Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/08D548D0903711EFA0A62C81762E951A.roa
File: 08D548D0903711EFA0A62C81762E951A.roa (raw, json)
Hash identifier: qMawCWpAvfclDV8c0CtTy62T2a7YbBHJMxFXOO1Jcpg=
Subject key identifier: C2:29:0A:DF:BD:C5:39:E6:C5:DB:1A:C8:18:26:16:4F:6C:18:E1:27
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1878
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/08D548D0903711EFA0A62C81762E951A.roa
Signing time: Tue 22 Oct 2024 05:32:32 +0000
ROA not before: Tue 22 Oct 2024 05:32:28 +0000
ROA not after: Thu 22 Oct 2026 05:32:28 +0000
asID: 36352
IP address blocks: 154.16.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6264 (0x1878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:32:28 2024 GMT
Not After : Oct 22 05:32:28 2026 GMT
Subject: CN=671738f0-6ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:aa:ec:8f:46:d7:8e:55:3c:1a:ad:28:6d:9b:
f3:3c:72:63:88:7d:ea:e2:66:a9:ec:dc:f7:f8:4f:
c9:77:1f:c7:7e:b4:12:ac:11:f6:fa:b0:d3:45:e3:
7a:c3:f3:61:2d:16:fe:b5:97:29:e7:e5:8a:3c:40:
36:5f:50:46:dd:8f:98:81:61:41:41:d1:5d:36:ae:
c6:6b:23:97:0c:95:3e:4a:0d:3d:9c:81:84:6b:f8:
7d:94:2c:39:b3:0e:19:5d:3b:1a:5b:37:9a:f4:bd:
a6:84:b3:07:f4:61:bc:de:f4:13:18:93:6d:ee:54:
ff:a9:57:84:cd:4e:01:68:e3:88:08:f7:54:43:d3:
7b:d7:30:a9:57:3e:27:01:7c:c2:d6:0d:16:d5:e4:
96:4f:4e:b2:fe:b2:96:45:d8:8c:93:6a:9a:bf:c1:
da:bc:72:19:3b:bb:01:82:eb:4a:db:0e:1e:a2:3a:
54:b1:fc:cd:12:7f:ed:2d:1f:e6:1d:2e:f2:4f:02:
f0:fa:d6:82:4b:2b:2c:e2:51:77:2d:c2:8d:46:cd:
e5:09:61:97:31:62:32:74:ef:5a:83:8d:e7:79:d1:
d9:61:b6:10:73:90:ba:7c:38:c3:16:65:a4:f1:36:
ac:e6:84:a2:03:a1:3f:ba:07:e6:7f:b6:1b:b6:af:
40:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:29:0A:DF:BD:C5:39:E6:C5:DB:1A:C8:18:26:16:4F:6C:18:E1:27
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/08D548D0903711EFA0A62C81762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.119.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:18:12:90:cb:33:8d:6c:26:bc:02:47:65:eb:ab:b5:c9:4e:
da:6f:94:c4:56:92:f6:6a:ca:6c:a7:c9:97:ea:dd:0e:17:d2:
04:4c:c1:1a:f1:45:f8:5e:63:f4:77:a6:67:72:95:76:3c:5d:
86:7a:9d:34:57:9b:c6:f7:99:de:a7:ea:15:5e:78:b2:a9:c1:
60:c7:f1:1b:92:8d:20:88:2d:c2:52:7c:2a:4a:48:72:0b:1e:
9e:ef:a0:c4:97:f3:1b:54:46:e8:8b:63:94:bd:ba:57:9a:11:
45:cd:23:82:0b:0b:18:6a:f6:6d:a0:9a:3a:31:9e:72:f6:a4:
ba:e3:db:f7:58:23:2d:fb:7a:2a:8f:b2:36:67:fc:14:6b:14:
9c:fa:89:d8:0e:b7:8e:cb:16:ed:b8:ed:44:50:96:e2:ad:82:
6f:ca:d7:ae:29:92:44:c4:b8:5f:c1:5f:98:7f:12:2c:0c:5b:
d0:4a:79:0f:02:43:d9:57:b6:6a:6c:49:04:07:a7:f1:20:8e:
8a:a8:4e:79:37:24:04:2b:b4:08:0f:38:6f:1b:3d:38:48:a6:
32:64:63:1d:80:47:67:74:6b:3d:f7:97:ab:16:79:9f:2c:51:
19:fa:c4:ca:6a:54:b0:35:88:f7:e6:9c:25:de:81:a2:18:26:
ce:dd:39:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org