Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2B7B08CCEDCE11EEB65A4460775412E6.roa
File: 2B7B08CCEDCE11EEB65A4460775412E6.roa (raw, json)
Hash identifier: razfdTqRjYVJ4WQeqamj+XjJvgHDn/9gxyQ/tnYxrCc=
Subject key identifier: 2F:CA:C7:47:63:F3:6F:C3:1E:4B:25:45:E7:C4:D1:60:97:9D:41:68
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1583
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2B7B08CCEDCE11EEB65A4460775412E6.roa
Signing time: Fri 29 Mar 2024 13:13:44 +0000
ROA not before: Fri 29 Mar 2024 13:13:41 +0000
ROA not after: Sat 28 Mar 2026 13:13:41 +0000
asID: 29802
IP address blocks: 154.16.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 02 May 2024 06:13:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5507 (0x1583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 29 13:13:41 2024 GMT
Not After : Mar 28 13:13:41 2026 GMT
Subject: CN=6606be88-88ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:11:51:6e:86:7c:63:34:27:db:9f:b7:bd:
10:91:98:93:84:18:32:93:2b:c3:61:b8:f8:56:a6:
68:61:d0:a0:05:bc:c2:4b:61:ac:6b:cb:c7:5b:dc:
42:5c:9e:26:7f:5e:b2:8b:3a:73:d9:fe:ae:7c:b9:
b8:ae:c6:37:28:d6:8f:e1:7f:f5:3e:0b:ed:35:1a:
a2:9d:c0:1c:66:5c:d4:1d:80:cb:7d:55:49:2f:d8:
f1:6a:1c:39:29:c1:0d:7b:13:ea:e2:ed:d2:d5:a2:
a9:73:92:5c:45:2e:0c:9b:ae:9d:f5:44:f2:a0:2e:
cf:0d:ef:92:17:7e:09:2a:d1:fe:ae:ff:bd:61:3f:
4e:c5:c2:13:0e:65:14:fd:e1:7c:ed:1c:43:63:5b:
32:f6:4b:76:d9:c7:a9:37:e9:47:a3:eb:f6:a3:a6:
36:ed:96:14:3c:76:97:b8:a7:33:b5:00:83:c9:82:
88:ca:25:67:a5:f1:b4:78:aa:ce:c7:3f:c9:8f:f4:
57:ea:bc:13:19:bf:b9:8f:d5:c8:25:df:48:5c:69:
2f:95:72:ae:4c:b4:a1:c8:f6:86:46:ed:d6:81:ba:
9d:33:73:28:06:0b:80:f7:81:0c:42:94:f0:1a:fa:
d1:ae:01:ce:c7:6f:3c:be:95:d7:92:25:96:cd:cb:
75:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CA:C7:47:63:F3:6F:C3:1E:4B:25:45:E7:C4:D1:60:97:9D:41:68
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2B7B08CCEDCE11EEB65A4460775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:29:93:75:50:d8:c0:fc:64:4a:5e:f9:b4:e2:fd:e5:56:6c:
1b:65:ca:97:9f:8e:ac:69:d4:9c:b7:51:4a:3e:33:63:3d:74:
57:fa:f1:a5:f4:cb:24:b5:b1:08:f2:18:7f:fd:78:76:d4:ce:
55:58:f7:3d:42:d8:bb:65:73:2e:bf:b7:de:22:c7:20:8c:a9:
af:ca:fd:ec:93:a0:e1:66:3e:cf:56:ab:d6:aa:f6:5b:58:a8:
6b:bc:46:d7:e0:c7:0a:80:f7:ef:13:15:8d:14:db:f0:23:6f:
38:5c:ea:c7:69:2f:61:56:8e:ba:46:f4:87:73:67:c6:86:cb:
0a:d5:bb:5a:0b:9c:70:9e:a0:f5:24:e4:ec:9a:84:b6:f5:99:
34:1c:6a:0c:b6:b0:31:e4:7b:23:84:21:9f:95:3a:de:8e:b0:
eb:34:84:1e:04:cc:a6:f5:c0:dd:06:65:b3:85:7e:50:de:40:
8f:76:9a:52:30:10:c5:f6:d4:96:f6:95:04:b6:49:08:d0:78:
01:fe:bc:8d:bc:4b:e4:e1:33:08:bc:7b:06:8a:55:68:0f:38:
d3:80:0a:d0:4f:cb:5c:d9:bc:f8:f3:8c:69:7d:23:e1:68:79:
53:0e:c9:56:5e:4d:a5:87:dd:5c:84:55:d7:f2:a2:d3:94:b6:
0e:04:06:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 10:15:20 2024 by rpki-client on console-fra.rpki-client.org