Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37BE13A6FAF111EEB85E0128017001B1.roa
File: 37BE13A6FAF111EEB85E0128017001B1.roa (raw, json)
Hash identifier: WPjLp4osuZpgelDFunud9cSqEsW7UVj+vIBA0tjF4AA=
Subject key identifier: F6:11:0E:2F:2E:C7:32:D5:CC:99:5D:6C:3F:BF:D1:78:D9:6C:A6:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACCE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37BE13A6FAF111EEB85E0128017001B1.roa
Signing time: Mon 15 Apr 2024 06:27:22 +0000
ROA not before: Mon 15 Apr 2024 06:27:19 +0000
ROA not after: Thu 30 May 2024 06:27:19 +0000
asID: 63139
IP address blocks: 154.94.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44238 (0xacce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:27:19 2024 GMT
Not After : May 30 06:27:19 2024 GMT
Subject: CN=661cc8ca-7203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:54:a3:a7:5e:10:9a:14:eb:6b:f6:25:69:c9:
99:7d:e6:f1:9f:e3:34:08:ef:61:3b:d6:c2:c5:c1:
40:52:03:77:87:5a:a8:c2:8a:28:00:86:52:35:71:
89:44:ac:07:1d:da:ba:5b:4a:9d:e6:ca:f0:0d:84:
77:ac:1e:b2:99:6f:44:51:74:84:32:74:c4:40:9f:
2d:1f:57:eb:06:8d:2b:8c:a7:84:2a:fc:e6:c6:71:
3b:7b:72:da:db:d7:81:95:5b:61:61:06:3a:cc:e3:
5b:a1:81:81:90:f7:3b:86:40:18:47:68:01:f1:92:
c6:15:4a:2f:1a:6b:52:4f:d1:db:8d:01:54:64:c2:
e4:bb:46:6c:af:dd:15:88:41:e3:51:1a:eb:e0:a5:
34:60:9d:0e:2c:88:f4:26:36:98:79:d4:44:05:50:
77:2a:f4:4c:be:ce:df:cd:9a:20:e7:ba:16:27:19:
9e:60:09:7d:aa:fa:0d:c3:77:3d:d2:14:88:ae:26:
49:8b:df:99:7e:d0:c2:11:ae:01:b0:9d:57:f1:ee:
bc:e4:28:51:48:65:dd:f1:b6:38:04:28:c6:0a:c8:
55:98:a2:9b:55:c9:fd:fa:4d:ea:0b:e8:ab:d1:99:
07:63:af:fd:7b:c4:a5:cc:f8:35:7b:1e:ef:49:05:
02:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:11:0E:2F:2E:C7:32:D5:CC:99:5D:6C:3F:BF:D1:78:D9:6C:A6:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37BE13A6FAF111EEB85E0128017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.85.0/24
Signature Algorithm: sha256WithRSAEncryption
54:e8:f5:ee:1c:86:8d:ed:71:1b:8a:f1:87:45:ec:6d:e5:35:
57:14:02:9d:a1:2a:17:e2:64:45:19:a9:03:f5:97:21:44:67:
50:d1:fe:c5:b1:f2:fd:b8:c7:be:66:71:36:bf:98:62:4d:81:
15:23:d6:43:e0:57:51:56:2c:d2:15:61:69:e9:ed:65:95:df:
6b:29:ed:9a:6a:4d:fa:b5:43:ab:fa:6e:21:04:95:c5:61:2d:
38:ee:44:61:59:87:4d:04:c4:6c:cf:0a:df:91:f4:af:fa:9a:
0e:5e:10:d2:8e:67:bc:1f:c9:6d:8a:1a:ec:62:04:29:b7:26:
89:30:51:b2:a0:e4:ec:43:2b:94:a6:19:10:91:a1:b0:9b:9e:
ee:34:08:ca:3c:81:d7:db:e6:22:c2:1a:43:29:18:5e:17:ea:
04:4a:2f:4c:fe:36:1b:20:b8:9d:a1:e1:76:cc:2a:27:26:fd:
04:5d:4c:30:1c:f5:8f:fb:3e:82:bd:57:53:eb:09:61:35:e2:
ea:e6:82:96:0b:f3:b4:b8:7c:15:ad:93:94:d0:34:38:47:b2:
6c:a8:4f:2d:47:43:2b:b2:c9:3a:00:a3:49:d9:0f:1f:ed:fd:
e8:33:5d:fd:d0:03:e5:31:15:d2:9a:2a:68:2b:7a:b3:6a:4a:
51:b2:f4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org