Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/851E95BE032811EFA61B5D20017001B1.roa
File: 851E95BE032811EFA61B5D20017001B1.roa (raw, json)
Hash identifier: 4RwzW3617oOj/JxfSngjh534V08rlKiodyU07YmrN1c=
Subject key identifier: 04:93:37:CD:F6:5E:3E:93:00:05:E3:6A:C6:F5:4F:E9:69:77:A3:51
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 160A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/851E95BE032811EFA61B5D20017001B1.roa
Signing time: Thu 25 Apr 2024 17:23:24 +0000
ROA not before: Thu 25 Apr 2024 17:23:21 +0000
ROA not after: Sat 25 Apr 2026 17:23:21 +0000
asID: 20473
IP address blocks: 154.16.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5642 (0x160a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 25 17:23:21 2024 GMT
Not After : Apr 25 17:23:21 2026 GMT
Subject: CN=662a918c-900c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:89:c6:95:1c:73:ec:9e:75:67:54:27:ff:6a:
03:3b:83:b8:32:c3:a5:f6:f3:e9:38:b7:32:0b:a6:
bd:37:2b:c7:3c:20:26:3a:78:1f:35:9f:b1:7e:40:
fe:23:53:b5:72:c7:8b:ce:d6:7a:36:1d:ef:05:24:
74:0c:92:8b:89:a0:7f:ab:f6:b3:93:55:4c:e4:07:
64:20:23:09:bf:d3:bb:62:9b:e2:93:41:ee:d2:db:
29:f2:1b:40:5c:e5:51:52:56:76:b1:fa:13:91:67:
84:9e:c4:52:53:30:19:5b:4f:b1:a3:12:75:12:78:
dc:0b:ca:43:49:48:4a:b1:ce:6e:92:5b:79:cb:2d:
dd:63:2c:48:1d:61:d0:e4:c6:2d:68:2c:e9:82:ed:
25:dd:e7:a1:a0:ae:40:ef:65:b5:4b:57:a9:f3:4d:
0f:24:be:e9:27:e9:56:71:87:80:7a:c5:07:c7:99:
45:9a:5f:84:24:f6:13:eb:3a:09:3c:1a:d0:de:4e:
41:85:b8:83:3c:e9:1e:13:8f:7e:07:41:64:ba:cd:
3f:a9:8e:c0:a9:db:1b:40:da:13:f0:68:ac:f1:ae:
35:46:47:0a:44:7b:d2:a5:71:74:70:83:48:bb:c2:
9f:35:54:e5:a8:87:a7:e5:a2:08:fe:18:29:2b:cc:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:93:37:CD:F6:5E:3E:93:00:05:E3:6A:C6:F5:4F:E9:69:77:A3:51
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/851E95BE032811EFA61B5D20017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:70:e3:c8:ce:3a:36:cf:2d:95:37:a3:3c:e4:e1:37:b4:15:
9d:f7:2e:74:a8:c6:d9:2f:51:a5:15:0c:65:e7:fe:6c:23:e3:
65:d7:62:58:43:7d:05:86:7f:3c:33:2a:ba:31:cf:85:07:db:
9b:63:82:3a:1f:6a:01:01:2b:80:d7:5e:6e:82:03:ee:ca:3c:
1b:06:90:1a:ca:b4:9b:1a:d1:11:0f:a5:f0:54:a0:e0:a1:6c:
1b:f9:6c:7b:ab:11:9e:dc:36:49:bc:e1:05:d7:db:85:f9:2c:
14:97:30:c3:e6:c1:d8:6a:1e:c2:d3:6f:75:ec:3c:57:05:fa:
b5:31:32:48:ec:c5:f8:cf:72:a7:06:1c:e5:1c:2f:32:ae:2e:
86:9d:b4:74:97:88:9c:8d:04:9c:ee:c2:70:31:d6:59:f7:d6:
df:77:51:a8:79:0a:14:7a:5f:a2:0c:8a:ec:17:68:a6:6c:29:
e8:06:08:03:59:45:81:4f:ba:5f:db:f4:5b:fc:8a:c2:94:3c:
14:ac:69:bd:72:b8:3c:9f:9a:8c:92:f0:d5:1b:10:47:63:a1:
f3:7d:21:c5:c6:0b:29:cc:ab:2b:be:fe:29:7d:a1:43:89:e5:
88:30:a9:38:3d:41:f9:57:32:70:e1:c0:24:b8:2c:25:a0:ed:
a3:2b:c6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:36 2024 by rpki-client on console-fra.rpki-client.org