Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4C0E8C0EC4C911EE87647756775412E6.roa
File: 4C0E8C0EC4C911EE87647756775412E6.roa (raw, json)
Hash identifier: 3hEwrhsuSNEta/SbVkYuC8E8cEE9Br3Bj2hXmqXW6Og=
Subject key identifier: 15:89:22:E5:82:00:86:BD:CF:79:1D:9E:FF:9E:EA:E2:1F:97:F4:49
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 0B
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4C0E8C0EC4C911EE87647756775412E6.roa
Signing time: Tue 06 Feb 2024 08:25:34 +0000
ROA not before: Tue 06 Feb 2024 08:25:30 +0000
ROA not after: Sat 06 Feb 2027 08:25:30 +0000
asID: 36905
IP address blocks: 154.126.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 08:25:30 2024 GMT
Not After : Feb 6 08:25:30 2027 GMT
Subject: CN=65c1ecfe-8fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:40:79:62:95:c9:c6:73:45:e1:fd:a0:1a:3e:
00:03:eb:84:c6:fd:46:b9:ba:87:6e:64:76:2d:ae:
d5:f6:db:90:8f:1f:99:fd:8a:14:62:7f:f4:69:c1:
98:1d:8f:53:0f:d2:5f:24:b1:56:2d:dc:58:9d:dd:
53:7b:e4:f7:2c:ec:ae:df:3c:5a:57:bd:6c:41:d8:
94:d3:a3:c3:1d:9c:8c:13:fd:82:d9:98:58:f9:4c:
46:3e:8a:50:86:53:38:b1:57:9e:99:7d:ec:54:63:
f3:38:93:56:3c:4b:48:e9:f0:46:ec:80:89:04:24:
c0:80:64:b5:5c:03:3c:04:1d:1f:eb:3c:6a:0d:62:
a4:bb:18:8e:0a:1c:5e:92:a5:86:42:20:2d:b6:5e:
75:b8:4f:12:75:94:ba:eb:ed:a1:29:ab:91:e7:e4:
7d:8b:8d:07:46:b3:4d:05:a2:ba:a5:38:fc:1c:a0:
52:80:42:fd:4b:e3:c7:5b:65:a0:7b:72:1d:08:a2:
7f:be:6a:f7:17:69:f7:7d:0c:10:f2:4f:a6:a6:f5:
7c:8d:61:6b:f2:4c:be:0d:fd:a8:94:08:24:1a:c9:
5d:ec:28:a0:41:2a:b8:65:d9:61:10:4c:ab:2d:39:
68:48:63:ed:18:7c:74:3f:71:85:12:d0:59:41:b2:
f0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:89:22:E5:82:00:86:BD:CF:79:1D:9E:FF:9E:EA:E2:1F:97:F4:49
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4C0E8C0EC4C911EE87647756775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.163.0/24
Signature Algorithm: sha256WithRSAEncryption
51:90:a3:a2:2d:de:48:9a:2c:de:a3:c3:db:a7:39:e6:f9:70:
ad:a6:43:51:6a:28:11:8d:90:48:ce:01:b7:3d:29:79:13:d8:
ed:14:38:70:08:66:e5:d5:8b:fe:e2:52:5a:db:36:d3:ff:ab:
3a:6a:15:46:d6:15:1b:50:aa:6f:52:2d:60:16:63:e3:2b:94:
ef:43:7d:da:d8:9b:d7:ad:5c:0c:d4:b4:c1:d8:a6:2d:88:fa:
97:6e:2e:21:6c:7a:8e:20:87:f3:76:db:0a:60:9b:8e:88:c2:
51:9e:12:90:7a:f7:26:7d:c2:20:e9:3d:23:de:41:3d:f7:15:
2a:0b:d2:dc:49:60:c9:d3:f4:22:69:f6:0b:43:14:77:01:b1:
65:c8:9e:e2:ac:6c:6f:9f:6d:71:be:31:7d:cd:ef:f6:f0:22:
73:fd:5e:cd:93:44:69:9a:b0:89:de:c7:7f:dd:4f:b1:b8:79:
97:b9:61:ba:ae:95:2d:10:54:36:12:d9:b0:d4:3f:65:f5:49:
a2:75:47:d5:b2:a0:e0:60:a4:4a:c1:f6:07:e2:ac:cd:8b:2b:
4b:28:04:fe:9b:7a:5a:15:e5:5d:95:ee:48:f8:b0:8f:9e:22:
e0:b6:62:90:10:88:b7:f6:e3:4b:41:b6:7a:62:21:66:bd:5d:
75:bc:73:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org