Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F3B34EEE87BC11EEA104B3884AD9E6FC.roa
File: F3B34EEE87BC11EEA104B3884AD9E6FC.roa (raw, json)
Hash identifier: lnODbPB1P90J5jvyW/NA6d3sjPX4fYQMALqyW8Xh2c0=
Subject key identifier: 16:E2:C2:F3:8D:D6:F1:EA:B6:D4:4F:06:AA:FC:9E:20:A0:FE:F8:8B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1329
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F3B34EEE87BC11EEA104B3884AD9E6FC.roa
Signing time: Mon 20 Nov 2023 15:53:31 +0000
ROA not before: Mon 20 Nov 2023 15:53:24 +0000
ROA not after: Thu 20 Nov 2025 15:53:24 +0000
asID: 62390
IP address blocks: 154.127.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4905 (0x1329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 20 15:53:24 2023 GMT
Not After : Nov 20 15:53:24 2025 GMT
Subject: CN=655b80fb-98fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:4c:3f:89:64:00:88:73:4a:2e:5d:31:8c:
2d:fe:10:17:24:28:8e:88:28:32:ee:82:a9:46:cc:
8a:29:02:63:c8:b4:91:11:ad:20:70:02:5a:59:cc:
86:8d:80:78:c9:44:0b:4d:bc:0c:e3:4b:47:ed:79:
a2:4c:bc:81:73:66:99:e9:54:48:52:ca:75:4b:e1:
85:de:b6:97:76:c5:8c:f1:a1:af:5e:14:d5:8e:ca:
ae:ef:13:91:22:ce:b1:64:88:61:e6:17:58:21:2b:
9c:01:37:26:de:44:ab:4f:6a:f3:f8:b4:d5:bc:8c:
e4:ee:f8:d6:35:af:68:3b:1a:f2:31:9c:14:3f:c3:
98:68:b9:96:53:21:d8:8e:94:b0:1e:b9:07:d3:67:
cf:79:46:22:06:f4:7e:42:49:cd:17:c6:97:83:8a:
39:c0:48:a5:45:b6:df:c3:73:71:47:a2:72:1b:69:
ca:09:5b:12:b8:ef:29:d1:52:e6:fa:15:bd:a0:e9:
1f:3d:c7:85:44:b1:30:6a:0e:92:be:3c:b2:e2:69:
08:11:09:6d:75:8d:f1:b2:30:68:76:bf:f2:d1:3b:
6f:0a:53:6c:8a:fc:5e:22:56:b8:2f:6e:6d:09:2f:
73:c3:fa:8c:77:82:69:43:81:9e:cf:b1:6e:91:4a:
7b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E2:C2:F3:8D:D6:F1:EA:B6:D4:4F:06:AA:FC:9E:20:A0:FE:F8:8B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F3B34EEE87BC11EEA104B3884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.50.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:c9:15:41:93:36:8b:51:a9:83:90:37:ad:ee:4e:ac:26:21:
5f:43:f5:85:11:ed:b3:35:ec:d2:82:73:ca:8c:7f:47:c8:0b:
89:f9:48:a9:db:27:bb:e3:d7:b4:64:b5:8f:05:21:7c:85:a2:
22:6f:fb:95:09:c6:7d:71:ec:2a:66:3f:4e:4b:5e:51:5b:cf:
84:3e:4c:43:05:57:93:12:71:a8:c0:8c:17:3f:5a:cf:87:14:
c1:f4:bc:77:57:a7:b2:17:ea:2f:32:57:7e:90:47:fb:f0:31:
ca:3a:37:f3:cf:55:61:22:f1:f7:26:a8:cd:ba:ad:3b:3c:4a:
6b:40:94:5d:f5:b5:4c:1e:e1:e2:05:92:19:64:10:ea:22:2d:
5e:90:0b:17:c2:c7:1f:63:1f:94:5d:e8:a8:3c:90:96:fb:6e:
55:94:a8:a6:23:0a:c3:4c:49:bf:c8:d2:48:a7:7c:aa:ce:aa:
ab:4d:a3:9d:41:ad:5d:9f:01:84:ae:88:a2:8c:c8:78:88:f4:
30:0b:aa:65:81:e6:32:bf:f1:ff:38:8e:32:76:25:0b:80:31:
30:93:65:79:d9:e7:7f:91:95:f1:c5:33:47:93:c9:cf:11:63:
30:db:e2:65:bd:16:8d:fa:5f:ed:0f:20:00:75:b7:57:1f:3f:
67:d6:9e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:37 2024 by rpki-client on console-fra.rpki-client.org