Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E2E46620D85911EC944EA180F1222468.roa
File: E2E46620D85911EC944EA180F1222468.roa (raw, json)
Hash identifier: XuME5/syarmCE9HLdzkT2v60YqP7n5z2co6OKOK8lbE=
Subject key identifier: 9F:D5:5B:22:29:10:0B:17:CB:F6:C1:D3:71:41:E4:27:C8:73:18:6E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 085E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E2E46620D85911EC944EA180F1222468.roa
Signing time: Fri 20 May 2022 16:28:31 +0000
ROA not before: Fri 20 May 2022 16:28:27 +0000
ROA not after: Mon 20 May 2024 16:28:27 +0000
asID: 212238
IP address blocks: 154.16.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2142 (0x85e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 20 16:28:27 2022 GMT
Not After : May 20 16:28:27 2024 GMT
Subject: CN=6287c1af-c394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:54:93:a9:61:f4:05:a0:43:1d:a1:5f:2f:68:
81:ab:a8:f5:f9:1b:7d:f6:65:7f:ff:e4:d1:c7:b5:
59:18:e6:a3:bf:e4:db:fa:f0:a6:40:b4:cd:df:c2:
62:db:57:22:b7:df:30:96:3e:1b:66:22:26:e6:5d:
ce:01:e9:98:97:b9:75:0f:a8:b4:7f:17:e1:d6:fa:
a2:3e:2a:79:cf:de:3e:be:10:f2:44:ef:b7:ff:e7:
91:02:b8:3c:92:07:3b:8e:77:f2:0f:f6:f0:03:b5:
bf:ac:81:a8:76:79:ef:a8:d2:da:fe:a2:b5:3e:52:
3f:1c:89:4e:97:12:80:25:77:16:d7:c2:0a:9b:8c:
8a:4d:fd:45:9d:47:49:ca:dc:28:4a:30:b0:cd:93:
81:2c:b7:4c:d0:fa:20:a0:6b:56:25:6c:e0:de:35:
fe:6f:b8:dc:5c:30:80:26:72:73:c3:84:a4:40:61:
63:0a:9b:d8:7d:1d:26:f1:05:5d:0d:7b:14:0a:e6:
6b:23:2d:dd:a0:d9:4c:21:90:f7:f0:49:ec:37:2d:
9e:4a:df:29:ff:39:79:ac:03:cf:5c:4a:2d:d6:1b:
7b:df:58:6f:05:d4:93:9a:28:8e:2e:48:2f:2b:c4:
c4:eb:91:c7:a3:0c:d5:8e:c6:e9:f3:83:d0:0c:ca:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D5:5B:22:29:10:0B:17:CB:F6:C1:D3:71:41:E4:27:C8:73:18:6E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E2E46620D85911EC944EA180F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.139.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a9:a3:f7:b3:d8:0e:ae:bc:1f:e9:42:9d:6a:74:92:06:73:
4f:b2:61:f5:a8:5a:b6:ba:4c:20:1e:b8:20:16:49:fb:03:44:
c7:e1:3b:f1:58:df:b1:76:f2:18:d5:42:5d:18:97:89:ba:72:
47:31:75:70:0b:1c:e0:69:39:52:fe:f7:b6:48:dc:de:68:e9:
d3:21:8b:67:cd:b5:40:d8:5d:1d:a8:07:b8:ec:29:a6:d1:58:
b8:c0:6b:8c:4e:17:69:0e:28:fd:52:fb:e6:36:75:6d:7c:a0:
71:43:0c:88:c8:1c:8d:b2:13:c7:cb:8c:06:26:04:c7:d7:8d:
e8:97:07:b8:5d:b3:d4:aa:08:af:7d:c1:f1:60:38:03:96:8a:
79:f4:cc:2b:b4:be:83:87:99:7e:36:5d:0e:66:27:b1:e9:a7:
80:cc:b1:30:06:9f:6e:c9:d7:3d:e0:e3:ea:fb:6f:f0:6a:93:
63:fe:67:2a:74:dd:9a:29:8c:13:57:f5:8f:72:de:75:9f:d1:
b8:6a:37:96:3d:27:f7:55:52:06:90:e2:7b:4c:02:15:29:d6:
d1:7d:32:8e:6b:c6:62:68:1f:37:78:0b:b3:0d:99:00:e9:1f:
46:60:74:44:f9:2b:19:05:d6:c0:18:9f:5e:ac:66:1e:af:15:
6e:17:87:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:49:53 2024 by rpki-client on console-fra.rpki-client.org