Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD8A111498C911EE9456AE19D25BE465.roa
File: FD8A111498C911EE9456AE19D25BE465.roa (raw, json)
Hash identifier: nhvhNkpYoudxBdXZeurJ7kwCRSy0dg0GLYSoT/9ylPE=
Subject key identifier: 07:F5:FC:AB:24:DF:AB:2B:CF:CC:FF:A1:8F:DF:C1:5A:4C:E2:E5:F9
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 13D5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD8A111498C911EE9456AE19D25BE465.roa
Signing time: Tue 12 Dec 2023 08:39:40 +0000
ROA not before: Tue 12 Dec 2023 08:39:37 +0000
ROA not after: Fri 12 Dec 2025 08:39:37 +0000
asID: 397423
IP address blocks: 154.127.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Dec 12 08:39:37 2023 GMT
Not After : Dec 12 08:39:37 2025 GMT
Subject: CN=65781c4c-e8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:5e:3f:88:6c:35:36:8b:b7:12:d6:c1:1f:
33:6e:0b:9f:80:f6:d8:36:41:54:06:e2:8f:12:d0:
61:ba:e7:dc:5e:be:ac:ab:e6:5b:76:b4:60:17:30:
4c:6f:81:f7:dc:e1:a0:a8:b8:8d:a0:ea:90:0c:31:
16:14:05:33:1d:8c:9d:a9:68:a0:7b:e1:4f:67:f5:
4f:5d:d3:1b:ba:58:c4:00:e3:fc:90:df:9c:62:43:
ff:92:f9:a4:63:1e:97:f6:24:7d:2d:d8:52:f6:8f:
56:4b:dd:39:64:10:0e:89:99:b1:58:6a:29:bb:92:
45:05:a9:31:b3:4b:8f:05:0a:1d:52:4c:9b:0e:7c:
62:63:cb:24:01:f8:cb:6e:9f:43:55:b8:16:e7:a7:
34:3f:f9:c1:c0:35:c1:e0:16:d2:55:c4:ec:f7:53:
84:84:80:b7:1d:df:3c:f1:4c:12:92:70:af:ed:17:
e8:6e:c5:36:4f:da:74:77:13:58:27:0f:46:96:50:
d7:66:60:e7:66:1b:48:5e:7e:ec:3e:08:48:d3:b7:
bf:ea:fe:05:54:c3:15:36:76:8b:6d:6c:cf:0b:34:
4a:6c:a5:7a:e6:7c:3b:4f:0c:71:d2:11:41:f9:81:
c7:37:da:7d:85:a1:3a:b1:ba:8f:88:24:ae:25:f3:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F5:FC:AB:24:DF:AB:2B:CF:CC:FF:A1:8F:DF:C1:5A:4C:E2:E5:F9
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD8A111498C911EE9456AE19D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.48.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:af:fb:51:e7:9a:39:19:5c:e8:d7:4c:8e:a1:95:02:52:c4:
f9:58:d0:7b:32:7e:8e:23:b6:8c:45:42:8f:e7:08:27:59:0e:
3f:d9:00:e8:32:c7:81:49:15:52:52:42:d5:20:8e:49:74:67:
d6:95:97:be:1c:8f:9b:60:9b:1a:ba:87:a1:5a:d0:23:29:ab:
e0:1f:20:4d:2e:06:7e:70:79:26:c0:cd:73:07:e6:4d:91:35:
07:8e:a7:37:f9:f5:45:e7:57:20:86:53:ef:50:e4:1c:60:24:
04:6d:0f:50:18:b2:4d:4e:3e:9e:aa:b1:a0:6c:48:ee:03:09:
57:54:c2:48:ce:1f:70:6c:af:e4:c9:c7:eb:23:20:b3:1d:08:
44:4f:bc:9f:e1:cd:ce:83:61:bb:b5:b3:63:20:78:9f:3d:22:
b9:fd:65:32:66:55:68:ef:36:25:c7:10:4a:c7:ec:d3:a7:93:
13:2d:8e:2a:63:a0:58:ae:75:5c:bc:7d:31:c1:e2:85:ef:d7:
28:a6:b6:42:38:a0:91:5d:ef:a0:31:9a:65:22:c4:cd:25:5e:
2c:97:de:48:bf:f9:53:33:52:36:74:06:41:b2:ce:26:52:68:
c9:1d:45:34:cb:79:48:b4:2e:fa:dd:e7:1d:ea:cb:1a:52:93:
3f:44:cf:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:37 2024 by rpki-client on console-fra.rpki-client.org