before: Tue 16 Apr 2024 04:59:32 +0000
ROA not after: Thu 30 May 2024 04:59:32 +0000
asID: 63139
IP address blocks: 154.94.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44497 (0xadd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:59:32 2024 GMT
Not After : May 30 04:59:32 2024 GMT
Subject: CN=661e05b7-2487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6a:a2:0b:2f:41:6d:30:b0:69:51:68:27:e7:
ea:b0:75:82:7f:b6:66:f3:97:6a:ce:d0:ad:6f:d1:
fb:8b:b9:fe:3d:76:48:ec:89:55:6e:8a:99:76:fe:
55:e0:10:88:49:b1:27:0a:7d:ff:18:79:63:b8:bf:
01:5d:52:27:ae:79:34:a0:f7:ca:11:9e:87:4c:5c:
75:f9:55:f7:2d:4e:aa:a0:1a:23:a6:bb:3d:95:82:
94:5a:d7:c7:d5:87:f5:2f:43:fd:c1:ac:3e:ff:6e:
71:7a:d8:96:5f:94:d8:d8:cc:77:bb:23:4a:a7:19:
37:8e:6d:d6:c3:00:26:68:41:45:88:96:d7:49:fd:
c1:ea:62:f3:e6:ce:87:7b:59:03:2b:5e:c5:90:94:
49:a8:aa:a1:93:63:f9:79:c3:31:46:6e:50:f4:9d:
50:36:44:a0:1a:04:99:50:2e:4f:12:b7:98:8d:45:
ae:44:de:64:6b:36:99:4d:84:f8:5f:a4:e3:5d:18:
85:db:9f:03:02:49:9f:08:40:c6:46:57:a8:75:5c:
b3:79:4a:25:9a:00:a0:4e:07:d3:07:ca:09:9e:87:
c3:05:84:86:37:11:a3:b9:58:57:97:ee:34:a4:ac:
ba:c6:53:61:27:5b:5a:f4:1a:c9:56:81:7d:17:2b:
78:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D3:C2:F6:2F:51:78:D4:40:F5:26:D9:62:B0:1B:47:51:EF:5F:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E7F802EFBAE11EEBE1A6932017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.95.0/24
Signature Algorithm: sha256WithRSAEncryption
45:c0:86:c5:7c:6b:8a:4c:70:f7:56:ab:9e:8a:96:af:41:43:
87:45:16:84:22:9d:52:42:62:5f:da:ce:6a:88:9b:c8:d1:48:
46:a6:28:46:71:52:4d:ab:c6:d6:a9:d7:fa:d7:3b:8e:27:33:
17:c2:87:74:2e:19:55:be:3a:4e:51:e6:96:ab:e5:5c:ec:3b:
f8:19:ba:a1:39:87:1b:e2:e0:32:39:7d:16:b2:a7:72:7e:52:
26:b1:e6:bc:30:cf:52:46:21:38:6d:51:18:45:0f:93:1c:39:
58:12:c9:8d:ed:ee:25:4a:8a:5e:75:2a:68:09:a2:ee:6a:86:
b3:59:98:18:39:25:3d:1a:eb:9a:47:e5:1a:9c:08:2a:29:f5:
c9:d6:2a:35:7f:71:6a:c5:fa:ff:6c:0e:93:46:82:55:f0:f2:
7f:33:2b:a4:75:6d:f3:97:33:4c:01:37:d3:bf:dc:85:5f:be:
de:54:26:56:e2:62:02:e9:3a:72:12:7c:dc:b3:02:5d:67:38:
7b:87:26:b5:67:44:72:87:65:3e:04:e2:fa:4b:42:d6:d0:09:
0c:5a:46:81:57:c2:3b:13:3e:0e:9e:d5:68:34:9b:56:d4:a2:
7b:14:50:ea:d4:9e:98:30:5f:ec:c9:ac:49:83:97:99:03:06:
b0:60:4d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org