Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/157B2308903B11EF9768109B762E951A.roa
File: 157B2308903B11EF9768109B762E951A.roa (raw, json)
Hash identifier: gZiYRwdJnS8oZXjwhdef47t0h5auDLyYjWWb8F4pCFE=
Subject key identifier: 27:76:56:1C:A1:55:32:B4:BF:3B:81:60:D2:E7:AA:E4:EB:A7:7B:68
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 189C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/157B2308903B11EF9768109B762E951A.roa
Signing time: Tue 22 Oct 2024 06:01:31 +0000
ROA not before: Tue 22 Oct 2024 06:01:27 +0000
ROA not after: Thu 22 Oct 2026 06:01:27 +0000
asID: 212238
IP address blocks: 154.16.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6300 (0x189c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 06:01:27 2024 GMT
Not After : Oct 22 06:01:27 2026 GMT
Subject: CN=67173fbb-8845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ad:f4:05:83:31:30:a8:12:2b:e1:25:35:66:
d0:3d:3d:6b:e4:ad:71:c0:26:e0:bf:3b:75:b2:04:
f3:b7:81:98:9c:db:f4:62:d3:b4:9c:ff:f7:89:f4:
5d:ff:9f:bc:65:a1:c7:cc:78:99:dd:4a:4b:36:d6:
a8:ee:57:f2:38:8b:71:7f:b8:89:82:fe:4b:4a:18:
43:90:32:fd:73:1e:9e:ce:4d:64:b7:6b:cd:24:d6:
2a:79:63:7b:13:02:42:3a:ee:66:db:d1:80:cf:ca:
c2:8d:44:a8:b8:24:7f:93:27:2b:4b:ef:ae:a8:2f:
50:65:e6:42:77:b4:2c:5d:69:7c:5b:04:10:72:ef:
2c:19:02:96:c1:c6:9f:de:48:a2:9d:bd:a0:67:c8:
2a:f2:0b:4f:44:22:e9:b7:58:25:7a:ae:a0:dc:06:
39:47:02:f6:48:79:61:24:c8:5c:81:0b:8f:38:b1:
91:c3:6a:8f:fc:36:fb:07:0b:6d:4d:9a:22:58:f6:
1d:06:92:a6:bc:4d:88:30:76:25:0f:ec:c3:a9:9a:
20:fe:ea:a4:bf:fa:62:3d:57:63:a2:be:0e:0b:f0:
66:1c:bb:cf:42:cc:e2:9e:7b:2c:e2:af:67:42:70:
82:32:05:1a:6d:2c:a3:62:74:38:7d:8b:cf:a2:1e:
e4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:76:56:1C:A1:55:32:B4:BF:3B:81:60:D2:E7:AA:E4:EB:A7:7B:68
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/157B2308903B11EF9768109B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.224.0/24
Signature Algorithm: sha256WithRSAEncryption
68:11:ac:5b:d5:9f:aa:73:c1:f5:d3:8c:d6:2e:56:81:11:25:
2e:d3:af:eb:e9:77:b8:b4:be:c5:c3:50:a3:5b:d8:71:2e:f9:
9e:ff:a2:74:39:29:32:9e:70:53:88:e2:44:c2:b1:78:ea:2e:
8f:b6:52:b7:a1:df:94:0b:01:34:96:f9:3e:c7:70:29:8a:1b:
75:5c:e0:95:e5:ea:0c:62:83:6a:99:9e:f1:a0:53:b1:34:73:
d3:0a:c6:0c:3c:22:34:92:2c:ea:fe:c5:45:0c:89:7a:5a:e1:
29:1b:42:d1:96:dc:3a:08:94:5a:39:2f:f9:6e:e7:eb:1c:61:
c3:ab:c3:df:b9:a9:bd:6d:bc:da:4a:2d:29:5b:1b:ef:e4:21:
ac:4a:ea:68:a7:a3:e8:a0:3c:e1:bf:45:27:52:22:b8:28:3e:
81:c5:fc:ba:39:9f:d4:c5:56:31:8e:e5:1e:ce:ef:ce:14:9f:
c9:64:32:84:ff:fe:20:cb:cb:88:73:c3:64:03:b8:26:f5:2e:
a4:6d:2f:45:af:9e:23:6a:21:1b:2b:ab:02:76:f5:a4:94:ef:
dd:5c:e2:55:4b:5b:ce:f9:d2:4d:37:aa:4f:bd:57:f4:2a:21:
17:50:e8:f7:81:59:e7:67:ac:03:30:79:67:21:47:e9:93:8a:
06:6f:3c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org