Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C6E8AACFAF211EE8D4AC031017001B1.roa
File: 2C6E8AACFAF211EE8D4AC031017001B1.roa (raw, json)
Hash identifier: RyHnbRAK4fCym3Zs2SaNf+m9zPv6HAMSdj8ChLvqALg=
Subject key identifier: E5:5A:6A:81:9E:7B:23:CB:E6:94:EF:8F:34:70:62:BC:2C:0B:1F:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACDA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C6E8AACFAF211EE8D4AC031017001B1.roa
Signing time: Mon 15 Apr 2024 06:34:13 +0000
ROA not before: Mon 15 Apr 2024 06:34:10 +0000
ROA not after: Thu 30 May 2024 06:34:10 +0000
asID: 63139
IP address blocks: 154.94.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44250 (0xacda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:34:10 2024 GMT
Not After : May 30 06:34:10 2024 GMT
Subject: CN=661cca65-9f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:03:b7:a4:33:88:ad:a0:90:27:80:17:62:
37:fa:3c:63:57:e6:87:18:f9:56:5c:9c:e8:9b:6d:
c3:67:ad:9b:de:55:2e:ed:41:74:38:af:45:ae:ca:
af:21:7d:0b:36:da:99:02:a4:87:f0:28:94:a7:9e:
83:e4:d3:b4:5d:e2:32:5c:f6:e7:82:a2:2f:2d:d4:
bb:c1:14:41:3b:c5:cf:fc:d6:71:82:1f:db:de:71:
f3:1e:fd:49:ab:3c:ce:66:2b:fa:89:31:16:06:ef:
42:33:f1:91:69:c6:42:2b:5c:c5:f9:42:92:77:08:
16:eb:93:d5:e3:e0:b7:29:66:20:80:fa:6d:00:8e:
77:d4:d5:01:73:3d:e6:1b:ca:90:82:07:99:4a:45:
ac:37:64:c9:b5:fe:fe:32:0c:03:00:44:88:7a:48:
dc:51:da:79:84:1b:f6:8a:ac:fd:97:5b:21:99:67:
99:3a:f5:64:4e:cc:f4:e3:14:9e:a0:ca:be:36:62:
31:cb:75:52:a0:a7:45:eb:3c:e9:4d:93:e0:15:d8:
5a:a8:00:3e:a5:9a:3b:23:a1:fc:91:2f:f4:b3:e9:
fa:52:a0:bb:48:0d:1d:a0:85:1a:8a:d9:c3:a5:14:
e9:b1:55:08:88:d1:9b:b3:90:3e:05:16:c7:78:69:
5c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5A:6A:81:9E:7B:23:CB:E6:94:EF:8F:34:70:62:BC:2C:0B:1F:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C6E8AACFAF211EE8D4AC031017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.76.0/24
Signature Algorithm: sha256WithRSAEncryption
60:4c:dd:db:ab:cc:2c:55:9e:54:d8:56:d9:ba:f6:38:74:03:
e6:4d:0c:bd:dd:13:3a:c1:b8:8f:b1:07:d4:10:52:13:57:db:
e6:48:ff:57:ef:cc:44:cd:b0:3a:06:ab:8c:2e:10:ee:44:8a:
41:4f:e5:b5:08:2d:00:18:3b:0d:37:c4:09:00:f1:fd:de:01:
14:bc:42:83:61:c8:22:32:5f:4f:d8:19:ed:a6:7c:63:5c:69:
de:5b:76:97:09:20:d2:a4:d7:30:b3:33:c6:b8:f5:d4:13:9f:
3e:f7:f0:75:27:cf:62:47:06:3a:41:de:b0:1b:d7:29:53:a3:
dc:c5:43:3c:aa:2e:15:3d:be:79:de:da:b4:14:a2:e9:38:29:
c4:fd:2c:92:8d:e0:6f:57:33:7c:b0:3d:d9:ab:c4:63:ab:d4:
54:a6:82:31:06:54:20:b6:ab:db:f8:67:81:23:d9:bd:f4:4d:
48:4f:f1:82:3e:77:46:96:d5:65:9c:bd:95:da:be:96:e0:c3:
19:70:21:4c:17:f1:2b:87:7f:f2:f8:d0:c9:72:44:41:ea:9c:
82:b6:37:21:fb:56:21:5e:46:90:c5:49:b2:4c:e6:ab:17:47:
6f:1a:40:db:b8:40:94:94:0c:0e:b5:f6:e0:9f:ba:89:32:9b:
65:9c:a7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:05 2024 by rpki-client on console-ams.rpki-client.org