Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/DD77B4AAC4D211EEBEB69266775412E6.roa
File: DD77B4AAC4D211EEBEB69266775412E6.roa (raw, json)
Hash identifier: OydxnI/hxoPiyhR17/Tng3O2ILM83hRZhWDiNRN/dU4=
Subject key identifier: AB:37:2A:48:04:9E:F5:DA:3C:61:8A:BD:B1:38:59:2E:E2:B6:45:B0
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 2F
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/DD77B4AAC4D211EEBEB69266775412E6.roa
Signing time: Tue 06 Feb 2024 09:34:03 +0000
ROA not before: Tue 06 Feb 2024 09:34:00 +0000
ROA not after: Sat 06 Feb 2027 09:34:00 +0000
asID: 36905
IP address blocks: 154.126.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 09:34:00 2024 GMT
Not After : Feb 6 09:34:00 2027 GMT
Subject: CN=65c1fd0b-0574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:50:c0:4e:b3:1b:3f:fc:48:d6:ae:fc:90:3a:
36:2d:bd:cf:29:f4:6b:b2:29:c8:b8:4b:f7:c3:9b:
04:41:e3:bd:cc:b9:35:38:f1:c0:bd:29:2c:a5:58:
a6:26:f7:0b:3d:3d:6e:7f:3e:68:80:bc:4e:d6:6f:
55:ea:71:05:80:98:e2:f9:92:90:bd:20:ed:cb:41:
8a:25:94:bd:29:fe:fe:58:e8:3a:b4:09:1a:d2:92:
51:ac:a0:54:29:45:7e:45:1b:2e:fa:09:d3:f8:0c:
0a:e9:03:a2:ea:a1:d9:13:7d:0e:67:3a:ac:fa:fa:
ba:a5:9f:40:4f:c5:fe:40:80:1f:97:57:5f:0d:8f:
0e:28:e3:8d:ed:58:25:84:32:9b:17:16:fe:d8:a0:
55:be:94:e2:be:d6:91:77:a5:64:06:82:2e:17:0b:
15:82:8d:1b:8c:c8:03:88:3f:c7:0f:82:42:bc:2c:
03:d7:f9:2a:00:18:88:bf:56:14:f4:f8:ad:bf:72:
0a:12:fe:61:f1:c7:5a:ba:97:32:a2:0a:0c:af:66:
64:3b:91:b2:8c:eb:2c:6e:32:33:4d:30:32:51:1d:
30:a1:46:36:bd:de:e8:c4:13:1d:78:48:64:43:75:
59:7a:b2:16:15:54:ef:41:01:d7:b4:32:44:9c:17:
da:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:37:2A:48:04:9E:F5:DA:3C:61:8A:BD:B1:38:59:2E:E2:B6:45:B0
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/DD77B4AAC4D211EEBEB69266775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.191.0/24
Signature Algorithm: sha256WithRSAEncryption
61:68:da:7e:6d:64:ce:97:84:53:52:4c:60:2c:9f:0f:7c:30:
76:c0:6f:e0:7e:a8:20:4e:bf:90:a8:c6:07:c7:5e:42:5b:a3:
ae:a6:b0:b7:bd:49:91:f8:85:6f:bb:df:90:34:e5:24:59:af:
c4:a9:d8:51:b7:0f:42:68:f6:d1:08:0a:da:de:11:8d:32:87:
34:13:bb:23:05:bd:56:c2:9a:c7:66:35:74:5e:9a:c7:f8:2c:
77:54:01:e8:9d:ad:52:9f:83:cd:79:a4:65:2b:71:9e:fc:55:
13:e7:30:03:61:5c:89:7c:9c:14:52:95:04:d8:b5:60:97:95:
26:6e:72:42:66:28:79:6c:21:45:94:c3:b2:c8:a7:b7:e3:32:
71:84:09:10:b6:bf:a1:8b:34:84:40:35:4d:02:63:7d:e6:50:
56:3a:f5:29:25:41:02:a1:c6:91:fe:54:7b:86:5d:f8:81:5b:
1a:42:1f:c1:70:6d:b1:1e:ff:4f:9d:08:0c:4c:c5:6f:26:cf:
5b:26:ce:78:57:5a:51:65:51:51:58:85:48:f6:f6:68:f7:99:
90:16:30:84:21:ed:f5:64:38:5a:07:07:7d:55:65:96:a3:87:
a3:9c:a8:6c:35:c8:c0:85:d4:b5:47:9a:22:65:4f:94:79:b0:
2d:fd:92:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org