Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32FD3B423E8911EDB06A98DEF1222468.roa
File: 32FD3B423E8911EDB06A98DEF1222468.roa (raw, json)
Hash identifier: a4eTNp216oTYwFG7R1KFeWG+9H7OWYmFHOx7NYvytn0=
Subject key identifier: A2:2C:14:8A:47:F2:B7:6C:70:52:74:6B:FF:99:08:29:E3:4E:94:5D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 09CA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32FD3B423E8911EDB06A98DEF1222468.roa
Signing time: Tue 27 Sep 2022 17:24:11 +0000
ROA not before: Tue 27 Sep 2022 17:24:07 +0000
ROA not after: Tue 24 Sep 2024 17:24:07 +0000
asID: 53340
IP address blocks: 154.16.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 00:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2506 (0x9ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 27 17:24:07 2022 GMT
Not After : Sep 24 17:24:07 2024 GMT
Subject: CN=633331ba-1c4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:34:12:4c:e2:e2:3c:1e:58:f9:d1:1c:20:6b:
c3:8f:6a:9f:c8:0a:54:0c:8e:cb:4c:23:fa:85:66:
fd:2c:2b:1e:48:a0:76:99:61:0c:42:28:f4:dc:2b:
e0:c8:63:c6:58:be:d6:86:7b:c2:70:7a:e1:29:c0:
fd:44:76:2f:96:21:ae:5f:3c:6e:24:3c:c6:63:09:
70:ba:24:16:23:72:38:e1:f9:5a:3b:5c:85:4b:f7:
14:74:e3:eb:44:55:3c:ab:a6:3e:4e:10:39:23:8e:
91:fc:53:9d:ea:0c:51:ba:3f:0a:e1:b0:78:d5:a3:
d9:fd:64:ed:64:74:5c:99:9b:4f:0c:fd:1f:5b:29:
f8:7c:93:e7:ab:c0:fa:72:a9:ca:f4:22:39:0a:05:
ac:34:00:cd:4c:0d:05:3c:5b:47:78:6c:17:e4:e0:
75:09:5a:9a:e1:fc:51:d8:8e:6a:73:65:5b:d8:cf:
3a:8a:c6:01:2d:94:b8:f0:0d:92:d0:7e:c8:35:6e:
25:67:90:1b:79:ea:3e:13:a1:fe:70:e4:df:60:65:
1c:e6:a5:39:70:d4:fe:5e:e8:31:7f:33:ab:a6:ce:
f4:27:3f:e7:f6:0c:db:52:fb:62:28:3e:92:8b:5f:
91:22:bc:63:2e:bf:3c:d9:6c:5b:53:80:1d:ad:c9:
be:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:2C:14:8A:47:F2:B7:6C:70:52:74:6B:FF:99:08:29:E3:4E:94:5D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32FD3B423E8911EDB06A98DEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.120.0/24
Signature Algorithm: sha256WithRSAEncryption
56:21:39:26:0e:bb:8b:22:54:f3:8b:aa:88:b4:89:94:1f:1e:
94:a8:fd:43:e8:26:96:02:1d:ae:67:e2:79:53:23:c6:fe:21:
62:11:db:af:57:ff:4e:c7:36:75:b2:0d:c9:57:8e:d4:94:b6:
f9:e3:0d:e9:0d:a0:3f:03:ff:c1:03:d0:a6:63:15:c4:be:12:
38:73:07:e8:27:0e:18:05:af:7e:c4:a3:ae:80:8f:db:12:b5:
62:20:0b:a5:cd:eb:1d:3d:80:aa:84:0c:d8:e0:6a:1b:2f:b5:
c9:5a:28:43:ef:34:3d:c4:d9:c0:19:f1:1d:88:97:79:84:96:
7b:dc:62:b6:4c:06:4d:75:49:c8:16:64:4c:fd:bc:ac:bd:e1:
be:d9:3d:65:a9:d1:e4:85:8a:4f:d0:bb:17:43:51:88:29:48:
8e:b0:3d:86:b9:eb:c6:27:1a:b6:66:ca:f4:b0:5d:d1:91:b2:
b7:6a:4e:3a:50:67:67:41:73:fa:67:03:de:14:3e:a4:7f:01:
aa:d0:d0:78:6b:09:32:8e:05:7f:69:09:42:9c:7f:79:b9:45:
71:f7:1e:3f:95:21:4c:32:e3:d2:e3:ce:36:b7:c1:7d:d2:0f:
e9:60:89:67:d6:76:50:c3:73:76:99:98:ce:1e:ce:2e:16:18:
1d:61:19:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:13 2024 by rpki-client on console-fra.rpki-client.org