Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96711DACFBAB11EE9752231D017001B1.roa
File: 96711DACFBAB11EE9752231D017001B1.roa (raw, json)
Hash identifier: 9BhZEzPWXEYyDVhnKnJBIxNHP53nr4cVupmzT09TXOY=
Subject key identifier: B1:A5:5F:A8:E8:2B:B6:A2:64:9B:EE:74:F2:57:3F:21:D8:42:1F:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADB5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96711DACFBAB11EE9752231D017001B1.roa
Signing time: Tue 16 Apr 2024 04:41:28 +0000
ROA not before: Tue 16 Apr 2024 04:41:24 +0000
ROA not after: Thu 30 May 2024 04:41:24 +0000
asID: 63139
IP address blocks: 154.94.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44469 (0xadb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:41:24 2024 GMT
Not After : May 30 04:41:24 2024 GMT
Subject: CN=661e0178-d007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4d:cb:28:36:27:3e:58:85:7b:80:11:71:c5:
1e:4e:b5:65:64:e3:91:36:12:81:0d:93:3a:b9:51:
10:e4:9b:02:37:e8:c5:4c:2f:6d:54:53:f4:56:cc:
6f:5d:30:8e:19:18:46:da:c5:69:30:b9:26:d9:b3:
7d:20:2e:c3:06:af:1f:20:7b:9a:1f:50:2a:a3:83:
cf:b0:26:a8:db:29:1d:a6:2a:ad:15:16:ef:a9:82:
0e:eb:24:26:35:40:4e:01:8c:05:5a:32:c1:65:1c:
87:2a:f0:5b:a8:a9:ae:bf:94:10:5a:96:f3:37:d8:
b1:4b:11:05:10:16:4b:bf:46:a3:10:81:20:d2:cd:
f8:85:79:0d:c6:3e:1a:ef:f5:a9:29:e7:94:45:ce:
ac:da:0c:a2:d8:7a:5d:b3:c3:da:5d:e2:21:9e:d1:
84:a0:ca:66:b3:d8:0f:27:b7:02:6b:b8:4f:84:ca:
7d:b8:9e:e0:99:c1:b4:24:bb:ad:71:ac:5a:b9:30:
56:88:2f:80:08:5a:06:a5:5e:f5:3f:01:e1:9c:b8:
f3:4a:76:3b:be:12:88:68:d3:c7:41:d1:6f:61:42:
c9:a7:d5:15:d4:b4:c1:b9:fd:d2:ba:8f:92:6a:b1:
a9:ff:f2:be:30:14:34:d2:66:c3:ac:a6:18:4e:c5:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A5:5F:A8:E8:2B:B6:A2:64:9B:EE:74:F2:57:3F:21:D8:42:1F:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96711DACFBAB11EE9752231D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.109.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:b4:58:f1:2a:0a:97:e9:fb:87:0d:24:e9:5e:50:a3:78:cd:
76:f0:8f:5a:fc:2b:9b:c4:e6:4e:62:61:d1:03:69:19:84:41:
fc:bb:c7:c0:9b:cb:dd:5d:00:7c:e5:92:33:eb:d5:3f:11:12:
d7:2f:a5:56:3f:be:55:91:61:38:a6:26:30:3b:18:e8:6f:aa:
6b:6a:1c:e4:c4:5b:ba:44:d6:6e:7e:a1:65:26:a4:0e:96:35:
09:b9:a4:d5:f3:87:ba:97:f2:e7:13:7e:b6:bb:ee:92:a2:cd:
a9:54:95:e8:4e:ae:91:3f:fc:84:aa:56:58:07:63:a2:18:6e:
7c:17:39:16:7b:55:9d:83:1d:79:39:6c:92:d8:02:ec:b3:d9:
b5:2e:9e:ab:08:b0:d4:6d:bc:87:61:ff:5f:af:2c:42:80:7c:
25:c4:2a:e1:5e:d4:3a:de:37:ea:7b:d3:a8:b9:c7:57:82:0f:
ed:63:92:ba:e0:33:ac:d7:05:56:f3:50:a5:02:41:9e:05:a2:
24:c0:d4:e4:4c:27:f0:79:ef:7f:9c:3b:04:22:76:3b:4d:af:
85:77:70:6f:ec:0f:ec:07:7c:14:58:f5:ff:11:1b:d2:21:9d:
b3:40:64:fb:f7:12:1c:f2:82:a5:55:e7:3d:e0:38:1b:a2:58:
b2:b6:71:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org