Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5B4BF0948AAA11EDAA5E46BDF1222468.roa
File: 5B4BF0948AAA11EDAA5E46BDF1222468.roa (raw, json)
Hash identifier: ZW/qhyY7BIH19IY6nDfjsqLORbdNyDKEqmNEyzIpcfU=
Subject key identifier: 8D:C8:A9:5B:BA:DE:56:38:45:73:33:3A:74:00:58:C0:7E:01:E6:0B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B39
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5B4BF0948AAA11EDAA5E46BDF1222468.roa
Signing time: Mon 02 Jan 2023 14:33:00 +0000
ROA not before: Mon 02 Jan 2023 14:32:56 +0000
ROA not after: Thu 02 Jan 2025 14:32:56 +0000
asID: 400040
IP address blocks: 154.16.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2873 (0xb39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jan 2 14:32:56 2023 GMT
Not After : Jan 2 14:32:56 2025 GMT
Subject: CN=63b2eb1c-8b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d9:1c:14:b8:b6:2e:b1:35:7d:3a:20:30:dc:
f5:a4:bc:9c:84:2e:81:db:f7:00:87:b8:75:1c:ed:
e8:be:26:db:51:f1:7c:85:9e:12:6f:d3:3a:5b:5e:
e2:63:8c:e5:03:1e:a6:0a:d3:0b:f2:19:c4:e5:9f:
08:68:b6:c9:1f:fe:50:3c:5c:91:f9:7e:7b:fa:15:
50:d4:f3:fc:b6:bf:d5:c0:3f:79:be:66:3d:35:92:
e9:22:94:b4:a7:d7:5b:07:1b:9d:b8:d3:f6:75:30:
21:6f:b0:8a:82:a0:6d:2d:77:11:c2:11:98:74:bc:
a2:2a:df:eb:82:02:a9:b3:b6:5e:e5:a5:58:33:8f:
4f:a9:6c:f4:17:f5:93:85:ef:20:af:69:67:d7:ae:
ba:fb:e7:fb:68:a1:ef:87:3a:b5:ed:f9:c2:4f:9d:
42:8f:d8:06:89:6e:65:bf:ae:08:ef:db:a0:8a:5b:
39:45:08:57:a8:8e:75:9a:4c:a1:67:a0:87:1d:dd:
7b:50:f1:8b:09:39:b8:17:4b:a3:e7:1d:32:0a:02:
56:5a:75:a0:55:ad:04:ae:ce:e2:57:c4:d5:24:0b:
68:20:da:a0:95:f0:b6:83:d2:50:d3:86:23:e0:34:
0d:47:88:21:6e:09:4d:db:eb:38:2c:b0:b3:ba:54:
fb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C8:A9:5B:BA:DE:56:38:45:73:33:3A:74:00:58:C0:7E:01:E6:0B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5B4BF0948AAA11EDAA5E46BDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.184.0/24
Signature Algorithm: sha256WithRSAEncryption
31:12:a0:65:ab:c4:46:9e:4a:47:92:f7:25:e3:06:3b:2c:1f:
59:a7:1b:1f:18:c9:6c:59:c0:51:1a:57:31:1d:12:f1:8d:80:
57:e3:8c:f5:22:e0:77:4d:89:3e:a0:2e:4d:af:13:f3:bc:70:
6e:92:6e:c4:77:9c:2b:6f:91:57:e4:fd:91:47:55:e2:30:c7:
05:fa:3e:5e:4f:6e:70:38:cd:2a:93:66:7c:53:69:0d:41:ef:
ab:ba:6a:90:91:97:e2:65:24:83:cf:e6:89:79:da:21:b6:08:
2d:86:3b:90:94:36:d7:07:68:64:4f:80:c7:99:70:80:74:78:
11:54:71:bb:7a:57:e7:ee:9c:b8:ef:70:af:2f:eb:7f:b7:f0:
64:35:f8:4a:77:2e:b6:1a:25:ce:6b:ea:c7:75:cc:a3:75:a4:
bb:ee:7f:f0:fa:77:3e:1a:93:e2:df:85:dc:c2:60:ab:2d:66:
c7:5b:ee:02:88:f7:01:4f:6c:57:cc:3c:68:fc:32:fc:15:03:
aa:e6:9c:f8:dc:56:0d:80:ee:36:38:33:0e:f1:67:64:90:ee:
67:4f:62:1f:fc:11:f5:12:5a:97:27:ef:a8:98:f8:5f:0f:b9:
d3:c7:0e:1c:74:ae:43:64:e9:15:b8:16:27:e7:a1:94:b8:c3:
26:58:67:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:36 2024 by rpki-client on console-fra.rpki-client.org