Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C66417AC44911EFB463094D762E951A.roa
File: 0C66417AC44911EFB463094D762E951A.roa (raw, json)
Hash identifier: iw8MTfe3VLNTPZeknMHXdODnaI69tJNE6PWPPGEfoik=
Subject key identifier: C7:6B:46:CF:E3:FD:16:F0:18:17:07:8F:A7:7B:13:5B:93:E6:B2:1B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1968
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C66417AC44911EFB463094D762E951A.roa
Signing time: Fri 27 Dec 2024 11:52:29 +0000
ROA not before: Fri 27 Dec 2024 11:52:25 +0000
ROA not after: Sun 27 Dec 2026 11:52:25 +0000
asID: 399641
IP address blocks: 154.16.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6504 (0x1968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Dec 27 11:52:25 2024 GMT
Not After : Dec 27 11:52:25 2026 GMT
Subject: CN=676e94fd-c545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9f:a5:f5:6c:27:37:5d:15:65:05:95:0c:02:
f2:3c:ed:63:90:73:b5:42:e9:5f:85:c8:ff:b0:b6:
a3:95:a6:25:ea:10:03:f7:d5:da:ff:a2:be:6f:36:
04:e9:15:58:0e:62:67:75:6a:4c:db:c0:05:2f:0d:
0b:8f:34:14:48:d3:8a:d0:c4:c6:e0:ab:1b:c2:f6:
f2:f8:89:ea:75:e3:e2:17:b6:47:1a:d6:45:96:44:
f6:4f:91:f9:6f:a5:e8:37:4d:7c:88:a9:96:b5:1e:
5d:52:4a:d5:74:be:96:83:d2:17:8c:d9:a3:39:fc:
5d:c2:e1:6e:56:9f:45:59:b4:5e:e5:39:1e:2f:5e:
0e:76:67:81:7c:87:c9:b9:ed:d1:92:20:07:02:4d:
b8:d5:d1:6f:af:6f:f6:88:30:c6:6d:d2:e8:c3:02:
d8:de:ad:10:43:26:17:7f:2b:c9:37:f2:44:3a:08:
44:8f:31:a7:d3:3d:f9:23:16:1d:c6:13:86:38:51:
67:e5:f3:ec:16:79:26:46:95:63:89:bd:d9:a2:72:
c4:89:1f:22:86:69:78:20:16:39:66:6d:77:49:4e:
ce:33:d2:d2:13:f2:13:a1:f7:c7:0e:d3:68:2b:f0:
1d:93:e0:a4:54:28:e2:14:e4:b5:66:2c:44:fe:e0:
84:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6B:46:CF:E3:FD:16:F0:18:17:07:8F:A7:7B:13:5B:93:E6:B2:1B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0C66417AC44911EFB463094D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.99.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d0:2b:0e:d3:9e:79:5d:c1:09:21:87:84:72:cf:b3:02:6d:
10:63:b3:09:cd:59:0f:08:59:51:99:a9:ca:9d:1e:e0:3f:e5:
fc:ec:d3:2a:f8:59:8b:78:35:9b:34:01:72:8b:42:90:8b:60:
db:25:d0:b2:4f:59:0c:5c:8f:f4:02:3f:2b:69:d3:af:48:b0:
27:0e:91:41:89:05:7e:01:4d:32:c7:7b:a6:73:9e:6e:3a:f8:
f1:4f:4e:9d:4f:ef:02:30:fd:34:e1:0e:73:d6:b4:1f:59:c3:
c2:cd:60:f2:43:e1:33:6c:4f:fb:dd:70:a2:cc:5b:24:21:ce:
02:23:e8:6e:e6:9c:1c:b1:ec:b1:94:da:f1:f2:56:d4:71:7a:
8d:57:8a:60:d5:5e:98:ad:79:13:29:fc:d3:e5:f2:a6:59:18:
48:19:ac:43:25:cf:7d:bd:71:79:55:0f:61:f1:02:11:ec:85:
3a:4c:c5:a2:53:33:5c:66:df:8f:d5:54:6e:d0:b8:3b:d4:8b:
3f:7f:db:04:96:90:a0:62:da:25:22:96:cc:f4:e7:cd:21:42:
7f:e8:14:9d:ee:83:4f:da:da:50:e4:d5:f9:c8:8e:23:6d:95:
29:12:4f:ae:16:cc:15:ce:9e:71:e3:05:81:e0:65:e0:85:c8:
c1:11:b0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:03:02 2025 by rpki-client