Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
File: 17A12F76BBBB11ECBA4F7EBE5A40D577.roa (raw, json)
Hash identifier: oMk+UL4ao+//GuxEYNIfkNj++L4uTvzcrgYx3Q+DPRI=
Subject key identifier: 9C:21:6E:78:A0:51:53:A0:B1:F9:3A:B0:35:46:2F:B5:7B:72:C1:11
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0825
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
Signing time: Thu 14 Apr 2022 06:21:17 +0000
ROA not before: Thu 14 Apr 2022 06:21:12 +0000
ROA not after: Wed 14 Apr 2027 06:21:12 +0000
asID: 397373
IP address blocks: 154.16.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2085 (0x825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 14 06:21:12 2022 GMT
Not After : Apr 14 06:21:12 2027 GMT
Subject: CN=6257bd5d-8367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:2a:68:fe:70:3a:8d:72:5a:25:93:bb:54:
a9:2a:0c:5b:0e:90:06:82:7e:93:8b:fd:24:2e:0c:
a1:b2:7c:ce:95:6c:96:3f:de:98:2a:5e:87:e2:d7:
e8:ca:d0:d6:bb:d7:db:d5:a9:6c:65:1d:5f:fd:85:
eb:11:54:94:f2:5c:e3:bc:b6:74:e2:fc:c3:28:ea:
d0:8d:7a:08:71:f3:f9:a0:00:81:69:8c:9c:9c:e4:
89:47:04:74:b6:36:fc:a2:63:4f:ac:35:1d:55:70:
a1:fa:2d:e2:9a:ac:c8:64:82:d5:9d:09:9b:ba:95:
2e:6d:4e:4e:24:41:e6:e2:a4:b5:38:70:33:a6:a6:
40:d9:11:ba:9c:f8:ce:86:4e:c4:47:e8:c1:44:de:
c8:68:08:37:ad:e3:c7:ed:3c:a1:be:8d:27:91:44:
ee:bc:d7:a7:64:0d:97:aa:c9:61:8a:a0:e3:98:36:
29:8e:93:0d:0b:bc:a7:95:ab:df:6f:c0:b1:04:01:
22:0c:e2:d6:69:19:18:13:44:79:cf:28:db:d4:df:
83:29:a6:1e:b5:06:d5:ef:1e:20:c0:81:ae:81:9f:
eb:89:6f:81:5d:cc:cc:f8:b9:07:7b:5d:97:96:43:
60:d2:4e:b9:2d:27:3b:76:0c:ab:ba:20:d0:2c:51:
09:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:21:6E:78:A0:51:53:A0:B1:F9:3A:B0:35:46:2F:B5:7B:72:C1:11
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.247.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:62:41:7e:f4:42:cf:6d:0d:60:86:5a:11:05:aa:16:48:58:
c9:e0:f6:e4:cf:d8:60:ab:32:54:5c:3e:90:55:ad:a5:f7:2e:
1f:27:ee:71:98:39:51:e1:fc:4c:ef:c5:36:d6:18:87:1c:3b:
7b:47:c0:7f:de:80:7b:c2:35:60:76:4d:12:91:7f:b5:31:d7:
be:aa:8d:69:6b:59:0b:40:6f:43:e4:1c:10:90:08:25:b0:d7:
93:35:18:a9:eb:c5:58:73:06:e3:dc:88:76:d3:bf:99:aa:08:
0c:21:c2:26:ec:78:ce:d0:53:51:10:a2:7e:8b:67:96:3c:07:
91:12:e3:5d:24:f1:15:9b:4a:da:36:a1:2d:4e:eb:7b:eb:12:
a0:b4:44:21:47:92:0b:c4:82:10:76:48:7c:df:dc:d1:a9:f0:
0d:8b:e7:45:a8:f4:11:8f:ae:87:c9:87:9c:b2:92:be:6a:fb:
99:e2:95:c7:5b:3b:b4:1b:fd:08:90:c2:27:ae:ac:ff:1b:fd:
99:63:73:79:c0:9d:64:16:86:c2:b0:ed:a8:59:39:62:7d:66:
6f:c2:de:2a:ba:5b:f5:ef:49:a8:d9:88:61:8b:53:6a:1b:f2:
71:e9:83:e2:59:de:ef:7d:3b:d0:93:09:9f:5b:82:e9:81:c0:
a4:4e:23:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 01:20:07 2024 by rpki-client on console-fra.rpki-client.org