Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70AE7D6AFAEF11EE9D8F961B017001B1.roa
File: 70AE7D6AFAEF11EE9D8F961B017001B1.roa (raw, json)
Hash identifier: SefIJEAVXEZ42YKJQE0p2X6xpihG2qt8FGN1CZgqiAM=
Subject key identifier: 20:A5:59:A3:91:25:A9:4B:92:7B:60:CF:33:EE:95:F1:54:E6:2B:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACB8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70AE7D6AFAEF11EE9D8F961B017001B1.roa
Signing time: Mon 15 Apr 2024 06:14:39 +0000
ROA not before: Mon 15 Apr 2024 06:14:35 +0000
ROA not after: Thu 30 May 2024 06:14:35 +0000
asID: 63139
IP address blocks: 154.94.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44216 (0xacb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:14:35 2024 GMT
Not After : May 30 06:14:35 2024 GMT
Subject: CN=661cc5cf-cede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:a5:4e:f3:df:b4:40:45:f0:9d:ae:89:d0:
89:02:2e:04:e8:32:08:98:87:c6:43:bd:b6:71:f5:
0d:6a:05:33:6c:35:6e:d2:64:0e:4a:32:ea:31:cf:
24:3b:82:9f:a0:10:b8:eb:2a:a0:da:4a:37:3f:06:
50:0c:d0:49:96:0f:b5:12:f1:a6:67:95:fb:0f:3a:
15:89:55:b2:d9:0c:3b:11:cd:17:2d:f5:b4:aa:ee:
96:69:03:04:64:76:ef:d7:ef:24:9d:b9:0a:82:52:
f3:4f:cf:69:b0:cf:7a:7b:da:95:67:1d:e1:17:3b:
d5:bc:17:6e:45:45:af:82:62:f8:b7:c5:da:51:cd:
2e:d1:8a:6f:f1:b8:46:98:9a:e0:d9:1f:f2:94:d8:
47:3d:4e:97:93:70:c2:cd:19:d4:be:43:b2:72:a3:
3e:02:a2:68:b0:e9:f1:79:70:67:d2:dd:cb:b0:50:
d7:49:05:96:a9:74:e2:40:fc:11:74:e0:21:07:5b:
e3:42:3d:dc:b4:e0:c5:55:3a:88:82:6d:ca:d8:e0:
b1:84:18:a7:e4:5c:48:31:eb:04:51:91:3a:82:7b:
e8:8f:2e:6d:f1:71:0c:94:a4:3d:5e:a4:2a:53:97:
2c:95:b5:35:52:e6:b1:9e:4e:5f:e2:aa:46:3e:de:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A5:59:A3:91:25:A9:4B:92:7B:60:CF:33:EE:95:F1:54:E6:2B:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70AE7D6AFAEF11EE9D8F961B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.115.0/24
Signature Algorithm: sha256WithRSAEncryption
18:d4:be:1b:f8:a1:22:61:52:e8:7e:c2:2d:ae:ef:d0:cc:c9:
77:53:e9:5b:fe:11:ff:fd:12:b3:92:e6:68:3a:bf:af:ba:60:
01:ce:b7:4b:ab:a8:8c:d6:15:af:51:d5:db:8f:99:ac:b5:ed:
f1:10:67:9a:ee:35:f5:95:49:10:c8:6b:49:ee:f0:a7:a8:b7:
0d:0e:09:52:04:85:c2:4d:2e:35:91:00:9c:c0:00:63:d3:ba:
3b:1a:87:32:2f:76:07:3f:0d:73:a7:48:36:a1:f9:4f:ce:3c:
25:5c:c1:a1:49:25:2c:57:eb:9f:b7:3b:c5:1f:68:1d:5d:d8:
6b:7b:04:30:6c:3d:ab:f2:b5:1e:21:5c:01:11:31:0f:54:68:
ca:73:c3:a7:01:1a:44:10:aa:c0:78:61:8e:0d:57:90:62:6d:
e0:3b:14:2d:62:c8:7e:86:3e:fb:e0:f8:ba:4c:64:94:1f:c7:
d0:42:60:17:53:b5:04:13:a8:38:c6:43:6c:68:f6:c0:55:2b:
a0:44:11:13:c3:2f:d1:82:e3:fc:8f:9b:e1:d0:c0:9b:3b:58:
4a:e6:94:d3:c2:6a:82:a7:40:61:cd:24:7b:f9:56:c9:98:15:
b8:d5:23:b4:9a:9c:5c:55:80:e6:31:c0:fe:b8:c3:a5:61:24:
6f:19:f7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org