Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85D06F82014D11EF97EDEF03017001B1.roa
File: 85D06F82014D11EF97EDEF03017001B1.roa (raw, json)
Hash identifier: qX3izzMHr/NaHvo6ZvyXdmo2jCKBt2yNQh1xzRHvKxA=
Subject key identifier: E2:63:68:64:BB:2F:D1:6D:00:48:EB:10:33:ED:2F:0C:B3:89:C5:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85D06F82014D11EF97EDEF03017001B1.roa
Signing time: Tue 23 Apr 2024 08:43:14 +0000
ROA not before: Tue 23 Apr 2024 08:43:11 +0000
ROA not after: Sat 11 May 2024 08:43:11 +0000
asID: 9009
IP address blocks: 154.92.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44848 (0xaf30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:43:11 2024 GMT
Not After : May 11 08:43:11 2024 GMT
Subject: CN=662774a2-c81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e0:8f:e8:84:2f:b3:e5:53:e8:04:8c:72:9d:
d7:d0:57:0d:d7:b0:27:34:ef:52:ae:c2:1f:67:3c:
ef:62:61:54:13:3b:27:3f:92:d4:94:22:88:95:8e:
b7:b0:e1:6d:32:06:e7:32:ff:1d:60:04:f6:d8:fc:
af:61:b5:f6:25:78:a2:28:f6:e1:ff:8a:45:21:66:
55:e3:fd:48:21:50:9e:a0:16:61:b3:60:57:1a:d0:
be:7a:db:7c:97:dd:f5:79:7f:d4:d4:df:34:6a:88:
6c:b1:50:16:c1:6f:f4:9b:b5:6a:80:e4:0d:61:d1:
da:f1:99:88:f7:89:73:44:a4:cb:96:b4:70:a7:64:
44:5e:50:66:b4:c2:38:b6:ab:4b:9f:d7:8f:63:06:
fc:63:40:4d:ea:64:a2:a2:6b:0e:70:79:30:9f:11:
f6:83:d3:e2:5e:14:a4:74:61:62:7b:46:7f:fd:af:
2e:59:41:29:c3:d2:07:bf:28:19:fe:9d:65:05:d1:
6a:3b:2d:9b:19:2f:2d:51:7e:c6:72:c7:19:19:84:
03:17:11:82:99:b4:03:7d:9f:ea:d6:63:77:8a:5c:
1b:1c:e5:7a:ff:72:dc:03:f3:f9:73:68:fb:79:a9:
f9:10:80:fa:6a:2c:63:c1:dc:db:fe:a6:a2:ff:c8:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:63:68:64:BB:2F:D1:6D:00:48:EB:10:33:ED:2F:0C:B3:89:C5:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85D06F82014D11EF97EDEF03017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.127.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:77:b0:73:76:96:6a:8a:07:b0:8e:27:52:fa:b8:f4:51:07:
6a:b8:ae:90:31:10:ad:f9:ad:23:fb:64:5e:1a:8b:37:59:cf:
d8:ad:97:42:25:c0:2f:48:0f:f9:e0:59:dd:8b:7c:73:69:f6:
c4:12:b4:31:5d:5d:8c:30:da:a1:2a:1b:d6:c2:30:b8:da:e8:
52:e0:c8:bf:ca:d8:a2:4b:56:66:35:3c:d2:08:ce:a8:6e:a6:
0e:2a:e5:d8:a8:86:b5:6f:2a:cd:3c:40:10:d6:91:ae:11:b5:
af:ea:6c:3f:b3:e7:c9:57:1d:24:f6:5d:c6:74:bf:44:59:2a:
44:35:81:30:72:11:94:a0:e8:a3:73:da:65:ef:5a:b0:8a:25:
c6:1b:9a:fc:8a:10:bd:3c:2f:bd:f4:bb:b2:4d:b3:fa:b5:7f:
ac:bd:6f:19:98:63:27:fd:fe:af:e6:a5:b6:f2:0a:8c:3b:07:
91:f7:31:72:e4:5f:15:26:79:76:12:b3:d0:4e:d0:12:82:46:
55:3f:ec:82:aa:a8:1f:cd:a0:8d:c4:51:9b:3d:be:a7:c3:6d:
91:ce:20:c3:d5:23:4e:50:c0:0f:10:23:e2:4d:47:6d:ab:53:
b5:99:93:e9:98:e5:16:95:b9:d6:d1:d1:4d:61:81:65:04:2a:
23:a5:b9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:07:50 2024 by rpki-client on console-fra.rpki-client.org