Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9A1049CC38E911EEA25447694AD9E6FC.roa
File: 9A1049CC38E911EEA25447694AD9E6FC.roa (raw, json)
Hash identifier: 11hM+Co3oDSIXtFslGh/EjF4FsHVyCHRv6iKqPiNDE4=
Subject key identifier: B9:84:0B:1B:90:22:96:70:C3:07:1E:F4:F1:DB:CB:82:FA:BE:38:16
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 112F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9A1049CC38E911EEA25447694AD9E6FC.roa
Signing time: Sat 12 Aug 2023 08:24:06 +0000
ROA not before: Sat 12 Aug 2023 08:24:03 +0000
ROA not after: Tue 13 Aug 2024 08:24:03 +0000
asID: 14670
IP address blocks: 154.16.144.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4399 (0x112f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 12 08:24:03 2023 GMT
Not After : Aug 13 08:24:03 2024 GMT
Subject: CN=64d741a6-ecb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:da:3d:74:1b:a5:2b:c4:45:37:7e:dc:23:45:
9c:76:4e:c7:fc:52:de:86:11:8e:db:6b:12:3c:d0:
07:8d:45:64:28:a0:df:1e:5a:ec:f9:a4:7b:42:d9:
51:9e:26:8b:f5:35:60:15:18:e3:7a:e5:94:20:c2:
89:63:5f:eb:21:c9:37:c5:6a:c5:70:70:c2:87:6e:
6a:aa:6c:b6:ef:80:8f:d1:77:c4:30:93:ae:b7:12:
8d:73:24:0d:a0:4e:86:9c:0d:9d:ad:72:fb:8d:96:
3e:9d:6e:bf:70:27:bc:c4:e2:a5:96:d4:83:c4:3a:
9e:23:34:5f:ff:51:80:fe:17:c1:62:23:0d:9a:95:
fd:eb:37:ad:ee:81:f1:6c:22:5f:5c:e0:42:9e:49:
33:48:28:90:a5:ec:75:13:42:e4:7c:41:c1:f2:33:
d2:96:1d:1e:cf:b3:97:66:65:9d:71:1a:e3:2c:9e:
9f:ca:69:2e:76:83:4d:5c:8f:e2:25:78:01:84:45:
fc:d9:b5:18:5a:6b:c4:1b:9b:a4:06:02:52:70:91:
74:95:14:7f:81:7d:81:8b:e3:27:b9:32:c8:20:df:
e1:42:36:ed:02:ae:2b:3f:70:42:3d:0f:b5:fb:9d:
8a:4f:04:11:59:49:dc:67:2d:f2:25:d1:91:ef:37:
1a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:84:0B:1B:90:22:96:70:C3:07:1E:F4:F1:DB:CB:82:FA:BE:38:16
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9A1049CC38E911EEA25447694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.144.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:de:6b:29:86:e0:61:3b:3d:a7:55:58:25:ab:e4:0e:a2:94:
de:93:54:86:a4:1a:c5:82:79:64:15:e8:9d:da:b0:18:d3:71:
44:88:78:a0:9e:7b:66:ea:86:08:13:1f:75:8d:92:dd:c8:48:
57:94:21:79:36:18:52:0d:5d:49:74:c3:70:9e:8c:3b:2f:fe:
f7:03:cf:0f:cc:be:c7:8a:9b:f7:4f:5b:9f:fd:29:43:25:cd:
36:e6:4c:67:ea:15:8e:a3:6c:7b:b3:8b:f5:77:84:a7:eb:d0:
ac:25:92:41:e2:ce:a4:9f:8a:b8:30:51:40:af:69:bf:32:f8:
45:34:2a:21:05:8a:cf:2d:9a:27:26:4e:2a:be:46:a9:6f:ac:
52:d7:d6:63:a5:89:3d:ad:d3:d9:63:fe:72:2d:7c:86:48:9f:
d3:e5:a0:38:c0:a5:59:58:69:e7:8e:8c:35:a7:6e:4f:ba:ad:
76:1c:24:9b:ab:33:bb:c8:db:08:0e:99:8b:c5:3f:22:1c:53:
32:fb:4d:53:70:ab:99:e8:bf:14:0e:76:a8:47:f8:76:4a:8f:
b9:7a:4b:3a:78:1f:31:d6:06:2b:77:a2:88:7f:ce:87:77:f0:
de:5a:79:b0:b2:83:5f:e4:67:26:03:28:e5:6d:db:68:66:8e:
a8:58:36:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:36 2024 by rpki-client on console-fra.rpki-client.org