Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D8FC0AFBAB11EE84CA7421017001B1.roa
File: F1D8FC0AFBAB11EE84CA7421017001B1.roa (raw, json)
Hash identifier: 0/YvYGPuWNIGU9RdFupfr1MxfLKJpY78Uvd+7TYuD2c=
Subject key identifier: B9:F9:AD:27:62:8A:E2:59:61:B9:2B:C2:4E:5C:AA:8D:48:73:B4:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADB9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D8FC0AFBAB11EE84CA7421017001B1.roa
Signing time: Tue 16 Apr 2024 04:44:01 +0000
ROA not before: Tue 16 Apr 2024 04:43:58 +0000
ROA not after: Thu 30 May 2024 04:43:58 +0000
asID: 63139
IP address blocks: 154.94.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44473 (0xadb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:43:58 2024 GMT
Not After : May 30 04:43:58 2024 GMT
Subject: CN=661e0211-3af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:44:f1:aa:bc:63:e0:2f:09:ec:ad:57:80:
f9:84:a9:ab:73:77:ca:1a:a5:06:a7:4b:30:d5:6c:
9e:eb:ed:44:be:9c:51:40:2f:50:bf:2f:d3:86:ec:
eb:dd:03:6f:48:98:7b:78:e7:6b:da:b3:36:6e:72:
17:bb:24:18:c7:4b:a0:0f:9c:62:1c:51:bc:8d:e2:
f7:fc:dc:83:60:6a:17:1c:dc:58:1b:f1:fe:5d:7c:
0c:0f:39:ae:56:13:14:19:32:95:7b:d7:ed:2f:2d:
98:98:f5:c1:24:18:1b:2a:15:b1:73:42:b5:81:94:
ab:78:5f:eb:34:19:be:6a:8f:77:c7:d0:3d:de:16:
46:8c:34:14:99:fb:b9:d5:1b:a1:76:ea:62:17:47:
73:49:c8:78:81:31:5e:4f:a7:09:48:e1:75:2b:56:
ca:d3:6d:88:c7:ef:fd:8c:18:cf:3b:63:d8:dc:d4:
7a:e4:e5:2f:07:a4:75:fb:42:1c:b7:6c:f2:2b:ea:
c5:0d:be:00:76:f0:bc:90:ad:b9:e4:0f:39:56:fa:
67:d8:e0:a7:29:af:de:b3:35:88:2f:1b:40:58:6a:
e8:4d:2b:8b:55:b1:bd:35:a5:4d:b7:8d:b0:19:b4:
f5:15:4b:c0:9b:ce:41:a5:2e:1a:76:d3:79:af:1a:
91:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F9:AD:27:62:8A:E2:59:61:B9:2B:C2:4E:5C:AA:8D:48:73:B4:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D8FC0AFBAB11EE84CA7421017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.107.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:2e:f1:d4:03:43:7b:48:cb:3c:b4:3d:56:da:05:0e:c9:af:
a0:cb:86:b7:aa:de:77:f5:00:f9:79:46:8c:84:ce:77:2e:9d:
3c:9a:c7:dc:eb:9c:3d:c1:19:10:8d:47:d8:58:02:20:8e:28:
60:83:1a:31:38:62:41:4c:d1:41:09:e9:75:7a:98:f6:88:6e:
14:b2:4b:4d:36:e9:61:50:0b:d4:58:66:db:f5:d1:68:2d:42:
7b:3e:83:cd:5f:58:d5:44:cb:2e:0b:57:94:b5:91:04:a1:90:
6d:a2:b6:25:08:66:fa:be:8b:f9:bd:02:b2:00:25:a7:87:a1:
35:5a:5c:b8:c7:36:b0:61:c3:85:e7:91:08:be:64:c6:5e:5f:
ad:4a:ad:3f:09:7f:f6:08:18:8e:55:ab:15:1c:c5:9f:75:49:
e3:76:3a:0a:99:a6:e6:c6:17:99:63:fe:bc:27:63:e5:0c:fa:
3d:cb:4c:62:f1:8f:db:ca:a9:dd:c7:25:0e:02:55:24:39:aa:
6e:c5:0b:6a:13:cd:f7:53:7a:71:ee:e3:0e:02:a7:c2:48:94:
77:49:12:fc:f6:2a:b1:32:cc:aa:d9:6c:70:dd:bd:30:f5:26:
ac:9e:5d:86:e9:68:65:ae:a0:97:ac:9b:bd:1a:da:70:cc:09:
97:b4:be:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:42 2024 by rpki-client on console-fra.rpki-client.org