Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/E93581BEC4CD11EEBD97B25E775412E6.roa
File: E93581BEC4CD11EEBD97B25E775412E6.roa (raw, json)
Hash identifier: 55Va12oDO8S1u6Db0FeTKlFuk9K47Rv37Hrdea7bPcE=
Subject key identifier: 75:2C:A1:CB:C1:9D:37:B9:F8:84:F9:2C:CD:86:27:21:52:C6:F9:45
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 11
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/E93581BEC4CD11EEBD97B25E775412E6.roa
Signing time: Tue 06 Feb 2024 08:58:35 +0000
ROA not before: Tue 06 Feb 2024 08:58:32 +0000
ROA not after: Sat 06 Feb 2027 08:58:32 +0000
asID: 36905
IP address blocks: 154.126.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 08:58:32 2024 GMT
Not After : Feb 6 08:58:32 2027 GMT
Subject: CN=65c1f4bb-d605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:3f:fb:a1:fb:d9:72:45:2c:58:52:5a:f9:
23:d8:af:e0:cc:e3:aa:88:76:45:1e:82:af:e2:0f:
34:28:aa:87:5a:22:32:cc:85:29:b8:9c:67:bb:dc:
36:b9:04:a8:6b:a1:bb:a0:b6:ce:a6:14:b0:e6:95:
ca:a8:99:38:be:af:54:31:bb:e3:30:41:58:b2:0a:
00:88:1e:e6:ec:d9:6a:6d:f4:e8:62:6e:43:d1:de:
1a:ed:bf:e9:c9:3f:06:3b:9c:8b:dd:ca:4d:27:e3:
18:82:5d:fb:ed:28:09:c0:88:f1:c2:b4:8f:ae:e4:
ac:ae:d9:69:cd:00:5e:1f:8c:77:dd:e0:96:5c:89:
61:b8:f0:64:37:99:3f:f9:53:bf:2e:93:1f:f2:d7:
63:a4:95:34:63:a5:a9:a1:77:d6:a4:de:52:05:99:
2a:3a:67:dd:8b:a9:16:78:ef:90:3b:28:f2:60:8a:
95:af:fe:16:75:07:c7:c9:f8:8b:0d:7c:1a:64:10:
52:06:e1:39:a4:6c:2f:0f:e8:72:74:24:11:60:45:
c5:1e:6e:a6:71:f4:c6:3d:e7:69:42:c5:42:1f:4c:
ca:4a:0b:fa:99:d7:d3:99:04:b3:54:66:e2:a9:2d:
f8:84:b5:e4:1d:af:a8:67:f8:c4:db:74:e5:a0:61:
08:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2C:A1:CB:C1:9D:37:B9:F8:84:F9:2C:CD:86:27:21:52:C6:F9:45
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/E93581BEC4CD11EEBD97B25E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:00:38:bb:54:29:22:94:5b:ef:f5:db:b3:72:fb:31:ca:97:
3e:77:b6:e4:f3:f1:1d:f5:0a:11:47:74:a4:e1:2e:2c:63:ef:
c9:7c:5d:b3:f9:be:c3:d8:bd:ce:e3:2d:40:a9:e3:7a:58:8e:
f6:e3:9e:0d:c4:c3:d0:e0:c2:ad:79:14:c6:a0:34:f3:02:08:
fa:ac:dc:0a:ae:3d:1a:2b:8e:d5:3a:76:06:2a:65:5d:d9:e1:
0f:cf:d7:3e:ee:d3:ec:27:f5:cf:6b:dd:c7:fb:db:b1:72:47:
84:cd:5a:16:24:97:00:f9:20:d0:03:5b:b3:83:51:90:e7:9f:
01:f7:c1:fe:ef:8e:dc:a0:a5:22:dd:5d:a5:a6:68:f7:26:7d:
4b:7a:4d:08:15:a9:a0:9d:db:fe:9b:74:f9:cd:16:a6:ed:af:
be:18:c1:34:f8:e9:20:fc:12:6c:90:e6:ff:ff:75:d4:ac:d2:
24:ff:13:99:07:f1:b2:9b:1f:8c:da:a4:12:7d:5f:05:ab:86:
a8:5d:a9:e3:b5:68:37:80:3d:cf:4c:31:31:1a:41:70:1c:f3:
16:04:f2:78:bd:a6:a7:85:c1:7f:20:db:06:dc:87:ce:94:2f:
dd:6f:16:c9:21:ea:5c:97:0d:43:21:a3:bd:37:ec:71:f8:62:
fb:06:7e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org