Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5DE09D8A032811EFAC6B7B1C017001B1.roa
File: 5DE09D8A032811EFAC6B7B1C017001B1.roa (raw, json)
Hash identifier: 370kR3alUCCw5+Gxga4hGqlhFNBQCzgEX3t0LNgcssA=
Subject key identifier: F1:1A:32:5A:FC:2F:F3:7B:FD:EF:4B:F4:22:4D:C5:6C:9D:42:24:CD
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1607
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5DE09D8A032811EFAC6B7B1C017001B1.roa
Signing time: Thu 25 Apr 2024 17:22:18 +0000
ROA not before: Thu 25 Apr 2024 17:22:13 +0000
ROA not after: Sat 25 Apr 2026 17:22:13 +0000
asID: 147291
IP address blocks: 154.16.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5639 (0x1607)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 25 17:22:13 2024 GMT
Not After : Apr 25 17:22:13 2026 GMT
Subject: CN=662a914a-a563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ab:02:69:ea:20:7d:d0:28:74:9b:6d:44:00:
19:21:03:ad:19:bf:ab:94:db:76:33:f4:69:34:b8:
ad:00:1f:e0:e0:13:78:d8:14:5a:3e:6a:5d:48:22:
fe:25:1a:0a:6a:4b:d8:9f:71:b6:5b:e1:f7:be:6d:
2a:6a:d3:9b:32:5e:74:6a:99:bb:b6:84:b8:f6:00:
aa:87:ad:05:90:b6:96:52:4c:11:af:69:20:73:c3:
56:b9:1d:85:00:00:d1:50:b8:85:c0:0b:61:42:71:
1c:22:88:ca:61:6b:c0:ae:57:f1:f6:db:b7:34:3d:
00:78:d9:4f:73:42:42:51:52:28:d1:25:cc:73:0f:
95:4c:2d:01:00:fa:be:cb:e6:0a:27:f6:0f:91:10:
8b:9a:f5:5a:db:04:67:b3:b7:d5:94:77:63:70:3e:
0b:59:9d:ff:a1:9b:c0:65:e4:df:71:31:75:e1:bd:
7f:e1:b6:78:da:f3:93:7e:e1:4a:ea:a2:60:6f:72:
c6:d3:84:40:a1:58:f3:e5:a2:f0:78:39:23:ca:31:
c1:1d:ff:4e:97:b7:a2:a6:90:a0:6b:a4:88:f4:6c:
67:c9:9f:d2:7c:c6:d4:98:bf:25:d3:19:6f:28:8a:
3a:52:3d:b9:6b:e5:be:f5:f0:5a:f3:d4:01:bd:6a:
f9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1A:32:5A:FC:2F:F3:7B:FD:EF:4B:F4:22:4D:C5:6C:9D:42:24:CD
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5DE09D8A032811EFAC6B7B1C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.179.0/24
Signature Algorithm: sha256WithRSAEncryption
64:6e:c8:34:6a:2a:3f:7e:ff:72:ae:f7:df:89:71:2d:68:11:
b3:4e:19:fd:3e:3c:8a:82:1f:77:35:aa:e3:b0:f2:b8:97:3c:
cd:e9:ee:f0:c0:be:86:37:26:b7:ff:2e:96:db:22:23:c3:57:
39:f4:db:f7:ad:f9:df:87:e6:f0:ac:a1:a4:a3:44:a9:e5:80:
83:22:e6:6c:49:2f:e1:54:42:56:0a:6c:6e:4f:eb:eb:0d:98:
c4:6b:80:1c:04:af:48:a7:77:a1:0a:28:08:e0:2e:fd:18:5c:
04:2f:7e:2f:84:05:48:98:1b:70:56:52:6b:9a:05:c2:b6:79:
96:95:7e:af:6d:db:98:56:ed:ec:ea:c5:44:24:a0:59:d2:9b:
cc:86:44:1c:ee:94:40:08:19:36:b0:21:75:e5:49:ec:9c:1e:
48:74:5d:b6:ba:5a:bc:33:38:91:e6:f3:ca:19:25:48:13:5d:
08:8a:0e:0d:47:e5:66:5c:ab:3a:44:a4:b3:33:32:9b:12:96:
f3:b6:7f:49:a4:17:83:81:29:51:48:86:0f:c8:32:21:70:3d:
98:fb:49:b4:d1:3b:36:22:27:f0:6e:f1:55:21:6f:71:30:5c:
d4:58:41:d5:43:3b:42:db:6d:67:c4:d2:d3:bc:f4:07:3c:54:
d2:95:46:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:36 2024 by rpki-client on console-fra.rpki-client.org