Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C5B209C59BA11ED9C1F3A9BF1222468.roa
File: 1C5B209C59BA11ED9C1F3A9BF1222468.roa (raw, json)
Hash identifier: 9IUhO0+cvH5C7Vq5pDHjWNxcqKWLtLSbm/1ZyHCXUn0=
Subject key identifier: 58:7B:15:E1:2C:F9:83:2C:C7:4F:DF:29:F3:38:E8:AE:27:2A:9E:89
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0A8D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C5B209C59BA11ED9C1F3A9BF1222468.roa
Signing time: Tue 01 Nov 2022 07:52:19 +0000
ROA not before: Tue 01 Nov 2022 07:52:16 +0000
ROA not after: Fri 01 Nov 2024 07:52:16 +0000
asID: 397373
IP address blocks: 154.16.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2701 (0xa8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 1 07:52:16 2022 GMT
Not After : Nov 1 07:52:16 2024 GMT
Subject: CN=6360d033-5816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b6:d6:80:6c:8b:5a:1b:7a:d7:83:31:ef:37:
2b:c4:38:90:5c:56:1a:e1:c5:33:e3:f9:f3:16:02:
f7:4e:57:14:bd:6b:ec:db:98:5b:94:56:01:f3:8a:
c4:4d:c1:c7:f1:e2:36:d4:58:c1:00:76:01:91:9b:
7f:f8:71:04:62:a2:41:a7:70:32:0a:44:1d:46:bc:
be:78:23:dd:35:6b:10:31:92:49:e4:5a:67:05:3c:
c5:da:bf:11:b3:da:f6:22:bc:06:a6:5a:6a:61:2e:
18:7c:3a:70:4a:7d:28:cc:0b:99:e9:39:35:e3:2e:
b4:2e:51:91:a4:dc:97:da:70:8f:d3:f8:ae:0a:84:
68:63:56:26:e1:b2:b2:5a:09:13:30:ca:1b:3a:57:
00:81:44:42:62:5f:a7:20:c5:e1:27:b4:21:5c:fe:
93:06:3e:ec:05:d5:c5:0b:8a:10:a3:02:a2:ea:79:
67:9b:84:9e:1a:21:5d:9e:f0:c0:ac:79:cc:5e:52:
f7:a6:da:2d:2a:66:84:7c:7b:50:10:ef:e6:2e:3a:
8b:5b:0b:4e:e0:10:f9:a2:0a:31:dc:20:40:69:a2:
43:ed:61:bb:e9:75:d8:6a:1e:64:94:47:32:10:3b:
0d:31:c3:f6:a2:2d:eb:35:67:35:51:b3:55:6f:dc:
49:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7B:15:E1:2C:F9:83:2C:C7:4F:DF:29:F3:38:E8:AE:27:2A:9E:89
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C5B209C59BA11ED9C1F3A9BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.79.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:9c:56:bb:8c:4e:6c:a2:39:8c:73:dc:fb:63:6f:30:93:36:
34:33:d2:1b:1c:99:de:41:12:18:ff:99:6c:fe:59:5d:ac:b0:
e8:eb:bc:05:10:90:18:2d:27:13:a8:c6:a7:89:02:e2:45:c5:
23:03:1d:90:9c:3c:ea:60:39:b8:2f:68:2d:b1:26:6f:c3:c2:
e2:ea:a3:0f:04:56:fe:6a:30:50:e7:82:e3:b2:98:d8:74:ce:
cf:2c:aa:6a:78:a3:d4:26:fd:0d:77:60:c0:31:36:4f:13:f0:
6a:30:12:47:ad:4c:94:c4:6c:94:f4:6d:45:60:0c:c7:f4:35:
95:98:58:3d:5a:e7:7f:e4:a4:f3:64:98:be:d1:eb:8e:8c:a7:
d5:f6:72:ef:bf:a3:cf:86:91:25:6a:80:38:c6:9b:34:f7:ea:
47:f0:6a:02:20:65:69:e2:76:38:be:f2:7f:fc:07:89:6e:32:
63:77:2a:9d:e4:59:75:9e:64:71:45:71:08:39:09:c2:55:34:
5f:8f:08:bd:b7:13:1f:90:3c:a5:7b:05:77:21:14:8e:d9:66:
99:3a:fc:ec:58:64:e1:05:77:36:1a:46:8f:17:5e:a1:c8:aa:
56:97:e5:2b:f8:95:9a:c2:9d:d7:4b:ad:e6:9c:16:12:70:48:
bc:6f:16:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:13:41 2024 by rpki-client on console-fra.rpki-client.org