Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4F31EC96C4CE11EEA565525F775412E6.roa
File: 4F31EC96C4CE11EEA565525F775412E6.roa (raw, json)
Hash identifier: HcZFH7qDjDPGPIsCX8qhmZSQf24/4pPHFAyHS4PESuo=
Subject key identifier: 94:1D:CC:3F:98:87:C5:A4:B4:40:39:E7:57:EB:2A:B3:24:ED:07:13
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 17
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4F31EC96C4CE11EEA565525F775412E6.roa
Signing time: Tue 06 Feb 2024 09:01:27 +0000
ROA not before: Tue 06 Feb 2024 09:01:23 +0000
ROA not after: Sat 06 Feb 2027 09:01:23 +0000
asID: 36905
IP address blocks: 154.126.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:01:23 2024 GMT
Not After : Feb 6 09:01:23 2027 GMT
Subject: CN=65c1f567-b740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:58:37:29:83:95:46:57:b5:2b:9b:f5:0c:
dd:0f:f6:e9:70:d7:d4:5a:4c:dc:cc:3b:58:d8:d1:
96:66:fd:27:2c:e3:32:c7:32:68:9d:aa:a3:64:bd:
3d:36:5c:47:23:59:6b:44:7f:99:f7:17:fd:d3:fb:
49:0c:0d:50:9b:2c:40:d7:e8:a1:ad:a9:2a:11:3d:
76:30:af:8d:90:6d:8e:2b:ad:a5:cb:f7:88:f1:97:
7b:1a:92:74:c0:15:41:ce:8b:6a:cc:87:58:06:3e:
f7:4f:6b:d1:14:a4:19:10:6f:74:25:9a:e6:12:34:
55:c4:fa:20:f7:ea:55:e7:71:44:12:42:e8:ba:1a:
14:3c:72:87:dc:f4:55:7b:5a:01:2e:cc:7b:62:42:
36:5f:2a:cc:a2:90:f5:5b:e5:88:53:2b:52:4a:ee:
4b:b1:a9:a9:9f:8b:84:9d:ab:2b:9a:81:fa:a6:b3:
de:d2:ec:c8:aa:7f:3b:c7:f3:10:96:e5:97:07:14:
39:36:59:29:f0:a9:1d:17:3e:9c:78:52:13:0d:a3:
11:a3:a1:dd:da:11:78:ee:ef:ac:0a:08:6a:39:57:
88:42:f7:c2:3c:10:da:1a:7f:09:c0:4c:be:e7:97:
88:93:be:1d:82:8e:5a:99:21:dc:f4:f8:33:e4:a2:
09:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1D:CC:3F:98:87:C5:A4:B4:40:39:E7:57:EB:2A:B3:24:ED:07:13
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/4F31EC96C4CE11EEA565525F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.169.0/24
Signature Algorithm: sha256WithRSAEncryption
33:a0:72:cc:26:a3:2f:79:cf:19:9d:7f:0d:c2:88:3b:fd:88:
bc:f3:21:44:b7:08:6e:2b:b8:31:e7:cc:8a:fb:ff:0d:3b:64:
2b:a6:77:86:e9:b0:78:50:74:aa:9d:61:40:6b:b7:35:4a:96:
cf:0b:5a:a3:85:4f:ce:f6:bf:3e:60:16:a1:d4:44:41:e4:e3:
6c:0e:c2:20:f0:4f:19:1d:d6:56:bd:24:44:76:0a:a8:7b:5e:
09:6d:e3:f3:a0:58:93:d7:03:cb:59:68:4c:40:f0:36:2c:b2:
cd:77:0d:7e:e2:d1:48:69:b4:ce:1d:67:97:fb:38:eb:33:95:
d6:19:72:55:00:4f:13:d4:83:e5:82:b0:88:3e:b5:e2:ac:eb:
2f:47:cb:b2:99:fd:a3:94:29:a3:be:c2:05:28:84:51:9e:c2:
33:de:6e:76:85:c2:f5:2e:ff:8e:25:88:e1:2a:b5:15:ac:87:
12:ec:a7:66:18:3a:13:c7:cc:8c:5b:d9:cf:76:a8:2a:1a:fc:
5a:f4:aa:44:e1:a2:84:77:7a:39:8b:be:8d:19:ab:ad:ad:cd:
cb:2b:ea:7a:46:b7:82:9a:91:13:66:74:3b:0d:98:7a:49:02:
2e:69:03:d8:97:de:82:3c:9f:ff:17:7b:27:ac:d9:20:4b:15:
67:ee:00:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org