Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C1973E0032911EF9B2E1A22017001B1.roa
File: 0C1973E0032911EF9B2E1A22017001B1.roa (raw, json)
Hash identifier: znbdvfyKMEMdwGHfp+Q3EgXNTWFy40qfQm3Wve+1nCc=
Subject key identifier: D1:07:F6:5C:B9:9D:26:BB:4C:81:3A:48:B8:56:47:86:1B:73:7E:CB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 160F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C1973E0032911EF9B2E1A22017001B1.roa
Signing time: Thu 25 Apr 2024 17:27:10 +0000
ROA not before: Thu 25 Apr 2024 17:27:07 +0000
ROA not after: Sat 25 Apr 2026 17:27:07 +0000
asID: 22168
IP address blocks: 154.16.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5647 (0x160f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 25 17:27:07 2024 GMT
Not After : Apr 25 17:27:07 2026 GMT
Subject: CN=662a926e-0c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0b:b2:0e:9e:5e:34:e8:25:b9:15:5f:13:8c:
67:66:de:42:f3:82:80:cf:d1:22:51:fc:1e:6c:30:
dc:52:15:d5:90:49:b0:e5:3c:1a:ab:42:05:ed:8c:
66:d1:37:e2:9a:73:22:bb:69:50:1b:5b:c5:84:5f:
51:9d:b6:f2:4b:30:b3:c2:9f:e1:d5:1d:aa:b3:7a:
0a:72:b7:c2:08:7b:e1:f1:ce:be:55:5a:f9:54:9f:
9a:86:53:3e:3b:a7:56:b0:6b:5c:82:26:0b:4f:5b:
af:26:08:9f:90:97:4c:7c:7a:23:3f:5e:d0:60:73:
33:95:52:20:d8:ce:5d:15:4e:75:47:ef:b0:1b:15:
23:98:9d:71:d1:08:b3:fd:6a:18:21:17:3b:59:0c:
ad:9c:e8:e0:e3:23:c5:96:0f:fb:4d:9d:cb:19:cc:
1d:b6:50:e5:4e:4f:74:57:d9:f5:89:91:f7:5b:7b:
bf:ea:63:86:22:cd:43:56:a4:01:01:2f:a1:09:0e:
74:61:81:69:d0:b5:5a:a5:39:2a:64:6a:e7:fc:51:
c2:2e:7e:30:71:d7:8c:8b:ab:eb:73:41:3d:f4:fa:
a8:8a:84:e4:3b:10:fd:9c:5a:5e:df:4c:a4:ac:87:
97:56:30:3b:2d:cb:08:49:36:cc:fc:88:ff:b9:a0:
b9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:07:F6:5C:B9:9D:26:BB:4C:81:3A:48:B8:56:47:86:1B:73:7E:CB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C1973E0032911EF9B2E1A22017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.223.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c8:3d:b1:f3:3e:8a:84:6d:7e:6b:ad:48:a8:b0:8d:5d:e8:
a7:83:d9:0e:6e:3c:95:69:28:e7:dd:fb:4d:ad:a6:6c:bd:e0:
e2:d4:2c:0a:38:ea:92:e4:56:60:e4:47:6c:13:ec:f0:ce:8c:
86:26:5e:97:b7:71:a5:49:7a:82:25:41:f8:d6:5c:1f:1c:38:
f6:f4:d9:bc:91:31:ff:de:ac:a9:4e:1a:b6:b5:02:5b:5f:55:
ce:9c:de:f7:05:23:0b:76:45:ea:74:96:8a:20:44:ad:2f:fd:
da:04:3c:23:e3:e9:1e:3e:c2:88:78:33:93:72:32:1c:fe:8a:
2e:f8:5b:b9:5e:82:93:21:d6:54:b1:47:f7:a0:56:d4:c0:74:
c4:19:ff:32:5e:3c:7f:d8:0e:a4:aa:c1:68:07:c1:1a:6c:0d:
6b:5b:6a:29:b7:f2:c1:12:eb:42:43:d3:3e:87:b6:25:4a:72:
02:d7:f9:f8:fc:aa:64:75:0c:d5:0b:7a:97:d3:2b:fa:ea:76:
70:70:e7:08:67:fc:bd:d7:6a:5c:b8:5f:bd:95:a0:6e:da:49:
4b:f2:e5:15:b1:06:e9:33:0e:c9:33:e6:47:c1:89:46:98:8f:
93:6d:57:00:01:d5:33:27:e0:31:0c:4c:ee:da:e0:fc:8a:4b:
93:68:5c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:50:04 2024 by rpki-client on console-ams.rpki-client.org