Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E80B35BA7FBB11EEAA3F242C4AD9E6FC.roa
File: E80B35BA7FBB11EEAA3F242C4AD9E6FC.roa (raw, json)
Hash identifier: YUY2y4eIpfdA2DycDVDf4O4ZVAQBwy3RxBMiw7vfa7o=
Subject key identifier: 3D:FF:83:07:95:43:32:E0:5C:A3:DB:12:E5:72:8C:13:7E:E5:EC:90
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1310
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E80B35BA7FBB11EEAA3F242C4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 11:25:52 +0000
ROA not before: Fri 10 Nov 2023 11:25:49 +0000
ROA not after: Mon 10 Nov 2025 11:25:49 +0000
asID: 9087
IP address blocks: 154.16.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4880 (0x1310)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 10 11:25:49 2023 GMT
Not After : Nov 10 11:25:49 2025 GMT
Subject: CN=654e1340-a4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:18:d6:ad:4b:6a:c8:3a:6e:fc:3d:fd:a8:
15:61:ad:4a:84:9d:cb:9f:f7:0d:6c:ce:63:18:fd:
26:5e:55:19:f1:e8:4e:1f:d5:05:78:64:d6:6d:16:
18:e2:0f:e2:34:8f:95:0d:84:7f:8a:03:f8:ba:34:
3a:7a:23:c8:06:d9:30:1d:48:dc:ba:3a:95:3d:2b:
b7:89:83:a4:7c:45:83:fd:46:7a:2f:d9:e2:5e:57:
f7:ca:e8:11:ec:de:bc:e8:15:2f:30:ea:56:51:57:
be:f5:88:0a:60:87:be:bd:4d:25:7f:be:8b:87:93:
a4:36:ff:54:32:0c:8e:89:96:49:c9:30:7d:ce:cb:
5c:74:04:cb:ba:c3:81:c8:87:79:ad:4d:57:4f:5b:
bf:d9:e2:87:bc:02:84:d0:89:23:70:24:67:0c:09:
61:4e:f4:3c:93:60:c5:eb:d8:4f:60:19:c3:8a:28:
68:61:89:7f:02:2e:40:47:1e:42:dc:02:0c:c1:70:
f1:e8:dc:6e:08:bb:0e:ba:68:fd:e0:b8:d9:ee:60:
19:3f:21:33:16:a4:55:15:b5:bd:aa:65:fa:99:d4:
8d:fd:76:f8:60:60:80:f2:9b:1e:ce:a0:bc:6a:92:
28:36:a9:68:93:24:79:9d:1b:5b:55:6c:03:c6:06:
8b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FF:83:07:95:43:32:E0:5C:A3:DB:12:E5:72:8C:13:7E:E5:EC:90
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E80B35BA7FBB11EEAA3F242C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.18.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:5b:c8:5d:9b:c9:d6:0b:44:9c:d4:88:87:c2:17:43:70:9a:
4a:ce:ba:db:5d:32:ba:57:f1:cc:73:d4:ab:ec:72:cc:14:e9:
21:0e:34:79:00:06:e5:3b:39:51:76:b2:af:9f:bd:83:25:79:
97:66:6f:31:9b:e9:52:53:02:70:25:1c:ab:79:22:c5:4d:47:
f9:2b:e0:88:3d:b8:0e:db:32:c5:cb:15:d3:92:5d:3e:e0:9a:
1d:bb:ca:33:03:75:04:c3:13:31:d6:ef:92:0b:5b:f6:ab:38:
ea:f3:90:ba:2b:75:33:72:55:15:4a:55:05:a0:65:f8:fd:1b:
83:a3:2b:6a:53:8c:a9:34:0f:24:2f:be:8a:bc:a0:10:93:c9:
51:6b:22:1c:33:c8:ea:c2:f2:20:00:5d:a1:ca:48:13:3d:1a:
45:3c:aa:9d:64:ae:d3:40:88:18:1c:28:1e:02:fb:18:cd:d6:
c9:e3:ed:e9:5a:53:27:a5:6b:9b:ad:31:a6:35:7f:8a:96:75:
d8:7a:0a:8e:59:b7:fd:96:ff:9f:28:04:11:11:3d:1c:ea:e0:
b7:9e:a5:51:6e:71:1c:bb:99:77:5d:a8:1b:65:64:4d:72:9b:
bb:0b:9f:0b:cf:1c:2b:41:0b:75:0e:3b:3a:01:e5:cd:b3:46:
c2:95:7c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:37 2024 by rpki-client on console-fra.rpki-client.org