Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/019066A49D6811ED8F5B33BBF1222468.roa
File: 019066A49D6811ED8F5B33BBF1222468.roa (raw, json)
Hash identifier: BmChUFKyB4wR0yQISQP4GA6FjgehD75eXi5AXoS4X+w=
Subject key identifier: 78:68:48:99:52:50:7C:AA:AE:68:BC:BC:20:93:61:B4:F4:10:3E:F5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B91
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/019066A49D6811ED8F5B33BBF1222468.roa
Signing time: Thu 26 Jan 2023 10:55:55 +0000
ROA not before: Thu 26 Jan 2023 10:55:50 +0000
ROA not after: Sun 26 Jan 2025 10:55:50 +0000
asID: 212238
IP address blocks: 154.16.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2961 (0xb91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jan 26 10:55:50 2023 GMT
Not After : Jan 26 10:55:50 2025 GMT
Subject: CN=63d25c3b-6dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8d:c9:e8:17:ec:a5:49:5e:4c:57:47:6c:d0:
12:eb:bf:04:66:f2:31:8e:31:ae:88:df:ee:b0:fa:
c0:e4:26:15:56:c8:2a:5e:49:9f:c2:2a:27:ac:05:
34:46:c8:39:4b:83:08:07:16:14:dd:dc:05:8d:2c:
df:eb:16:df:3e:56:5e:b9:dd:36:0c:cb:68:3f:20:
16:c8:68:fb:d6:9b:16:df:1b:13:68:79:e4:5b:51:
0e:06:8a:83:8b:3b:5f:4f:d5:43:b1:a2:5a:21:ef:
1a:fe:13:22:a5:34:24:21:2d:d3:fe:c8:c1:ab:da:
e3:40:b4:2f:30:a6:43:cd:6f:df:d7:01:a0:b6:94:
43:af:0e:3d:6f:a1:36:ed:15:45:00:f0:3f:aa:5a:
b1:b7:71:3a:b5:ae:4f:47:e2:b9:0f:94:09:54:2a:
cb:59:aa:c0:f9:43:cf:c6:1b:88:46:21:48:7c:d9:
82:2f:bb:b5:51:de:5c:e1:01:98:ee:d0:27:ec:da:
6f:50:2d:9e:2f:c4:f1:9d:4f:1c:d0:13:99:66:78:
97:5f:4a:7d:0d:33:06:e0:93:5e:3e:6a:97:e4:b7:
1a:18:65:50:0f:bb:fa:91:19:1c:2e:25:c3:cf:4f:
bb:f1:43:ba:e7:ce:b5:3b:47:1c:15:1c:cf:d3:6b:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:68:48:99:52:50:7C:AA:AE:68:BC:BC:20:93:61:B4:F4:10:3E:F5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/019066A49D6811ED8F5B33BBF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.163.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:17:3e:da:67:da:14:41:83:36:4f:0d:d8:b2:48:e1:f5:3e:
f2:8c:5a:0b:fa:da:f5:91:80:8c:c4:37:00:fc:81:38:e8:5c:
1b:ec:d1:54:78:20:b2:9b:2d:b4:d1:73:52:c3:71:23:3a:0a:
47:99:da:a6:d2:e4:ab:bc:c4:ae:cb:27:98:e9:18:f3:d1:f3:
94:3c:c2:54:34:05:eb:2c:fa:8f:1f:c5:e9:be:ed:08:bb:43:
51:40:cd:ca:15:90:02:4d:65:6f:e7:b0:1d:72:8d:9b:06:f5:
f4:51:ca:ee:cf:11:ff:5b:c4:66:15:1d:e5:2f:91:5b:d9:31:
a7:ab:02:79:65:6a:3c:2c:6d:6e:d0:9d:c8:a1:e2:44:c4:68:
5e:81:8e:be:02:bd:03:05:75:a9:2d:cc:94:bd:a6:3e:71:19:
e9:52:f3:fc:dd:05:4b:77:a7:99:94:b8:e6:ce:d8:8b:46:c9:
97:8e:4f:d5:72:b1:ce:36:87:7d:d9:4e:1d:61:2b:2b:44:93:
82:63:c0:9a:bd:11:00:f7:fa:4f:c9:cd:73:bd:87:d6:43:73:
d7:08:3b:d4:b6:7a:92:2e:44:f5:9c:c1:b3:ac:30:a1:34:d9:
98:15:ca:d4:b8:30:c2:de:b4:7a:18:7d:57:62:68:ee:8b:ee:
4b:b8:2b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org