Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A11D55492A811EF8B052B60762E951A.roa
File: 2A11D55492A811EF8B052B60762E951A.roa (raw, json)
Hash identifier: 11PeDpQyR4xU/qZ8Proe5VzOZssbDye7EZNUE/1o6QA=
Subject key identifier: 23:86:BA:39:CD:AB:00:6F:43:66:BC:32:6D:91:FF:43:66:3F:CA:65
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18BE
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A11D55492A811EF8B052B60762E951A.roa
Signing time: Fri 25 Oct 2024 08:07:23 +0000
ROA not before: Fri 25 Oct 2024 08:07:19 +0000
ROA not after: Sat 24 Oct 2026 08:07:19 +0000
asID: 834
IP address blocks: 154.16.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6334 (0x18be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 25 08:07:19 2024 GMT
Not After : Oct 24 08:07:19 2026 GMT
Subject: CN=671b51bb-b37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fc:c2:36:7a:2f:ff:89:b3:45:3f:72:ca:74:
fe:63:97:70:ff:b9:f1:eb:e6:60:6c:d8:da:3e:cc:
2d:06:ac:bf:31:bb:66:b7:f9:23:e1:ee:d1:3a:f0:
d1:c3:e0:40:8b:a0:82:37:de:44:b6:56:a7:01:c3:
63:b6:88:19:52:e1:6e:20:a3:bf:f1:3e:0f:f0:8b:
7f:97:17:35:f2:c4:bb:73:ef:84:1d:23:59:cb:0e:
2e:ee:cb:35:cd:ea:0b:e2:7f:db:3e:fb:11:80:c9:
8e:c7:f6:d6:b5:f6:91:37:55:f0:d4:9d:b9:61:be:
21:33:cb:c8:66:2f:97:9c:09:23:37:23:2e:1e:9a:
a3:d6:4d:fa:cd:8f:72:8b:44:53:a9:c6:e5:18:61:
d6:cb:76:c1:c0:e5:3c:fd:18:31:fe:3d:8a:65:cf:
a6:2d:38:81:ea:8b:69:2d:18:60:26:d7:17:23:1b:
21:0d:c8:36:13:5e:fa:32:2a:61:8f:c2:4a:3c:4c:
a1:6e:80:b0:16:5f:04:57:74:e7:41:42:b1:8a:17:
c7:fc:4d:7f:72:fe:e3:4d:15:bf:98:f3:97:a7:5c:
c2:46:12:23:9e:9e:9c:82:cf:05:bb:f7:fd:78:ef:
6e:37:43:c6:2b:db:7e:cd:93:02:0b:dd:0d:04:03:
0c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:86:BA:39:CD:AB:00:6F:43:66:BC:32:6D:91:FF:43:66:3F:CA:65
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A11D55492A811EF8B052B60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.245.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:c9:8c:f7:91:61:d7:9a:74:e9:ad:13:32:d4:76:2f:8e:ca:
68:36:7f:97:49:d7:6b:99:39:5a:e6:bc:8b:c3:65:4c:08:8f:
43:06:88:1d:9e:37:ec:18:a0:34:4a:9b:8c:cb:62:0b:ce:4a:
fa:69:a5:09:27:09:8c:c5:59:43:12:af:a6:35:67:76:12:67:
ca:1a:04:0e:fe:fa:21:a0:67:e8:21:e8:6c:81:39:43:3c:01:
a4:5b:d1:2b:85:48:9a:a5:e7:cb:34:75:db:88:a4:32:30:2e:
2a:9a:b8:f7:93:65:56:92:05:39:88:cd:25:52:a7:0b:29:e8:
0e:30:ed:2d:5c:2e:ae:28:72:c5:e5:a1:46:52:c1:c5:52:3d:
e3:df:82:c0:e0:45:d5:7f:ad:2a:cd:b7:77:ee:f2:c0:40:45:
f8:75:99:c8:b6:94:f5:c8:fe:81:2a:2f:cb:e8:9c:9e:5c:77:
a5:a5:8b:f0:05:c5:68:be:51:8e:ec:dc:a7:a2:6e:63:d9:d8:
10:34:72:9f:2a:8c:07:20:10:25:55:8a:aa:aa:1a:40:4b:c9:
df:ed:0e:88:dd:ed:f3:11:7c:75:79:c6:f2:5f:1f:8b:50:81:
62:0a:99:06:2b:13:d0:25:d9:fc:66:7b:ce:b1:e4:c0:75:47:
7f:d7:07:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:23 2024 by rpki-client on console-ams.rpki-client.org