Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C417F320FBAB11EEBE810821017001B1.roa
File: C417F320FBAB11EEBE810821017001B1.roa (raw, json)
Hash identifier: /kAR6eUInxpLdEO1JAIqbwvE8t1mz1pK85gwB9f2z74=
Subject key identifier: 2C:1D:44:0E:19:81:06:CD:C1:BB:1B:FD:88:D0:0E:BF:26:26:6F:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADB7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C417F320FBAB11EEBE810821017001B1.roa
Signing time: Tue 16 Apr 2024 04:42:44 +0000
ROA not before: Tue 16 Apr 2024 04:42:41 +0000
ROA not after: Thu 30 May 2024 04:42:41 +0000
asID: 63139
IP address blocks: 154.94.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44471 (0xadb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:42:41 2024 GMT
Not After : May 30 04:42:41 2024 GMT
Subject: CN=661e01c4-654d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:42:fe:0e:fd:09:5a:65:d7:d4:51:ce:57:
40:36:ac:3f:b7:02:96:e5:f3:88:0e:1c:6e:64:a4:
f9:87:85:a7:1e:1c:d6:4a:ba:77:08:ea:04:8e:a1:
99:62:e8:6f:c5:4e:91:5f:be:55:a7:8e:f7:f4:eb:
12:96:27:cd:a8:a2:ed:d3:a3:6c:62:d5:c2:01:77:
df:29:6a:d5:65:f4:3a:4c:00:eb:7c:27:53:7c:66:
8a:58:c1:3d:a1:b0:83:0b:ff:25:a4:6e:27:71:e7:
81:39:b4:03:13:d6:4b:ef:07:59:11:92:41:e3:b1:
98:e5:6b:26:fa:cd:6a:47:e3:1f:b0:66:ea:f0:a8:
38:8f:68:ab:92:d6:f5:48:27:68:c0:5c:56:59:37:
94:0b:0d:d9:5f:2f:0d:18:e8:b3:29:dd:df:37:54:
d5:56:20:35:6b:4a:58:20:db:03:1b:6e:a5:4e:86:
eb:df:cb:90:36:30:4e:ff:a0:48:92:2d:52:5c:54:
7f:05:19:c6:a2:01:b6:70:9b:8c:b5:5e:7b:3a:21:
5f:74:63:56:ea:fd:0b:c8:d8:fc:43:65:f2:e3:47:
b8:46:98:2b:cd:36:28:9d:8a:14:67:d5:67:7f:1b:
b6:8b:c7:18:2c:c0:88:21:e5:57:13:db:25:bf:25:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1D:44:0E:19:81:06:CD:C1:BB:1B:FD:88:D0:0E:BF:26:26:6F:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C417F320FBAB11EEBE810821017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.108.0/24
Signature Algorithm: sha256WithRSAEncryption
91:64:28:cb:bd:a9:6f:77:db:5c:73:dd:b3:18:d7:ad:c6:b2:
64:f5:07:38:a3:b8:1d:83:0d:8d:f1:5a:09:90:a8:2f:2c:d2:
78:77:0b:c0:f7:4f:d4:ce:7a:7d:de:dc:38:fb:a9:6d:35:a9:
8d:49:6b:ad:00:c1:d7:7d:8b:3b:72:b0:0e:5b:22:a1:ff:fd:
44:c0:20:e6:91:3a:12:29:c2:39:63:9f:2b:cb:bd:77:fc:95:
b5:9c:31:c5:21:c8:06:54:0c:e8:a8:38:82:41:34:c1:74:84:
16:3a:3b:98:0a:c4:da:d0:d9:29:b0:64:b2:bf:16:73:90:7f:
df:a0:76:2a:32:b7:80:df:a4:f1:8f:70:6f:d8:7a:71:90:9b:
63:89:fd:11:d6:f1:1c:f1:a0:45:4e:c1:ec:43:25:28:3b:1b:
bd:aa:a8:93:a9:80:72:03:34:7e:c0:6a:e2:6b:37:9b:ba:54:
3d:b3:f2:57:a6:09:97:ae:6e:c6:35:48:d9:44:b9:8e:3a:04:
d5:71:43:91:34:4e:43:78:af:d8:20:87:c6:f9:6a:61:61:55:
bc:01:bb:3d:33:33:f9:da:a3:de:82:31:20:a3:6b:f9:94:e6:
35:0a:8b:d4:72:5a:ae:87:cb:eb:6b:27:dc:4f:6d:51:7b:23:
b0:48:44:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:01 2024 by rpki-client on console-fra.rpki-client.org