Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/C1BC264CC4CD11EE89C2885E775412E6.roa
File: C1BC264CC4CD11EE89C2885E775412E6.roa (raw, json)
Hash identifier: /4XiUCjd/sd1xIFdMVmhioY/RKg6IR+Ajo98X8uy0lo=
Subject key identifier: 54:3E:72:10:3C:3F:63:FF:42:0A:D6:2D:F5:85:B0:FF:07:9F:35:BF
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 0F
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/C1BC264CC4CD11EE89C2885E775412E6.roa
Signing time: Tue 06 Feb 2024 08:57:29 +0000
ROA not before: Tue 06 Feb 2024 08:57:26 +0000
ROA not after: Sat 06 Feb 2027 08:57:26 +0000
asID: 36905
IP address blocks: 154.126.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 08:57:26 2024 GMT
Not After : Feb 6 08:57:26 2027 GMT
Subject: CN=65c1f479-75c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9a:50:b1:83:f9:17:3c:32:39:31:d1:07:0c:
4f:b0:87:4d:17:63:ff:72:db:f8:8c:ae:16:f6:54:
66:f7:c1:51:57:96:3a:35:33:b5:7b:42:b7:e4:92:
c4:d8:e3:4b:80:6b:e6:da:a0:87:89:e3:78:3d:a1:
df:31:ed:72:4b:94:d2:f8:6c:12:37:58:93:75:99:
d8:dc:59:a4:31:4d:ac:f8:63:76:7e:ff:3a:e3:d1:
e4:c5:5f:fd:f9:36:d3:30:65:b9:64:5a:21:c1:b4:
41:05:1e:93:61:b4:da:ca:18:1c:3c:d8:4e:b7:b6:
1d:16:68:38:c3:17:da:3a:08:1b:a7:1d:43:3a:8b:
31:af:e7:24:2f:b3:43:cd:00:2e:fe:3f:fd:ac:4e:
58:22:88:01:4c:c5:5f:11:0d:e6:e0:a1:d9:e7:d1:
ab:eb:ff:7a:33:50:03:96:3b:34:2f:22:cd:9a:2d:
ca:38:12:a1:f0:a5:94:c1:26:b1:a4:dd:1a:f2:80:
e5:da:59:fb:40:e1:ef:21:27:2b:c6:f3:18:59:b9:
41:d6:e2:4e:47:d4:f5:53:c5:23:2e:0f:31:b3:36:
51:79:0e:34:2c:ca:9c:48:cb:11:27:78:d2:3f:c9:
c3:c2:70:3c:57:f4:b1:96:9d:2d:27:4b:08:e6:39:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3E:72:10:3C:3F:63:FF:42:0A:D6:2D:F5:85:B0:FF:07:9F:35:BF
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/C1BC264CC4CD11EE89C2885E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.165.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:95:42:1f:db:c7:7e:68:0f:f3:43:c1:6a:a9:9c:fb:02:d9:
f8:d8:cc:ed:be:c5:1c:1d:0f:2c:c2:14:db:a4:b0:81:80:5f:
d4:b4:66:fb:8c:88:19:10:22:29:48:aa:1f:f9:82:fe:79:84:
10:32:e6:b5:c4:83:e5:27:ae:c1:69:ea:b7:c4:4e:26:97:05:
15:95:1e:a4:ec:2d:b1:14:8d:2b:9f:fe:8d:c0:29:51:f5:28:
18:f5:73:65:b0:2c:d4:6b:66:9c:4c:00:ca:b7:e6:42:b8:32:
23:a7:40:89:1d:da:3d:72:64:c3:f9:ef:c6:0f:10:a2:3c:32:
8e:74:bb:6d:5f:af:27:4e:7a:a8:0d:93:01:3b:4f:d2:a4:3a:
de:56:98:f9:92:72:d1:24:2c:05:ea:30:f1:94:fb:5c:d2:62:
e0:db:c1:77:30:85:4c:20:d8:31:b5:37:fd:72:69:5c:d6:1b:
c0:ad:5c:a4:1d:49:fd:56:eb:7c:2a:d2:b3:be:3e:a2:61:50:
ee:9a:e8:bd:55:45:fa:6d:3a:bb:1c:16:e5:81:ee:6d:17:33:
21:cc:f1:d8:45:6c:9c:e9:e9:6a:5c:f1:2a:79:14:83:d6:3e:
c7:70:95:6f:73:35:40:f8:0d:bf:cd:fd:0a:28:5b:2f:e4:f9:
e6:08:2b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org