Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5823E50FAF011EEAF10F826017001B1.roa
File: E5823E50FAF011EEAF10F826017001B1.roa (raw, json)
Hash identifier: IvvSciErs42J7oCvBZ8T4AcybpMGFGfWkhqFQ/FTV+g=
Subject key identifier: 64:91:DC:0B:7F:C5:6A:83:12:F1:CE:83:8F:86:38:0F:F9:68:7C:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACCA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5823E50FAF011EEAF10F826017001B1.roa
Signing time: Mon 15 Apr 2024 06:25:05 +0000
ROA not before: Mon 15 Apr 2024 06:25:01 +0000
ROA not after: Thu 30 May 2024 06:25:01 +0000
asID: 63139
IP address blocks: 154.94.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44234 (0xacca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 06:25:01 2024 GMT
Not After : May 30 06:25:01 2024 GMT
Subject: CN=661cc840-0dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:34:9b:d7:c5:4f:16:58:3d:e3:4c:a5:de:cc:
bb:fe:a5:36:cf:76:2d:c1:b9:f1:8a:f7:98:35:4a:
9d:85:c5:21:87:72:fa:80:b9:2a:c3:ef:e8:19:de:
d8:bb:c4:bd:58:74:4b:02:d1:71:51:f7:34:c3:7e:
dc:f9:16:77:6d:56:43:5e:a0:65:f6:14:b6:e0:60:
58:06:54:e7:e2:2c:2d:f5:43:a8:2b:cf:b5:4a:3a:
f9:5c:01:ee:4a:d7:c6:88:7d:f5:a4:58:94:c2:ca:
a7:74:fa:80:5b:a4:6d:a9:b1:b0:55:9e:d8:ac:1c:
da:01:70:0f:15:bf:3e:83:23:ff:65:4b:88:1d:c5:
fa:c5:e4:7d:53:a6:3a:66:4e:b9:b7:0d:e6:da:e4:
63:c6:10:ab:1e:1d:74:5c:f5:e4:f4:ad:21:bf:8e:
ec:fa:e2:a8:d6:03:69:b7:60:7e:0b:da:65:f4:48:
ba:13:db:60:8d:42:d9:a1:38:b5:a8:33:d3:d0:1c:
3c:2c:75:4d:9a:59:48:99:9a:1e:31:cb:df:56:fd:
e9:c9:92:37:a5:f5:eb:f8:55:10:4e:b4:bc:65:d6:
dd:16:b6:2b:5a:f0:ba:63:5b:cb:a6:8a:7b:2c:40:
6b:7c:b6:0e:40:f0:21:e8:bb:cc:e2:82:60:90:a8:
35:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:91:DC:0B:7F:C5:6A:83:12:F1:CE:83:8F:86:38:0F:F9:68:7C:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5823E50FAF011EEAF10F826017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.87.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:3d:7b:4e:25:50:86:20:32:75:f8:72:1b:5f:7b:b0:01:25:
9c:fa:3d:ae:cd:da:b7:45:72:76:c8:9b:62:e7:04:0a:c6:b1:
f5:70:89:1d:28:2b:e0:48:d2:a0:70:97:e0:48:06:5d:68:11:
fb:2c:27:ca:2c:d7:74:59:0f:76:07:ed:de:2a:2c:5c:d0:a7:
f1:e1:3a:42:da:ab:f0:10:42:a6:a9:0e:9e:13:74:bc:66:57:
bd:fe:2f:a3:a1:a1:1e:13:8b:1d:b6:9c:24:a5:03:96:cc:ec:
92:1f:66:cd:89:3b:6c:e6:04:50:ac:d6:c6:38:03:99:5c:df:
f7:4a:bc:8c:0e:ca:3a:61:f2:29:dd:43:83:69:b7:42:4f:56:
fe:e7:87:bc:00:09:08:9f:e0:c6:8f:06:ad:5d:ec:ad:0c:f0:
95:a9:ab:af:30:bb:67:af:15:63:08:41:29:4f:ba:28:5f:ae:
2c:42:ab:d1:d9:76:b6:6e:df:9e:60:b8:1a:ec:f3:a4:5f:a0:
de:ed:21:40:d6:19:9b:af:b1:50:6e:1e:82:b8:e6:c3:0e:d3:
ff:10:d0:c0:36:b0:5c:8d:95:7a:0f:7f:53:bd:6e:ca:08:2a:
00:f5:0d:51:01:85:62:86:1f:44:99:c3:07:99:24:ef:b5:03:
73:dc:7e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org