Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8497E7640BE311EDAEE71BF0F1222468.roa
File: 8497E7640BE311EDAEE71BF0F1222468.roa (raw, json)
Hash identifier: 4KXS/9mdH5hO9WRzbl2junme87n0unhKtw40ChD432Y=
Subject key identifier: 12:06:EB:0E:56:C4:90:F3:C4:44:70:0B:F4:17:83:DC:B4:8C:4C:96
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 08FC
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8497E7640BE311EDAEE71BF0F1222468.roa
Signing time: Mon 25 Jul 2022 06:32:13 +0000
ROA not before: Tue 26 Jul 2022 06:32:09 +0000
ROA not after: Wed 24 Jul 2024 06:32:09 +0000
asID: 397423
IP address blocks: 154.16.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 26 06:32:09 2022 GMT
Not After : Jul 24 06:32:09 2024 GMT
Subject: CN=62de38ed-00d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8f:12:4f:67:a7:db:43:00:c5:1e:71:57:1d:
7b:b5:f1:76:64:89:e3:8d:fd:3e:38:33:e8:95:e7:
54:18:f9:66:1c:49:83:b8:0b:d5:13:82:9b:12:7b:
9a:62:b3:d8:ec:8d:ca:42:a4:56:1d:1f:85:72:ba:
68:a0:fe:42:be:e9:23:dd:f1:ee:65:a9:d5:e3:47:
cf:ad:ca:b2:04:fd:9e:7d:76:aa:16:c4:60:96:7b:
8f:4a:a3:7b:6b:e1:93:cb:cb:59:d9:4b:68:77:f8:
4c:1f:b0:88:66:fa:5b:f3:01:23:5c:5f:94:b6:08:
3b:9c:3a:79:86:08:f8:81:23:65:73:ee:89:9e:c2:
f7:04:d9:b3:d1:8b:da:c7:97:99:db:d2:c5:5a:94:
3b:5c:f0:7c:61:02:4d:9c:50:8a:5d:51:79:82:2d:
e7:19:eb:6a:48:ce:75:ff:70:94:71:a4:18:68:4f:
8a:2e:63:bf:42:f6:92:55:f5:eb:85:72:22:fd:79:
0f:03:56:79:1f:6f:e1:a8:45:8c:34:b9:57:6c:8c:
65:27:17:5c:c2:37:09:bd:0d:00:28:de:0c:fa:71:
ed:87:c2:bf:9c:db:e5:76:d9:02:7b:62:1e:a7:f6:
aa:f6:12:c1:70:bb:ab:7f:65:64:1b:db:1c:24:d2:
8c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:06:EB:0E:56:C4:90:F3:C4:44:70:0B:F4:17:83:DC:B4:8C:4C:96
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8497E7640BE311EDAEE71BF0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.200.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:03:08:16:0f:49:00:6d:28:ae:b6:65:59:4a:84:f5:27:25:
13:84:37:e5:6b:0c:96:b7:3c:ec:2d:2e:07:25:37:10:fc:0f:
b1:e5:31:59:d1:a2:cb:cb:ee:44:d6:7f:ba:0b:9f:60:4a:fa:
05:66:bc:15:55:82:59:c4:5b:dd:92:e8:b4:6a:ae:29:b2:ce:
0a:25:20:f7:ee:7b:4f:a4:b1:4c:90:24:82:9f:2e:46:2a:17:
de:4d:ef:73:cc:2d:53:c7:50:12:4f:71:1c:c1:2f:d6:88:63:
cf:00:79:f3:c0:7c:48:de:fb:3c:0a:13:c4:7b:a0:68:bf:6f:
94:d8:35:b5:bd:16:46:a4:f2:01:25:cc:21:20:8f:6f:ad:bf:
6f:9a:12:02:3c:4e:b6:c2:2a:37:e9:87:b9:68:cf:42:b5:ba:
fe:7d:76:56:b4:11:43:29:1b:1f:37:8f:38:b7:05:5f:1d:fe:
48:33:3e:25:61:fa:f9:92:3f:bb:4d:7b:b6:45:e0:4b:ba:e7:
d9:7c:09:45:ee:bf:00:d1:26:1a:75:db:6f:91:09:7f:b3:e0:
c9:7b:e2:9e:2e:14:05:6e:02:d0:90:58:4b:ba:bd:f0:eb:e9:
b3:a0:73:30:8d:74:91:dd:f3:d0:69:84:c4:bd:aa:55:96:f0:
e9:67:93:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:50:05 2024 by rpki-client on console-ams.rpki-client.org