Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/684B797CC4D311EE816F8467775412E6.roa
File: 684B797CC4D311EE816F8467775412E6.roa (raw, json)
Hash identifier: zrGP4qbV7TkM2QLEaYGOzJRGNrjbHqUR2QRTvJ966ic=
Subject key identifier: 10:A1:FC:F5:B7:D3:7C:E7:AF:CB:1B:01:B5:DE:3C:F2:F7:FE:66:ED
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 37
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/684B797CC4D311EE816F8467775412E6.roa
Signing time: Tue 06 Feb 2024 09:37:56 +0000
ROA not before: Tue 06 Feb 2024 09:37:53 +0000
ROA not after: Sat 06 Feb 2027 09:37:53 +0000
asID: 36905
IP address blocks: 154.126.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:37:53 2024 GMT
Not After : Feb 6 09:37:53 2027 GMT
Subject: CN=65c1fdf4-166a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:45:ba:4d:32:60:f1:7f:9b:d8:59:33:dd:35:
75:0a:96:bc:98:15:78:b5:56:d0:bc:c8:3e:09:db:
2b:ac:96:f6:32:10:ca:dd:1e:a4:2b:de:09:59:da:
1f:8a:d3:0d:7e:5e:15:45:b0:0b:74:4b:0f:1f:12:
c9:b8:20:9c:bd:76:4b:d0:a4:a5:e3:e0:e5:39:40:
fd:4c:21:d0:68:8d:6e:6d:a7:2c:8b:5f:64:bc:8f:
e6:b7:c9:38:26:88:50:66:65:9c:bf:8c:5a:7d:b8:
e4:92:a7:67:e3:bf:d9:69:f3:55:4e:de:fc:cb:3e:
e4:f5:50:ff:0b:45:70:17:d0:ec:87:72:f3:61:5d:
c6:2a:9c:e8:f3:2d:96:d4:b6:d7:24:ca:24:60:90:
ad:b0:b1:b0:b7:10:cb:de:8f:5c:23:58:f9:db:47:
a6:84:be:fc:02:1e:b5:0e:73:3d:24:99:51:d4:68:
06:a8:43:6f:d8:6c:ca:29:fb:b4:b3:19:fa:fe:f0:
9d:76:0e:73:6a:9f:2f:9f:22:53:27:e8:31:7b:f7:
be:bd:6d:37:a5:dc:0b:24:33:c4:0d:6c:e9:13:dd:
62:da:48:e6:1a:fa:1d:6e:9e:58:a8:b1:bb:81:31:
38:92:f2:c1:de:8b:6c:01:f3:96:5d:8c:fc:4a:97:
43:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A1:FC:F5:B7:D3:7C:E7:AF:CB:1B:01:B5:DE:3C:F2:F7:FE:66:ED
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/684B797CC4D311EE816F8467775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.183.0/24
Signature Algorithm: sha256WithRSAEncryption
06:46:81:50:2b:bc:d8:16:1c:75:09:87:09:d1:9d:ce:2d:30:
9b:2e:ee:4f:21:aa:4c:f0:4c:a0:b7:ea:00:1b:cd:9d:e9:f3:
7e:9d:28:f8:2f:62:8d:01:45:9a:e2:e4:8d:42:90:66:99:9d:
9d:14:4d:4a:ae:9d:56:79:bd:3b:89:02:65:25:5e:4c:2f:a7:
dc:88:00:68:46:1b:86:61:b6:54:92:f7:c5:cd:be:4d:4f:1f:
ec:1a:f9:fa:3b:75:fc:45:b7:1c:65:4b:eb:c7:f9:d6:9a:6d:
2a:e5:75:04:e1:be:4c:1c:e9:d7:74:ec:98:82:57:45:b2:34:
79:3e:6a:0e:82:b0:93:4c:14:35:82:b8:3b:be:83:dc:71:c6:
18:4e:5e:44:c8:43:da:69:b0:fc:7d:43:12:f0:67:b2:1c:13:
6a:20:9e:17:00:21:ac:5e:50:e5:ae:0f:a1:4a:be:25:8a:74:
5b:c6:f9:07:a6:e8:2a:13:29:b9:0e:9a:aa:35:ab:51:f1:6b:
53:f7:a0:df:2c:af:9f:01:47:c7:91:f4:f2:e5:95:b3:5b:17:
b4:d6:33:1c:98:3f:af:31:e7:15:5c:3e:c1:e8:2b:1b:32:79:
72:13:aa:90:f5:2c:81:b0:5a:85:66:9f:1c:91:74:ea:d3:c2:
66:2e:9b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org