Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/6F89EC1EC4CE11EEB915BB5F775412E6.roa
File: 6F89EC1EC4CE11EEB915BB5F775412E6.roa (raw, json)
Hash identifier: 0xzDQTGktY5SNT/oNqNDkR69eV9keuHEiaiK1qaTKh4=
Subject key identifier: 64:8D:A1:7A:76:9B:8D:54:CE:F5:6D:7B:79:B1:CC:19:DA:6C:08:4C
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 19
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/6F89EC1EC4CE11EEB915BB5F775412E6.roa
Signing time: Tue 06 Feb 2024 09:02:21 +0000
ROA not before: Tue 06 Feb 2024 09:02:17 +0000
ROA not after: Sat 06 Feb 2027 09:02:17 +0000
asID: 36905
IP address blocks: 154.126.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:02:17 2024 GMT
Not After : Feb 6 09:02:17 2027 GMT
Subject: CN=65c1f59d-49e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:11:ae:8b:2d:78:ef:45:6b:82:b6:d0:7b:
e8:18:d3:7e:32:a8:7c:c1:48:33:74:e7:1d:b8:8a:
87:81:4e:ae:0a:db:b3:6a:5e:f5:1c:56:cc:c2:0f:
fe:c6:25:fe:5e:82:5c:66:94:86:b4:a8:b6:2c:72:
39:0b:c0:87:15:88:00:00:54:57:99:e3:22:7a:57:
3d:95:9c:df:30:2d:22:67:82:62:60:cf:02:f8:b3:
d7:fc:db:8b:08:1b:c4:af:4a:61:15:d6:78:05:f6:
32:d0:84:55:7e:33:19:1e:a5:92:1f:98:53:5b:c3:
2d:4b:65:05:23:24:a9:29:c5:48:4c:a8:1a:43:ba:
96:b8:98:71:b1:96:7e:6a:4a:79:7d:e2:36:d6:fa:
7b:fb:43:a4:8e:cc:88:b1:6a:ad:a7:3e:55:36:a1:
e0:c5:45:f6:33:8f:3b:8e:a7:82:7c:ef:4b:52:54:
b5:e9:81:26:b5:f5:4b:39:83:a6:a6:c9:6e:83:13:
6d:87:ab:a8:95:78:2d:e0:92:97:7c:ac:fc:d5:bf:
ff:1a:eb:51:e7:1b:af:72:07:1d:83:ed:e6:02:76:
a7:31:50:5b:64:97:ca:16:d2:a8:d8:84:78:c1:5b:
9a:6b:19:76:73:ab:97:d9:2a:a9:d3:f3:52:c0:28:
4e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8D:A1:7A:76:9B:8D:54:CE:F5:6D:7B:79:B1:CC:19:DA:6C:08:4C
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/6F89EC1EC4CE11EEB915BB5F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.170.0/24
Signature Algorithm: sha256WithRSAEncryption
07:c6:21:29:0f:02:99:ec:85:ce:a4:74:58:f7:72:1b:c5:d7:
d0:4c:bb:1e:08:dd:75:ba:b2:48:6c:d0:df:94:85:21:f7:78:
31:6f:8b:c8:13:46:c8:aa:77:c6:33:92:e9:ea:f3:01:fd:44:
24:c6:40:fa:60:45:46:27:80:f9:d3:d2:d4:c4:cc:36:71:47:
79:95:2f:5b:41:75:2e:2d:45:76:16:f5:95:24:4d:37:60:80:
56:5f:ea:14:7b:3c:03:e2:72:d0:c5:b6:08:0a:53:93:de:66:
91:00:99:b9:02:15:85:50:07:13:3b:b2:4b:1d:c9:c5:78:8b:
7e:1c:b1:4d:d7:6c:24:53:77:ba:48:78:d9:cb:31:04:5c:b9:
bf:b4:51:2b:db:84:ba:fb:e6:6f:04:67:56:b6:02:20:e4:ea:
0c:e3:4e:ba:b3:dc:bd:2d:21:c1:81:91:4a:f7:31:9e:87:f0:
18:37:f6:da:94:f4:c0:99:9a:10:d5:87:1b:55:a8:33:49:ed:
82:98:1c:45:b5:a8:2d:e7:e6:56:1a:21:c6:69:7a:4c:c7:7a:
c4:ad:25:16:48:4b:a6:81:e2:98:94:00:99:9c:6c:13:d9:47:
62:9e:9a:17:5d:d2:7f:ad:62:07:ef:ff:1c:3d:fb:7b:69:11:
1c:3d:a0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org