Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/06EC9B8EC4CE11EE9CCFD65E775412E6.roa
File: 06EC9B8EC4CE11EE9CCFD65E775412E6.roa (raw, json)
Hash identifier: yxTa4SshiNJ7DHcSq54/OxpqqW1oYG+0q8Vz/U0eUK4=
Subject key identifier: A1:7E:66:2D:70:31:12:02:5D:8D:AB:FC:AB:93:A0:31:4A:BC:12:05
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 13
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/06EC9B8EC4CE11EE9CCFD65E775412E6.roa
Signing time: Tue 06 Feb 2024 08:59:25 +0000
ROA not before: Tue 06 Feb 2024 08:59:22 +0000
ROA not after: Sat 06 Feb 2027 08:59:22 +0000
asID: 36905
IP address blocks: 154.126.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 08:59:22 2024 GMT
Not After : Feb 6 08:59:22 2027 GMT
Subject: CN=65c1f4ed-c173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cc:0d:49:54:3e:43:fe:ac:bd:72:2e:68:21:
07:bc:2e:2d:92:83:c7:94:2a:f1:b2:db:83:29:c8:
70:08:f0:98:9a:d6:73:2b:b5:1a:27:73:92:f9:83:
a3:e0:d2:f9:21:79:e0:8f:12:37:c3:73:8b:c6:a2:
bf:f9:40:08:a8:be:29:fe:a3:8b:4c:a2:63:31:6c:
94:b2:1f:56:3a:91:b1:d8:e2:b1:27:0e:c7:17:10:
ca:93:1f:c3:3f:65:47:fe:b7:4f:79:f0:75:9f:3f:
dd:90:b8:10:25:6b:af:ba:0b:b7:7f:36:03:8d:e8:
aa:cf:89:77:60:9b:fc:e6:e9:d9:3d:7d:88:c2:6d:
32:ed:6b:a2:89:61:7d:07:a1:38:65:76:83:1d:36:
95:85:81:e8:6c:4b:dc:0f:ef:ea:89:05:41:4d:49:
6b:d0:0c:b4:37:b5:b1:4c:d9:50:ce:24:c8:f8:d3:
14:35:9a:8e:97:4d:7b:36:ea:58:c9:19:24:d7:a0:
78:96:84:89:40:de:d7:d0:0c:26:c5:85:bc:7a:6c:
67:48:ab:20:c4:b1:5a:8b:cc:51:77:ef:19:2c:83:
39:c9:e2:2b:e9:1b:3a:58:90:d8:29:4c:0b:28:f8:
5c:df:0b:4f:b2:b7:20:76:02:df:80:4a:7a:94:26:
33:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7E:66:2D:70:31:12:02:5D:8D:AB:FC:AB:93:A0:31:4A:BC:12:05
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/06EC9B8EC4CE11EE9CCFD65E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.167.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:7d:21:2c:32:91:e9:78:e1:75:f8:13:ff:bf:6c:51:c8:4c:
2a:a6:2a:8f:fa:89:7f:eb:a6:56:17:a6:81:d5:36:73:71:c2:
07:29:a4:e6:93:f4:36:bf:dd:68:eb:34:1b:e2:c1:e4:31:c1:
61:8f:b7:37:07:a7:a0:44:67:72:f8:05:d8:ca:5b:db:4c:1b:
73:85:40:55:5f:75:41:ff:ba:74:e4:b3:fb:0b:90:ae:fb:1e:
3b:2c:50:68:c6:35:37:e0:b0:cf:ad:de:02:bd:2d:49:61:77:
95:e0:4a:40:ae:03:d2:03:02:03:79:99:63:bf:8b:4f:ed:c3:
2d:c3:8c:61:79:26:de:08:3c:b1:87:39:bd:3e:73:a9:e7:d1:
0b:0d:db:b6:57:93:a6:d9:38:33:6d:61:10:13:c7:cd:71:62:
ee:b8:88:ae:c9:a1:c9:2f:9d:7a:1f:f0:e7:66:44:bd:d4:02:
2e:0f:49:05:36:03:ec:8c:6b:16:05:95:0a:04:13:b2:3a:51:
a6:43:8f:6a:a5:5e:5d:61:d6:61:60:89:e6:dc:97:58:91:4b:
c5:8d:eb:b1:e7:8c:cd:f8:c5:42:ce:49:27:af:76:bb:f8:20:
8e:e4:a0:d4:7e:96:70:69:52:d9:da:28:da:0c:9a:75:5d:d2:
80:05:b9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:33 2024 by rpki-client on console-fra.rpki-client.org