Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2EC70A4FBAA11EE96A3E016017001B1.roa
File: B2EC70A4FBAA11EE96A3E016017001B1.roa (raw, json)
Hash identifier: QSmLOipFdhOTlibtu598LQh/Xg9EBPbsJBU7pPVOav0=
Subject key identifier: 99:24:17:16:4E:8F:C2:90:D4:1A:5F:15:84:6B:BD:7F:00:61:20:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADAB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2EC70A4FBAA11EE96A3E016017001B1.roa
Signing time: Tue 16 Apr 2024 04:35:06 +0000
ROA not before: Tue 16 Apr 2024 04:35:02 +0000
ROA not after: Thu 30 May 2024 04:35:02 +0000
asID: 63139
IP address blocks: 154.94.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44459 (0xadab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:35:02 2024 GMT
Not After : May 30 04:35:02 2024 GMT
Subject: CN=661dfffa-01fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1e:6f:6d:03:e1:56:8b:17:0a:4c:6f:2b:51:
d0:e2:b1:b2:f9:ee:fa:e6:bc:35:86:e3:98:e1:ba:
17:c3:df:4b:0f:f5:24:27:38:5b:07:86:93:e9:54:
25:c8:91:03:29:b7:7f:10:2a:c0:dd:12:9b:b5:44:
2d:c3:92:b8:f1:b5:44:37:59:c5:af:e5:63:73:93:
2a:44:64:63:d8:00:86:cf:0b:f3:61:a9:b9:4f:ba:
f5:df:de:80:30:38:06:b7:e4:54:f4:e7:02:b3:00:
55:d0:e2:04:b7:a1:4b:c1:a6:4f:fc:90:a7:73:4c:
2f:7c:52:53:48:7c:01:5f:9f:f6:6c:65:d7:f5:54:
8f:ce:df:86:a2:52:34:91:87:60:f0:9f:38:1e:b4:
f8:28:42:f5:5d:89:33:84:4d:dc:07:31:00:f6:72:
06:f3:e6:d3:e6:17:37:dc:4a:e0:b5:82:19:30:d6:
89:e0:c6:b1:f4:64:70:e5:ea:0b:27:18:3c:21:6b:
ad:5e:89:9b:cd:ef:5e:67:85:d5:95:c1:1f:70:c0:
bd:8a:4d:19:cf:39:63:51:0f:c8:19:b7:ac:2a:1f:
fc:dd:81:10:43:c9:d7:a0:52:c2:03:b7:c6:65:34:
53:05:48:2e:d1:0c:eb:c8:d8:1d:2e:d6:20:db:c2:
93:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:24:17:16:4E:8F:C2:90:D4:1A:5F:15:84:6B:BD:7F:00:61:20:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2EC70A4FBAA11EE96A3E016017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.65.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c9:33:f5:ad:c6:dc:26:04:7e:dd:bb:a2:da:6e:b6:2b:0d:
60:51:a5:44:84:1b:d6:aa:2c:db:13:f5:ec:8c:c2:65:0d:10:
3a:5b:37:6c:c2:fe:62:5d:e3:4c:21:7c:6a:f1:f8:13:ba:af:
a9:23:bc:64:31:80:a5:79:ef:2b:0f:22:d5:30:e6:dc:3b:08:
12:8c:f1:1c:ab:ed:74:6e:1f:de:ea:cd:a9:d7:07:f6:ea:e9:
16:1e:2b:10:88:98:67:5c:f1:07:ef:c9:47:95:76:b8:02:eb:
98:66:5f:96:4f:44:4e:f9:01:2c:7b:e3:61:68:13:a5:90:15:
a1:95:c9:5a:22:5a:26:b6:e7:f0:5b:30:2f:8b:a0:ee:7a:78:
c7:da:d3:6f:18:bd:e8:4d:a0:3b:f1:40:36:fe:9a:9a:9f:e1:
62:d6:ad:d3:73:1e:cd:f9:b6:c0:a3:54:2f:bc:1b:e3:94:49:
5e:b1:61:de:96:4e:dc:05:72:34:c9:df:bf:c1:01:5f:09:ad:
18:a9:31:29:b2:86:1f:12:25:73:63:9d:24:5f:99:c4:d9:ae:
39:e9:85:39:45:5c:e2:7c:b3:7f:a2:b1:d5:94:5a:4c:6e:b4:
ce:f9:9e:26:73:ab:fd:01:3a:17:0a:1b:2e:64:8c:63:da:3f:
31:a0:18:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org