Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA9B8802FAEA11EE81DDF3F5007001B1.roa
File: EA9B8802FAEA11EE81DDF3F5007001B1.roa (raw, json)
Hash identifier: Na2uzmweOooP4anvZEwCJEkheAb6dLUbnYtSVnDDnv0=
Subject key identifier: 0B:24:BE:FA:E0:8F:83:0F:7D:88:5A:55:9C:B5:6E:D7:06:4F:96:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACA4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA9B8802FAEA11EE81DDF3F5007001B1.roa
Signing time: Mon 15 Apr 2024 05:42:16 +0000
ROA not before: Mon 15 Apr 2024 05:42:13 +0000
ROA not after: Thu 30 May 2024 05:42:13 +0000
asID: 63139
IP address blocks: 154.93.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44196 (0xaca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:42:13 2024 GMT
Not After : May 30 05:42:13 2024 GMT
Subject: CN=661cbe38-7158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:9b:de:02:df:10:d7:4d:39:2c:cb:a0:ed:
c7:09:7c:4c:ff:aa:2b:eb:28:5b:e5:40:18:ea:7d:
63:03:95:5f:c4:1b:4d:42:91:58:7c:1b:69:fa:2a:
42:b6:48:0e:9f:74:bd:3a:76:60:23:96:2d:0a:f3:
c3:a1:96:b9:56:4f:60:0c:43:5e:d5:81:65:6b:77:
30:28:91:91:8d:dd:06:07:fe:64:d2:66:58:a7:f3:
16:af:71:94:d8:4b:58:42:eb:af:89:00:21:7d:9f:
50:e6:32:86:77:3b:21:ef:e2:4f:9c:b3:5a:aa:6c:
b8:66:32:80:4c:4f:e1:95:e8:73:06:99:f4:90:6d:
9d:a5:19:70:ae:ad:fb:05:7f:2b:b2:e5:f7:fe:f7:
2e:2b:f5:ab:e4:98:e0:de:25:28:f6:83:b5:53:f6:
2b:b7:59:66:c1:09:ae:8c:b8:31:56:48:23:92:5f:
79:98:a4:03:3a:9c:bf:99:34:bf:93:7d:ff:f5:6a:
1d:c1:12:fa:55:cc:97:8f:5b:74:dd:ce:83:9c:3c:
c3:2f:2e:e9:f2:fc:86:c0:1e:c2:26:26:43:30:0c:
d9:7c:9d:f8:a1:e6:fd:45:f4:91:79:64:7a:c4:12:
cc:82:b0:a2:87:61:94:50:98:6a:2b:f6:66:a6:a2:
93:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:24:BE:FA:E0:8F:83:0F:7D:88:5A:55:9C:B5:6E:D7:06:4F:96:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA9B8802FAEA11EE81DDF3F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.72.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:fa:0c:2c:cc:f1:bc:f9:fa:3f:29:81:87:44:d0:34:ba:3c:
9a:ff:79:06:55:7c:39:15:d1:54:84:8d:a9:4f:00:76:a6:11:
6c:06:89:04:89:b8:b8:74:46:16:5c:c7:e5:13:37:4a:af:da:
ee:5b:bf:91:56:62:5e:de:55:ee:ea:33:66:24:5d:b3:98:88:
af:fa:09:15:45:9e:97:12:44:71:c2:c5:97:f4:34:33:e4:9a:
66:80:2e:ae:48:d8:75:3e:8b:ff:35:64:ac:52:ac:80:87:65:
55:53:52:19:41:7a:0d:ac:6b:8a:4b:ce:1e:ae:40:f7:1f:8c:
41:c5:cd:b8:a4:aa:60:55:be:6a:cf:2a:0e:5e:46:9d:c8:42:
14:f5:ed:1a:9f:0f:49:9e:ec:7f:ac:2d:03:1b:88:80:3b:9b:
8c:a0:e5:a1:95:fb:e6:60:c3:4b:d5:1f:8c:63:80:5e:24:b2:
26:28:ec:6e:be:4d:d6:44:ad:6e:21:ac:2f:cb:c9:93:8e:b6:
6b:10:87:f8:31:e4:67:6e:cf:8d:4f:c2:04:3e:47:43:e8:7a:
bf:c3:43:a6:c6:55:84:ba:4b:09:57:2e:c1:8f:39:7b:66:9c:
15:0a:94:82:12:4e:9f:50:d6:0f:76:f4:97:8c:89:2c:e9:8a:
64:86:c7:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:05 2024 by rpki-client on console-fra.rpki-client.org