Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27491E3AFD3A11EE9BD2434D017001B1.roa
File: 27491E3AFD3A11EE9BD2434D017001B1.roa (raw, json)
Hash identifier: 4R3oQmb7BKlL4ZebTU0u0Ap9mGRfBH3UpOjwhTa8Rr8=
Subject key identifier: A0:7B:49:A7:E1:14:F7:27:D8:62:3A:D4:86:88:D9:AE:82:66:EA:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE13
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27491E3AFD3A11EE9BD2434D017001B1.roa
Signing time: Thu 18 Apr 2024 04:14:31 +0000
ROA not before: Thu 18 Apr 2024 04:14:27 +0000
ROA not after: Fri 26 Apr 2024 04:14:27 +0000
asID: 39600
IP address blocks: 154.94.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 04:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44563 (0xae13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 04:14:27 2024 GMT
Not After : Apr 26 04:14:27 2024 GMT
Subject: CN=66209e27-1b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e3:8d:41:58:4b:b5:af:bd:03:73:0f:9e:08:
21:0a:14:9c:6d:97:b1:cb:0d:ac:29:32:76:24:11:
b4:bb:6f:82:f8:3b:58:ce:cd:04:ba:16:59:0b:17:
bc:f8:ab:63:1a:8a:56:c6:bd:62:e6:0c:06:c2:41:
2f:63:64:3a:76:0a:c1:87:eb:12:c9:a2:01:20:cc:
85:d8:90:15:0c:ff:a7:04:8a:50:79:05:49:eb:a7:
b9:15:81:59:c9:80:2c:4c:b5:59:f1:de:43:fe:14:
01:c7:81:b8:40:68:08:91:2f:9b:e0:50:1c:59:88:
8c:1d:b5:55:a6:06:9b:c5:01:8c:ea:46:6c:4e:39:
57:f9:bc:b0:8e:98:30:b8:83:f7:00:db:80:41:65:
54:f3:fb:c2:ee:68:fd:35:96:86:75:57:76:8e:7d:
4a:f2:5e:7c:cd:95:08:8c:8a:b8:c7:a9:fe:f2:ee:
ed:0a:05:30:1f:28:d1:c2:53:d2:09:94:1c:db:d8:
ed:67:10:cb:94:e7:a6:55:0f:65:8e:02:7b:c2:b7:
ad:82:92:5a:4f:86:e4:57:40:50:83:3d:df:13:d8:
bd:bb:da:7b:4f:b4:0e:d7:e7:dc:40:bf:ec:c7:24:
30:b6:3d:b0:83:30:e6:e1:29:59:c5:f5:ee:9b:db:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7B:49:A7:E1:14:F7:27:D8:62:3A:D4:86:88:D9:AE:82:66:EA:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27491E3AFD3A11EE9BD2434D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.24.0/21
Signature Algorithm: sha256WithRSAEncryption
c5:a9:21:7d:47:63:dc:bf:3e:1b:02:ed:a1:c9:e3:43:23:67:
75:fa:7f:cf:69:64:0b:9b:a6:cb:0a:0c:fe:b4:17:48:bb:02:
24:10:d6:3f:44:11:63:31:89:18:d4:67:90:c5:f9:77:ed:19:
69:9d:af:8b:55:9d:2c:2a:88:ce:68:83:fb:b9:64:b3:5e:d9:
a6:47:24:7b:34:c9:61:75:64:b1:43:d9:05:8e:2b:9e:65:03:
10:2b:79:a5:ca:1c:96:be:12:81:f6:95:fb:7f:ae:ff:2c:e0:
4d:78:95:a6:77:d3:7a:b0:dc:a2:f1:2c:b1:60:e7:7c:b6:5d:
4f:08:58:9b:12:08:ac:e0:eb:92:67:5e:0f:a6:6d:a7:45:cd:
30:bb:ac:49:18:bb:ac:1b:33:8c:20:37:98:65:af:a7:40:93:
51:85:96:47:27:7c:6d:2e:e0:b8:31:7d:7b:a9:22:b7:12:11:
05:06:d0:2d:2c:19:a9:30:bb:d7:f8:0f:26:8b:49:6f:35:0a:
83:39:6d:f6:e4:ac:82:a2:52:e7:20:0c:99:40:80:1b:9e:53:
cf:fe:7e:87:9a:60:8b:5f:46:6c:cf:55:e5:a7:e2:9d:90:18:
03:57:80:f5:2c:08:29:7d:20:60:ae:ee:de:4b:4f:92:00:e4:
29:be:c1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:27 2024 by rpki-client on console-fra.rpki-client.org