Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/294C91BCE78211EEAA7DF095775412E6.roa
File: 294C91BCE78211EEAA7DF095775412E6.roa (raw, json)
Hash identifier: Yd5r/YS4EKPaEXDaLXP48rPyvNL+0sGzVxp+Z47KMPU=
Subject key identifier: 8A:F2:22:AF:DE:5C:09:B4:18:A8:16:BC:46:69:33:D2:E6:BA:C6:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A57D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/294C91BCE78211EEAA7DF095775412E6.roa
Signing time: Thu 21 Mar 2024 12:54:32 +0000
ROA not before: Thu 21 Mar 2024 12:54:29 +0000
ROA not after: Tue 23 Apr 2024 12:54:29 +0000
asID: 44559
IP address blocks: 154.210.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42365 (0xa57d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:54:29 2024 GMT
Not After : Apr 23 12:54:29 2024 GMT
Subject: CN=65fc2e08-ed86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7b:b8:52:c3:02:96:2f:0c:6f:52:3e:a4:ae:
8f:8a:3b:2b:64:27:25:80:2d:e1:81:54:6c:7c:32:
13:06:31:32:c6:e8:e8:94:c1:89:ce:07:55:be:1f:
2e:a8:db:0c:e5:d3:7f:71:3c:35:3a:59:51:46:59:
ba:1b:6d:5d:4f:4e:6f:5a:c9:6d:e7:80:49:ce:d8:
c3:eb:46:5e:6e:ef:00:35:6f:f7:2c:29:8c:ea:46:
ec:69:b9:30:13:63:23:ec:75:77:fe:11:0f:4a:c1:
0b:a8:0b:42:2c:e2:65:fb:18:1c:22:96:fd:9b:31:
a8:87:7b:55:25:56:a2:bc:c9:cf:c2:db:fa:08:86:
3d:89:1f:5c:9e:1e:aa:c1:b6:e5:b9:00:bb:6e:47:
c1:46:56:d8:07:d6:b1:e2:f7:b8:72:dd:c8:bf:29:
56:a6:de:3f:e0:9a:3f:01:36:b1:86:ec:41:ac:1c:
3a:1b:cf:66:90:b3:b5:5b:65:b5:4d:a4:19:61:26:
31:ff:b5:cb:7a:7d:15:a2:b8:84:0f:79:f7:53:fc:
17:60:ac:c1:8a:03:96:4a:b4:af:e7:92:9d:ac:d8:
e3:bd:c4:ec:03:db:1b:b5:60:99:14:97:68:57:b4:
29:66:03:47:c0:6d:87:9b:74:06:3c:d5:79:97:44:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F2:22:AF:DE:5C:09:B4:18:A8:16:BC:46:69:33:D2:E6:BA:C6:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/294C91BCE78211EEAA7DF095775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.94.0/24
Signature Algorithm: sha256WithRSAEncryption
06:7f:08:03:75:19:62:84:a1:28:30:60:0f:6f:89:8b:d4:af:
de:1d:8f:06:e0:78:3a:cd:7f:fb:31:06:e6:0e:be:1a:55:af:
1c:d2:ea:51:b8:e9:e2:33:d0:10:c5:2e:a8:6f:a0:f9:d4:e3:
db:24:9b:fe:18:60:ea:07:c7:49:6a:15:df:21:a7:9a:66:50:
d0:d8:77:a7:57:66:4e:06:92:51:72:3c:e4:e6:01:c9:8d:e1:
64:d8:e8:d6:f2:07:87:b7:64:f8:cb:b5:ec:2c:bd:5a:ef:77:
28:ad:23:0c:49:09:b5:e7:c5:aa:0a:e8:30:fd:28:f2:e4:54:
c0:f8:ee:33:39:95:80:7d:16:31:94:c7:b5:21:bf:7c:7e:02:
ae:1c:19:a7:72:f7:8e:23:79:22:5d:df:79:ef:1b:68:a5:cb:
10:30:91:a6:5a:dd:f5:47:a9:60:8e:47:7a:36:a2:da:28:7e:
d3:c5:6a:f9:d6:14:5c:a9:18:0f:a8:d7:7d:b9:12:7a:a7:1e:
80:0d:f0:84:5f:7b:a0:f4:f2:40:6b:fd:00:92:f0:91:99:73:
67:f2:57:fe:92:3e:5c:76:7b:d0:e5:af:0c:92:5b:b0:9d:a3:
92:c0:1a:bb:f8:37:e8:af:2b:d1:8a:d4:e1:f5:c9:d4:61:28:
78:b9:75:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:15 2024 by rpki-client on console-ams.rpki-client.org