Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/454AFF8CD54B11EE8BB47191775412E6.roa
File: 454AFF8CD54B11EE8BB47191775412E6.roa (raw, json)
Hash identifier: ciq+/X0xoAg4Eh3W4tJdkFMXUSr9ROwZGl1f07INw0Y=
Subject key identifier: 36:C1:EF:F6:CF:34:98:8F:9A:47:9F:9E:80:DE:22:82:70:95:6B:4D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 14FE
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/454AFF8CD54B11EE8BB47191775412E6.roa
Signing time: Tue 27 Feb 2024 08:36:16 +0000
ROA not before: Tue 27 Feb 2024 08:36:12 +0000
ROA not after: Fri 27 Feb 2026 08:36:12 +0000
asID: 201341
IP address blocks: 154.16.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 27 08:36:12 2024 GMT
Not After : Feb 27 08:36:12 2026 GMT
Subject: CN=65dd9f00-1290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cc:ea:38:47:10:f0:7a:9c:ac:4b:2f:4a:f6:
14:08:c9:d3:bc:41:59:4f:87:bf:40:98:9d:10:6c:
9b:cd:5f:71:cb:b3:65:e1:6c:04:19:16:41:47:94:
1a:97:8e:10:34:1c:9f:18:96:d5:95:35:a8:7b:16:
de:5c:d2:16:af:90:b1:3e:21:b4:65:68:53:29:a8:
8f:02:ea:6e:2f:ec:09:ca:42:8f:1b:f4:ca:60:d8:
e8:5a:26:35:89:66:d8:54:18:9c:a0:35:fb:a6:31:
82:86:b0:a1:28:d0:ef:28:4c:46:04:5c:2b:44:6c:
ce:6b:c2:c5:01:91:b0:da:38:d8:d1:8a:58:69:1b:
f3:67:1d:63:d0:b6:c9:c8:f5:2b:f2:1d:e5:42:29:
ce:ef:dd:df:92:62:71:31:99:e7:ac:f0:ca:c1:41:
d4:62:3f:b3:07:3b:8f:ce:a3:aa:6a:65:6e:4b:fd:
7c:19:70:e6:e6:7a:58:c7:f8:3b:cd:82:02:05:b4:
fb:87:2c:20:75:33:ce:7a:a1:30:aa:6f:68:d7:ee:
13:7b:61:29:68:bb:d2:61:03:7a:d1:9e:c4:38:75:
f3:0f:d6:2b:54:80:41:77:21:82:c0:8a:66:13:3c:
e6:51:72:e7:db:59:56:6a:00:d6:c5:9e:ac:98:26:
91:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C1:EF:F6:CF:34:98:8F:9A:47:9F:9E:80:DE:22:82:70:95:6B:4D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/454AFF8CD54B11EE8BB47191775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.100.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:53:71:ac:a4:d6:f8:2c:fb:0f:42:a7:04:22:81:a8:ae:9b:
49:3a:f4:bf:dd:1e:62:fb:24:cf:48:21:7b:41:52:91:e2:72:
66:dc:77:a3:d0:67:6f:c9:ba:44:90:11:bc:96:ac:01:44:c6:
47:9d:4c:bd:e7:ac:6c:1a:f1:04:19:ac:43:0c:9f:ff:5d:00:
98:ca:43:9d:55:0c:9f:f8:9b:ec:c7:a6:09:8f:95:75:e7:7c:
37:09:69:a6:9b:42:15:8f:68:fe:7d:f0:9d:64:af:91:36:53:
a1:1e:f2:12:21:ee:91:d0:7f:22:dd:c1:b4:f6:2a:64:0a:fc:
45:c6:eb:6a:09:eb:9a:cf:59:e0:12:cc:77:fd:53:de:53:b8:
1b:aa:81:95:40:f9:6b:20:be:f8:0c:1e:bc:18:9e:0e:e0:5a:
c7:e1:75:07:4d:e1:d1:37:c4:aa:e3:b1:61:19:6e:91:e7:2f:
7b:41:9b:59:80:f7:50:53:02:29:ea:1b:6d:ae:5d:d1:68:04:
2d:67:99:85:75:85:f2:99:56:97:59:e2:70:93:4b:69:9a:cd:
a3:29:d5:08:ca:40:2c:76:82:2b:ce:bb:7a:c8:83:c4:ec:49:
e3:c6:b6:1d:96:c7:d6:59:a2:04:54:ca:3e:9d:2c:a4:ce:9a:
4a:1c:78:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:50:04 2024 by rpki-client on console-ams.rpki-client.org