Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1280D94FBAD11EEA321F131017001B1.roa
File: F1280D94FBAD11EEA321F131017001B1.roa (raw, json)
Hash identifier: oYWs4IO+DSPFDu5RYuIqDUrsMUJ0BMLucGe5NnCapN4=
Subject key identifier: F5:EF:5A:7D:E1:1B:3D:CB:0E:34:B8:9B:BC:C9:00:79:C2:BA:25:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADCF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1280D94FBAD11EEA321F131017001B1.roa
Signing time: Tue 16 Apr 2024 04:58:19 +0000
ROA not before: Tue 16 Apr 2024 04:58:15 +0000
ROA not after: Thu 30 May 2024 04:58:15 +0000
asID: 63139
IP address blocks: 154.94.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44495 (0xadcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:58:15 2024 GMT
Not After : May 30 04:58:15 2024 GMT
Subject: CN=661e056b-b0fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:af:25:2c:b0:25:41:ab:43:93:c6:50:5f:92:
08:09:3f:5f:6d:c4:35:37:19:ae:7e:ba:01:d5:90:
b2:ae:f2:e9:47:1a:70:04:3a:98:5c:32:3b:3d:8c:
6a:12:a7:f3:c8:a8:7b:24:48:68:d9:ce:b5:bb:e0:
be:f8:4e:c6:67:71:57:3f:2f:ad:65:04:9c:1f:6d:
b4:1d:e8:bf:12:2c:df:96:de:8c:2c:e0:b8:f2:03:
5c:eb:3c:10:a0:56:cc:6e:af:27:48:97:3f:35:d0:
1d:8c:12:a4:c0:4a:36:f7:68:a5:bb:f4:b3:77:87:
1a:27:dc:ac:3f:69:dc:d1:bb:f4:73:ef:c2:57:f1:
d7:96:bf:af:c7:e4:fe:1e:c1:cd:8f:b6:93:20:39:
2a:89:2e:98:25:bc:3b:53:e1:b8:5f:43:5d:83:29:
6f:11:a8:7b:81:3c:d5:fc:26:d2:14:a5:a1:e2:d2:
ab:87:3b:23:d2:b0:e0:c6:80:eb:7a:12:02:45:91:
0d:00:7c:06:5d:db:63:dc:be:f2:f0:07:c8:48:fb:
1f:92:0d:e9:6e:fb:0e:d0:ff:6d:a2:cb:bb:b9:a4:
c8:ca:c2:51:5e:d9:f1:3a:0f:f9:89:ff:cb:fb:2a:
41:54:28:a3:50:07:e0:e4:32:3d:37:c3:e9:d2:75:
19:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EF:5A:7D:E1:1B:3D:CB:0E:34:B8:9B:BC:C9:00:79:C2:BA:25:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1280D94FBAD11EEA321F131017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.96.0/24
Signature Algorithm: sha256WithRSAEncryption
af:66:32:bc:d1:fe:4a:61:fd:b7:f6:15:1a:1d:dc:63:a2:0e:
66:72:87:76:26:7a:02:90:99:21:bf:46:28:5c:40:b4:bb:cc:
cd:0d:f0:06:a6:cd:29:9e:a8:ec:01:78:e1:9e:16:45:51:5f:
e9:53:e7:a4:3d:c3:1a:34:e6:de:6c:3a:5d:47:b3:7f:7d:3a:
7c:72:d0:ac:f5:d5:82:c6:b7:85:f0:fa:31:c7:a1:5c:4b:1e:
47:8e:97:a4:b5:b3:f2:ab:24:0c:61:eb:e7:59:48:a1:47:d1:
57:94:a8:aa:a8:de:46:64:3e:40:eb:57:a1:68:06:fc:24:1a:
c0:58:5c:ab:aa:6a:d9:fb:cd:27:b3:6b:c2:dc:a5:f3:09:fa:
cc:f4:7e:5a:f2:65:c0:1f:0d:a4:b3:26:d8:a7:51:cb:9a:5a:
87:1d:0f:f9:07:c4:5f:e0:b9:5d:00:d8:9b:4c:4c:57:71:37:
00:8c:97:34:cb:32:70:f6:a8:c1:f4:50:9e:a8:ef:23:f0:10:
65:97:d1:bb:61:b5:57:ec:93:d3:69:95:c4:89:e7:7d:a1:61:
1f:af:fe:57:f4:86:47:0d:39:8d:94:b8:3b:0b:30:06:c0:1b:
19:78:c7:6a:a1:2b:0b:5b:4c:66:d2:af:1e:1a:62:e5:ac:c6:
eb:2d:df:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:42 2024 by rpki-client on console-fra.rpki-client.org