Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B56DD28C1C11ED872D87BBF1222468.roa
File: E0B56DD28C1C11ED872D87BBF1222468.roa (raw, json)
Hash identifier: gv0QvWLe0T4Np2DiWpLdM4L0imYAUOJ+dfm8W9uU/Ac=
Subject key identifier: 67:41:BF:5D:D8:9A:06:25:6E:39:19:AA:E1:4B:7C:51:A2:56:63:5B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B46
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B56DD28C1C11ED872D87BBF1222468.roa
Signing time: Wed 04 Jan 2023 10:45:18 +0000
ROA not before: Wed 04 Jan 2023 10:45:14 +0000
ROA not after: Sat 04 Jan 2025 10:45:14 +0000
asID: 212238
IP address blocks: 154.16.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2886 (0xb46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jan 4 10:45:14 2023 GMT
Not After : Jan 4 10:45:14 2025 GMT
Subject: CN=63b558be-5967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:87:0e:a6:0c:08:11:a8:00:2d:f5:f4:e1:c7:
4b:73:a6:36:26:03:ee:fb:78:69:20:46:77:4c:dc:
99:6a:c3:d3:8e:0d:62:45:3c:cd:ac:3d:b9:3f:b3:
fb:f3:b3:9d:28:02:77:06:33:6b:f7:3d:a8:f2:fc:
70:ee:01:40:66:f4:34:24:0c:46:aa:eb:9e:7b:97:
8a:bb:92:2f:fa:22:f3:81:83:06:2e:57:76:39:09:
96:38:81:c8:bf:84:11:9a:5d:fa:a4:0f:45:ec:4c:
64:b2:2f:b2:39:28:25:38:10:a8:f4:71:57:e2:39:
36:a6:d0:89:8a:52:7c:e0:c2:d5:f8:51:89:99:53:
ef:a8:f0:4e:9b:e7:27:fb:ec:61:75:02:0f:bb:8a:
b3:23:e2:d4:a9:82:e4:65:c8:05:52:08:6e:31:a2:
c9:9b:42:be:55:6e:1f:4d:39:23:c6:11:41:fd:60:
38:31:21:bb:90:8f:11:18:63:9a:19:a1:b8:b8:75:
02:59:bf:90:24:30:0a:ff:de:ae:5a:af:1d:40:11:
f4:71:f6:16:5b:d8:c3:89:f9:d5:de:5a:fe:43:15:
3d:7e:00:0c:f0:0f:23:40:d8:da:a2:31:93:95:b8:
11:2a:c6:3a:fe:98:dd:6a:aa:5e:cf:49:3b:c7:2c:
e9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:41:BF:5D:D8:9A:06:25:6E:39:19:AA:E1:4B:7C:51:A2:56:63:5B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B56DD28C1C11ED872D87BBF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.209.0/24
Signature Algorithm: sha256WithRSAEncryption
48:89:67:1c:03:58:d5:1a:82:ef:4d:ea:17:a9:14:cf:60:16:
d2:3d:27:ba:24:b5:87:2b:1e:7c:cd:8f:22:66:c2:4e:a9:77:
8e:77:d4:d5:65:ab:20:d0:ac:d3:88:f7:6f:18:44:e5:7d:ac:
4e:93:5a:a2:98:3e:ae:25:a6:94:1b:2b:4a:9c:5f:a4:7e:20:
1a:73:d4:46:cb:5c:04:22:b6:94:2d:57:82:38:a9:1b:d6:a1:
ff:49:86:96:6f:de:74:b5:4d:81:74:a3:54:33:82:57:2a:fa:
88:ab:86:9e:b1:b1:e7:42:f1:a0:fe:6f:9a:ea:70:84:3b:29:
fa:88:46:0d:f3:b4:9e:fe:87:c5:aa:ed:87:9e:f4:10:29:54:
ff:2e:ba:a8:21:99:c5:2b:5b:ec:b0:b3:21:51:b2:1d:e0:71:
75:d8:e2:ac:30:94:d9:ba:a5:7c:d3:fc:74:4f:94:1d:5a:74:
82:dc:05:ea:c1:c0:bb:da:8e:b9:32:e0:40:36:47:cf:76:ab:
85:08:c0:67:52:b6:9c:a1:c6:6f:bf:ec:50:30:2a:77:0f:de:
a3:8f:35:e7:c3:06:98:ec:c8:29:9c:43:60:c7:f3:01:3a:4f:
ce:90:87:48:71:43:73:af:72:f2:ca:e0:c2:33:9c:6d:a8:a0:
86:31:f1:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:35:46 2024 by rpki-client on console-ams.rpki-client.org