Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8AA0450E2A3111EDB82907BFF1222468.roa
File: 8AA0450E2A3111EDB82907BFF1222468.roa (raw, json)
Hash identifier: J3J4NrydFhXJyHoJTDtpY/m/nkbw/sSc/Yz9boTxrZ8=
Subject key identifier: 26:E3:56:6A:17:CD:99:60:24:6F:46:59:B7:24:08:E2:4D:92:A6:85
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0985
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8AA0450E2A3111EDB82907BFF1222468.roa
Signing time: Thu 01 Sep 2022 20:06:19 +0000
ROA not before: Thu 01 Sep 2022 20:06:13 +0000
ROA not after: Thu 05 Sep 2024 20:06:13 +0000
asID: 20141
IP address blocks: 154.16.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2437 (0x985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 1 20:06:13 2022 GMT
Not After : Sep 5 20:06:13 2024 GMT
Subject: CN=631110bb-ceac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ca:fb:73:7a:8a:57:c6:bc:ef:70:21:76:63:
15:11:a3:0b:9d:d8:96:16:ec:1f:0d:bf:2a:00:33:
f2:8c:f5:e4:d7:ec:27:6b:dd:2a:b8:1c:84:4c:27:
57:f8:c1:97:ce:12:76:e2:20:aa:d2:0b:e0:97:c6:
a1:5e:83:f8:35:65:3e:83:bb:61:5d:b6:96:19:79:
a2:a6:80:bd:44:ab:fe:f3:dd:48:25:ee:29:44:31:
86:51:3b:92:e4:f4:10:4c:31:83:d9:7e:0f:db:89:
53:91:fe:78:5b:3e:64:c5:1a:8e:5b:bd:b8:a0:ff:
3a:8f:67:f8:38:b6:37:d0:12:10:c9:5c:e0:af:08:
9a:8e:fe:95:d8:b4:41:14:b8:82:f5:2a:1d:b6:9b:
c9:7a:53:87:d9:0c:26:7c:bb:72:08:19:d2:3e:27:
86:b4:08:5d:d6:3f:49:5c:83:37:e9:1a:f5:58:90:
ea:98:25:b5:6b:a6:0b:b1:1c:eb:4e:33:28:1d:b3:
60:c3:4d:9b:83:26:f1:05:80:41:b8:2b:03:2e:be:
73:0a:a4:c8:84:1c:c3:3a:07:b1:a3:54:34:a9:83:
73:dd:0e:f4:d9:5f:01:fd:51:28:ab:09:1d:6f:3a:
57:6f:20:2f:58:76:1e:9f:3c:a1:6b:d9:92:6e:0a:
be:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E3:56:6A:17:CD:99:60:24:6F:46:59:B7:24:08:E2:4D:92:A6:85
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8AA0450E2A3111EDB82907BFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.15.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5b:28:64:b7:96:16:60:0a:af:61:62:8f:fc:5d:76:08:f7:
e0:c7:25:28:11:54:21:51:70:c9:13:94:1a:9f:4e:c5:7b:6e:
be:44:88:6f:49:3a:ab:c2:11:19:bf:95:a8:29:64:17:6c:18:
f2:13:61:42:33:b8:89:7e:0a:04:7c:6b:a3:1e:2d:7a:b7:cf:
58:e5:eb:ef:60:1b:55:ee:76:54:5d:f1:04:e6:2a:2e:0d:60:
d8:62:b7:d9:c1:c7:9a:ae:ca:35:c8:b1:ec:4b:c6:b9:20:e7:
12:1b:50:f8:62:e3:54:05:8e:72:6e:c9:e1:5e:28:e4:39:55:
2d:31:1a:3f:db:64:72:f9:93:e8:c1:eb:6a:a0:25:54:04:e8:
d9:cd:d6:4e:12:46:6d:b3:d6:9f:74:c3:75:d0:ed:73:7e:26:
b0:7c:eb:a5:54:49:84:cf:6f:ba:8e:f3:e3:91:33:a1:02:5e:
1a:c0:a4:4b:82:c1:6e:a2:b2:83:8f:70:27:c5:ff:1d:fa:41:
72:c1:f9:af:4e:ae:23:b0:4b:55:c8:7c:9b:23:90:c2:94:df:
0b:81:7f:a5:6c:db:18:99:2d:1c:e3:06:84:6f:b0:b4:48:d3:
36:b1:de:86:72:d2:45:c5:71:c4:3c:eb:4b:f7:6f:be:fb:0c:
17:f2:b8:a4
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjA5MDEyMDA2MTNaFw0yNDA5MDUyMDA2MTNaMBgxFjAU
BgNVBAMMDTYzMTExMGJiLWNlYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC1yvtzeopXxrzvcCF2YxURowud2JYW7B8NvyoAM/KM9eTX7Cdr3Sq4HIRM
J1f4wZfOEnbiIKrSC+CXxqFeg/g1ZT6Du2FdtpYZeaKmgL1Eq/7z3Ugl7ilEMYZR
O5Lk9BBMMYPZfg/biVOR/nhbPmTFGo5bvbig/zqPZ/g4tjfQEhDJXOCvCJqO/pXY
tEEUuIL1Kh22m8l6U4fZDCZ8u3IIGdI+J4a0CF3WP0lcgzfpGvVYkOqYJbVrpgux
HOtOMygds2DDTZuDJvEFgEG4KwMuvnMKpMiEHMM6B7GjVDSpg3PdDvTZXwH9USir
CR1vOldvIC9Ydh6fPKFr2ZJuCr7HAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUJuNW
ahfNmWAkb0ZZtyQI4k2SpoUwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzhBQTA0NTBFMkEzMTExRURCODI5MDdCRkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEA8wDQYJKoZIhvcNAQEL
BQADggEBAJ9bKGS3lhZgCq9hYo/8XXYI9+DHJSgRVCFRcMkTlBqfTsV7br5EiG9J
OqvCERm/lagpZBdsGPITYUIzuIl+CgR8a6MeLXq3z1jl6+9gG1XudlRd8QTmKi4N
YNhit9nBx5quyjXIsexLxrkg5xIbUPhi41QFjnJuyeFeKOQ5VS0xGj/bZHL5k+jB
62qgJVQE6NnN1k4SRm2z1p90w3XQ7XN+JrB866VUSYTPb7qO8+ORM6ECXhrApEuC
wW6isoOPcCfF/x36QXLB+a9OriOwS1XIfJsjkMKU3wuBf6Vs2xiZLRzjBoRvsLRI
0zax3oZy0kXFccQ860v3b777DBfyuKQ=
-----END CERTIFICATE-----
Generated at Tue May 21 01:50:05 2024 by rpki-client on console-ams.rpki-client.org