Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/B1F8097EC4D211EE86535866775412E6.roa
File: B1F8097EC4D211EE86535866775412E6.roa (raw, json)
Hash identifier: 59lN/fUbuBzBsApqG3IvBcdXKT4GXqevkBfORr82FQA=
Subject key identifier: 78:B6:9E:2B:5F:47:12:C1:03:8D:A0:A5:53:C5:D3:D5:B7:B3:33:63
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 2D
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/B1F8097EC4D211EE86535866775412E6.roa
Signing time: Tue 06 Feb 2024 09:32:50 +0000
ROA not before: Tue 06 Feb 2024 09:32:47 +0000
ROA not after: Sat 06 Feb 2027 09:32:47 +0000
asID: 36905
IP address blocks: 154.126.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:32:47 2024 GMT
Not After : Feb 6 09:32:47 2027 GMT
Subject: CN=65c1fcc2-6e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:57:e6:c0:ef:97:cf:ca:0b:66:b1:67:74:
8c:83:9a:28:67:e1:51:15:89:6c:97:a1:ba:4f:3b:
5d:46:5f:a3:0f:5e:04:cf:f4:0c:6b:66:aa:e6:2e:
f6:75:4b:80:a7:74:5d:91:ba:8e:b3:dd:14:cd:02:
92:af:94:f6:5a:2d:51:1b:cd:90:a0:8e:15:ee:ec:
f2:bc:c8:69:84:fa:33:d1:83:11:b4:25:41:ef:b3:
83:21:3e:28:9d:c7:8e:da:6c:09:26:49:50:a8:4c:
6f:8a:ac:c6:75:1a:87:2d:11:b3:fd:13:95:f8:57:
84:b7:a0:9d:9c:a0:33:41:86:ef:c7:df:82:8b:24:
0f:2a:c3:7c:87:68:15:f7:94:56:01:16:b2:32:81:
f8:8a:f4:1a:7d:39:13:1e:58:74:09:b9:7e:6c:b1:
10:35:2f:92:d4:bf:f9:07:e2:89:c4:07:6c:61:80:
b0:0f:61:8d:1f:4d:0c:57:0f:2e:93:0f:a6:ce:c7:
10:6c:a5:97:15:5a:cd:ed:d1:6c:54:f6:d3:1a:15:
7b:aa:d5:e9:ee:f2:5d:56:e3:2e:7a:bc:5e:00:c8:
3d:df:dd:4e:78:a1:32:47:ee:58:08:ac:5c:9e:f7:
35:da:86:76:50:d9:75:7e:cd:65:41:24:5a:b1:5e:
6a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B6:9E:2B:5F:47:12:C1:03:8D:A0:A5:53:C5:D3:D5:B7:B3:33:63
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/B1F8097EC4D211EE86535866775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.190.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:59:ea:ff:19:6e:ae:c2:b3:08:fb:30:37:3b:bc:b9:ab:f7:
9b:f9:a7:a6:89:ab:14:b3:09:3c:1b:9d:94:87:0e:c7:dd:0b:
be:0f:00:ef:48:e9:dd:ee:f8:7c:5b:34:c6:e5:1c:ea:67:ad:
19:c5:35:b1:b6:92:2e:e1:8d:8a:c5:fb:04:63:15:0c:8a:01:
95:b2:03:55:32:ef:42:f7:c0:0d:bb:f0:cb:8c:31:92:0d:ff:
8b:39:5f:63:16:8b:49:3f:07:b5:7b:dc:a4:79:48:01:20:ae:
36:82:97:75:31:56:c3:d3:85:bf:96:0a:32:6b:48:8d:98:b3:
5d:3e:d3:85:cc:48:b7:c0:13:da:da:0f:00:c6:a3:9f:41:9f:
93:03:ed:52:27:84:76:33:2e:fa:fa:eb:9a:a7:f8:f8:4d:05:
5f:6f:fc:64:52:ca:e1:18:20:94:f1:8b:e2:1d:c1:a1:5e:80:
af:d3:18:8a:0d:a2:23:8f:08:b0:dd:bf:de:00:25:8a:c9:c9:
f0:1c:d4:9c:8c:55:78:c2:5c:54:98:6c:92:24:5e:71:39:6b:
df:e2:b5:1b:1e:2e:e4:94:b4:6e:de:3b:d5:f0:cb:c1:04:28:
8f:c0:97:52:36:df:de:46:f0:19:a2:43:4c:09:cf:6d:8b:d6:
3b:e5:78:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org