Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B99340E8FAE911EE9A9DB26C017001B1.roa
File: B99340E8FAE911EE9A9DB26C017001B1.roa (raw, json)
Hash identifier: nSZiJxjRbuFyfS+IO3fImEZ9gSf/TSUedOLXsziFvoU=
Subject key identifier: 6D:BA:59:E1:73:95:60:3E:9C:89:76:92:3E:60:83:E8:A2:E3:AD:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC98
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B99340E8FAE911EE9A9DB26C017001B1.roa
Signing time: Mon 15 Apr 2024 05:33:44 +0000
ROA not before: Mon 15 Apr 2024 05:33:41 +0000
ROA not after: Thu 30 May 2024 05:33:41 +0000
asID: 63139
IP address blocks: 154.94.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44184 (0xac98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:33:41 2024 GMT
Not After : May 30 05:33:41 2024 GMT
Subject: CN=661cbc38-3bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:7a:2c:6b:50:d4:5a:22:58:33:21:7d:ad:ac:
94:44:d8:e8:64:c0:38:33:cf:94:94:5c:bc:ef:76:
00:08:ee:04:3b:6c:f6:a7:35:29:28:84:50:94:2c:
75:8e:29:28:a1:c1:93:ae:f7:47:08:dc:35:c8:00:
2a:a8:98:18:0d:b1:a5:91:7b:3c:f7:fc:c3:58:e9:
d2:3c:5e:e8:08:d8:78:80:7b:52:a1:8f:44:f7:58:
06:eb:1b:28:69:26:a2:aa:d7:b6:21:35:67:e4:23:
be:9e:56:69:87:0a:19:13:c6:64:35:b1:c0:a7:2f:
3a:01:99:ed:d0:f6:34:e2:77:be:11:72:22:bc:39:
42:97:f9:b4:d3:97:90:c9:b6:4f:a5:9f:e0:a8:e3:
6d:c7:ac:1c:88:9c:fc:05:f7:26:a8:9a:8e:55:03:
38:9d:3e:95:92:5b:1f:a5:9f:38:ba:cb:31:fa:76:
5d:2e:87:17:1b:41:f4:45:e5:a3:13:4d:26:f7:f0:
ea:ab:c8:2f:f6:7f:38:3b:49:52:d1:8f:6f:8c:be:
22:f6:c0:76:ab:d0:1e:6f:72:c3:2d:9f:26:50:52:
b4:7d:06:6e:b6:a8:cd:9b:41:8a:9b:53:c7:e7:ef:
ee:c4:5a:91:1c:7f:d2:41:36:4a:3a:80:99:cb:70:
b7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BA:59:E1:73:95:60:3E:9C:89:76:92:3E:60:83:E8:A2:E3:AD:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B99340E8FAE911EE9A9DB26C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:30:d6:9c:89:72:95:04:26:19:71:91:7a:28:d9:c2:5e:a1:
e8:36:a2:df:c0:4b:63:a7:cf:d9:d5:58:38:06:78:9c:21:bf:
35:71:9b:ec:50:64:ab:11:a9:b5:1f:58:ed:0e:f0:99:62:3f:
ff:65:29:b3:27:57:13:07:c6:f6:32:cd:1f:93:de:ac:12:52:
13:dd:0f:40:65:94:d2:57:f4:d7:03:95:9e:6e:31:d3:5d:d6:
dc:e3:96:16:bf:7f:65:5c:22:26:21:d6:4d:39:84:66:1c:be:
32:5a:b5:28:24:21:b6:68:88:54:08:e3:55:3f:fa:14:fe:51:
78:d7:40:e8:75:9c:72:7d:eb:7b:02:31:b5:ed:98:2b:12:91:
36:8f:b1:de:11:26:4d:be:2c:2b:2b:a1:13:17:62:b9:02:cf:
94:9b:d3:0a:7e:c6:f9:27:f9:af:d1:55:b7:df:5f:36:13:69:
9e:8f:b9:d3:97:8d:3a:22:33:d4:19:4c:cb:fe:7f:22:41:88:
7b:3f:d7:20:d9:8e:f0:ae:72:4e:9c:c2:93:68:a6:9c:39:44:
9d:3a:db:3c:f2:b7:54:2c:35:91:32:6b:73:eb:0c:74:9d:b5:
12:ff:c2:5e:0b:1d:d7:fb:9a:42:bd:20:b8:14:ed:ea:1f:5d:
43:52:77:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org