Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/48E43AECC4D311EE8C1B3F67775412E6.roa
File: 48E43AECC4D311EE8C1B3F67775412E6.roa (raw, json)
Hash identifier: u/n56Tta7OlwGuEqOpX71XLsZT2jKpBxkP39WXUlLLc=
Subject key identifier: B4:C7:CD:33:34:3A:9B:AA:30:E2:E4:0C:9C:BF:41:69:44:B4:3C:77
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 35
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/48E43AECC4D311EE8C1B3F67775412E6.roa
Signing time: Tue 06 Feb 2024 09:37:04 +0000
ROA not before: Tue 06 Feb 2024 09:37:00 +0000
ROA not after: Sat 06 Feb 2027 09:37:00 +0000
asID: 36905
IP address blocks: 154.126.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53 (0x35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:37:00 2024 GMT
Not After : Feb 6 09:37:00 2027 GMT
Subject: CN=65c1fdbf-159e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:18:91:4c:ad:6a:44:eb:cc:57:74:6b:60:
bf:20:67:9d:04:21:6e:95:af:2d:01:f0:f2:2b:68:
d4:6c:d8:fe:fb:e5:61:6c:f1:03:ea:49:29:21:4e:
6e:47:76:be:2e:02:5c:da:52:c8:eb:06:5f:a1:29:
c9:99:3a:34:b9:3b:82:f7:cb:ee:1b:c9:1f:53:cd:
26:69:d3:39:92:4d:e0:69:ef:3d:fb:9c:e6:4e:15:
34:b7:86:44:04:b0:63:87:55:41:28:9c:b1:24:ca:
dc:69:c7:01:63:fd:71:bb:f5:50:4e:c7:e8:d9:1a:
a3:4f:8c:93:9a:a9:95:b0:80:83:6f:2a:d2:82:f9:
9e:37:59:ce:48:bd:0d:80:21:67:32:7b:b0:d8:cf:
4a:08:26:f0:43:9e:1d:42:26:9b:dd:9f:36:70:ff:
9a:c8:e2:65:3d:7b:aa:09:82:55:cf:c3:82:b0:e2:
f6:56:73:51:d2:f1:cd:6d:c2:37:d2:be:48:ea:b1:
7a:6d:38:a9:44:25:2c:f5:91:83:52:38:c7:eb:48:
07:ca:b9:71:f4:56:73:aa:bd:ec:00:e6:15:a8:ff:
c9:2b:6c:98:00:bb:55:70:18:0c:72:d2:5f:cb:cb:
6d:7b:ac:5e:9b:b3:94:ce:3f:19:27:67:9a:46:a3:
68:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C7:CD:33:34:3A:9B:AA:30:E2:E4:0C:9C:BF:41:69:44:B4:3C:77
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/48E43AECC4D311EE8C1B3F67775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.182.0/24
Signature Algorithm: sha256WithRSAEncryption
01:cf:5f:34:a2:54:b2:62:87:1e:d0:23:ef:3c:8b:fa:7f:1e:
15:2e:3a:7c:f4:b6:54:f4:c0:43:b2:6a:87:24:42:98:a8:6a:
08:13:1d:51:b7:95:dd:16:1e:f7:c2:e0:95:8f:87:81:b6:c9:
93:de:9a:9c:fa:42:cd:75:67:09:78:f4:91:77:0a:57:a1:94:
aa:18:15:71:64:72:9d:6e:35:28:2b:c2:75:3b:2d:ea:88:17:
71:9c:41:ad:30:04:cf:94:df:6a:c0:6c:c6:24:e5:f9:31:c7:
cb:f8:89:94:a9:8d:7e:35:ed:43:fa:31:1c:de:8a:00:91:43:
26:64:71:a9:ab:e5:ba:42:34:f5:42:7e:e6:e2:d3:08:95:6e:
cc:b3:54:b0:34:17:60:c2:a2:f9:c3:db:6d:18:11:b6:ac:5a:
00:62:cb:20:9e:23:2b:7f:c1:7d:5e:e5:0a:92:ac:e6:02:0d:
88:fe:f0:34:8d:35:96:a7:21:cb:ac:a1:8e:f7:86:c2:90:68:
c5:3c:9d:49:24:1b:c9:58:eb:39:07:d0:97:19:e8:e4:38:9c:
d2:dc:cb:a8:c1:5e:df:bf:15:03:5e:75:70:78:64:61:1d:a0:
6b:5b:f2:a3:2a:32:5a:6b:f0:5b:52:c7:05:6b:42:14:75:15:
a5:f3:dd:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org