Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DD9CF2A6FB1411EEB668A346017001B1.roa
File: DD9CF2A6FB1411EEB668A346017001B1.roa (raw, json)
Hash identifier: w7+jPTMuxuLqS4DUQpS6Qs8jfl/LPiV00CuvtRLm7eE=
Subject key identifier: 5D:6E:47:7B:EC:AB:E7:DA:01:4C:AC:18:08:10:6C:76:18:CD:A1:6C
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15C0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DD9CF2A6FB1411EEB668A346017001B1.roa
Signing time: Mon 15 Apr 2024 10:42:33 +0000
ROA not before: Mon 15 Apr 2024 10:42:29 +0000
ROA not after: Wed 15 Apr 2026 10:42:29 +0000
asID: 834
IP address blocks: 154.16.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5568 (0x15c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 15 10:42:29 2024 GMT
Not After : Apr 15 10:42:29 2026 GMT
Subject: CN=661d0499-3f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e6:9c:04:f3:6e:68:b2:9e:34:d1:7d:9d:24:
bc:47:fe:0d:85:21:5c:b2:ef:a2:9e:e7:95:86:ef:
d5:32:ee:ed:cc:d5:2f:eb:58:f2:c4:ec:56:a3:19:
80:26:09:73:3a:bc:8c:60:f2:dc:6b:68:06:04:15:
ee:38:84:db:3c:9d:55:ec:54:67:78:6a:93:11:a8:
66:19:cd:15:53:58:3d:61:6f:61:c3:c9:20:53:1a:
bc:98:45:71:b0:2d:8d:71:dc:71:32:fb:36:ee:05:
39:a4:e5:17:14:40:b5:89:86:ed:7a:f9:88:fe:74:
b3:c1:8a:54:47:5f:0a:52:0f:fe:10:44:5b:2b:42:
9e:1f:0f:87:f7:9a:01:ae:d9:bd:de:a2:a1:f9:42:
d9:09:fa:6a:72:28:d7:ad:65:ad:f1:2a:99:d2:95:
67:dc:cc:ce:b8:40:d9:30:5a:da:ff:44:bf:79:b6:
2c:75:d7:98:f5:2f:71:0e:90:02:1a:1f:1e:eb:25:
7d:cb:29:5e:d9:e3:a3:66:7a:6e:fc:b9:c4:f5:35:
34:e9:04:7a:6b:dd:e4:e9:9a:fd:96:5d:7b:44:b3:
91:1d:31:b4:94:b5:52:b8:09:e7:ba:45:ad:aa:f0:
5e:77:bb:93:47:1b:d2:e6:ed:a3:c1:fa:6f:10:22:
4e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6E:47:7B:EC:AB:E7:DA:01:4C:AC:18:08:10:6C:76:18:CD:A1:6C
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DD9CF2A6FB1411EEB668A346017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.230.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:59:3f:4b:a3:a2:d9:3c:b5:d1:88:92:62:6a:a3:e7:98:49:
cd:4a:9e:6c:df:cf:76:9a:8a:e5:19:f6:95:2a:0d:43:7b:1a:
c1:0a:77:1d:46:4b:be:8c:77:a5:b0:c6:87:30:17:d3:83:4e:
89:0b:72:6a:b8:98:de:f9:a1:a7:97:ab:98:95:a4:23:95:74:
29:e6:16:5f:58:2f:83:2b:11:37:6d:48:4f:ac:71:26:0b:a7:
f1:55:fd:8f:c7:75:35:68:67:bf:5f:de:f2:f2:8d:a9:7c:e7:
ee:ed:9e:ce:dd:28:70:57:71:45:d9:c5:28:c3:67:23:52:74:
49:d8:42:b4:13:e6:8e:40:d8:e9:b3:4c:61:3b:93:84:ca:d8:
62:a7:fd:5d:be:2f:21:f3:17:17:40:a5:59:31:68:6e:d9:10:
26:e2:c4:57:d8:51:bb:e5:51:77:a5:86:13:b6:20:37:5c:68:
8e:ff:78:c6:d3:1b:46:2c:b0:80:c2:06:37:9b:83:4e:58:33:
1a:ce:3f:29:3d:18:eb:a2:9d:2d:63:92:b4:f2:9e:88:ac:6b:
e6:1b:c2:70:87:2c:1a:20:6e:61:5e:9b:99:a3:e0:0d:43:83:
d0:93:fd:55:56:07:ba:9c:a5:0b:a9:e6:45:76:c5:9a:15:40:
0d:70:af:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:34 2024 by rpki-client on console-fra.rpki-client.org