Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C3C8B6FAF511EEA7379548017001B1.roa
File: 31C3C8B6FAF511EEA7379548017001B1.roa (raw, json)
Hash identifier: JATH9QI5WLpLalmK7YQ/Xzl1iN9yDhCrenaW7joSoSE=
Subject key identifier: 76:25:44:25:D2:C0:66:DE:9D:43:CD:47:A7:CF:4B:30:AC:21:5A:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACE4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C3C8B6FAF511EEA7379548017001B1.roa
Signing time: Mon 15 Apr 2024 06:55:50 +0000
ROA not before: Mon 15 Apr 2024 06:55:47 +0000
ROA not after: Thu 30 May 2024 06:55:47 +0000
asID: 63139
IP address blocks: 154.94.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44260 (0xace4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:55:47 2024 GMT
Not After : May 30 06:55:47 2024 GMT
Subject: CN=661ccf76-2a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d8:cb:10:9a:79:c5:b8:a2:36:6a:e4:c1:3e:
83:d2:d9:1d:9b:cc:c7:2e:cf:98:39:56:03:d4:8b:
f4:92:12:e2:62:ac:28:22:fe:9b:e0:a2:0e:e7:90:
26:96:34:0f:03:61:3e:f8:f5:33:aa:1f:55:15:6b:
47:ee:ea:3d:c9:f1:6c:bf:d9:51:9f:ce:8f:34:ad:
82:29:5e:e3:5a:77:3f:c7:3e:3d:cd:bd:05:ff:31:
9e:21:b7:e9:a0:66:0a:73:9a:bb:e1:d8:44:e6:7f:
77:cb:f4:dd:31:a2:5b:11:74:e1:33:a9:51:d2:1c:
f7:ce:1f:06:0a:f4:b1:da:35:99:77:99:95:c6:0e:
24:2d:80:59:f2:06:c9:ce:11:07:32:32:9f:29:26:
39:bc:46:ab:c8:fe:66:4e:dc:02:f1:cc:91:94:59:
33:f4:b0:4d:9f:e4:8d:31:6e:0a:7d:5f:f2:13:f2:
76:10:01:9a:71:5b:7e:42:98:92:cb:26:d9:fe:ab:
77:b7:56:01:6c:09:d0:e7:a1:3b:d5:81:71:fb:4d:
2a:d3:45:96:52:79:46:80:83:d2:4f:d6:1d:61:fe:
85:90:e5:a1:62:7e:90:e6:06:4d:8e:29:78:37:74:
0c:f1:d5:08:bd:15:48:24:e6:3f:c7:9a:8c:ed:97:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:25:44:25:D2:C0:66:DE:9D:43:CD:47:A7:CF:4B:30:AC:21:5A:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C3C8B6FAF511EEA7379548017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.71.0/24
Signature Algorithm: sha256WithRSAEncryption
93:3c:28:b4:6d:03:71:65:da:84:a0:79:6e:c3:18:62:0b:2d:
74:60:f4:1e:32:9a:65:d8:ef:0e:2e:2a:d4:c5:f7:6f:9e:1d:
1f:61:f7:8f:b0:87:73:ec:97:3c:e3:9d:0b:1e:b4:80:12:c6:
e9:9c:2e:f6:52:ba:3e:fb:1b:10:f8:82:e7:4d:b7:d2:f7:89:
ba:8e:6b:72:17:88:28:f9:9b:84:5f:a8:44:a4:a2:2b:f0:5f:
bd:d1:e2:63:1b:fc:89:5f:52:92:62:69:15:b1:2b:85:42:d8:
ff:00:f6:cb:9c:1c:d9:81:bf:7f:df:5b:ea:2c:2f:29:f1:ad:
9c:d3:19:29:e4:42:84:88:c6:f9:2c:a5:7d:37:1d:b4:57:67:
3c:ca:be:6c:b5:c0:b4:31:2e:fd:c1:20:10:57:4f:a8:b3:28:
5c:c1:f6:73:7a:fe:40:d6:93:32:b8:72:b7:1a:41:c6:d3:9c:
29:8e:23:e1:8d:65:3f:f0:d7:94:6a:06:f1:7a:dd:fa:59:c9:
e4:e4:89:56:8d:38:ad:2d:1a:2d:4b:71:85:b3:aa:ec:52:e9:
32:97:45:ec:7b:d8:87:56:0e:66:63:b2:24:ae:85:98:9c:da:
a6:6c:00:c7:7e:62:96:be:72:40:f1:f9:e6:b1:3f:6f:c3:0d:
02:4f:3f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org