Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33134F16565311EFA9823097762E951A.roa
File: 33134F16565311EFA9823097762E951A.roa (raw, json)
Hash identifier: zWJu3OoyndZ5LBmIbTq3AiYfn5wzPFa+ar7ERBNINng=
Subject key identifier: A8:A2:71:31:7B:30:7F:5E:0C:6F:1A:CE:32:19:DF:54:3A:AE:17:91
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 179B
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33134F16565311EFA9823097762E951A.roa
Signing time: Fri 09 Aug 2024 13:28:01 +0000
ROA not before: Fri 09 Aug 2024 13:27:58 +0000
ROA not after: Sun 09 Aug 2026 13:27:58 +0000
asID: 834
IP address blocks: 154.16.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6043 (0x179b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 9 13:27:58 2024 GMT
Not After : Aug 9 13:27:58 2026 GMT
Subject: CN=66b61961-de1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:85:88:9d:be:88:7b:30:2a:1f:6d:2f:0c:
09:ed:66:8c:ac:9a:2b:d4:d7:18:44:cd:7e:1b:8c:
98:8d:6c:03:2e:f6:5f:26:8c:08:84:f9:97:e0:c9:
a8:96:34:4b:e1:1a:8d:05:c5:8e:71:bf:3a:e7:03:
1b:9c:cc:ae:3c:01:db:f0:3c:09:b8:7a:3e:89:ad:
0f:55:ad:d7:26:90:95:ce:89:e1:f5:f4:84:b2:f1:
3c:a7:1f:ae:df:ec:be:f8:a1:62:28:28:41:8a:a4:
90:3d:97:b2:f5:a0:a4:af:fa:4e:c5:5d:2a:6c:cc:
99:d3:74:4c:66:ca:ea:99:55:f9:41:30:ec:59:54:
4a:87:57:39:b1:41:75:d4:34:e2:cb:ad:c4:d5:61:
ab:8e:f0:0f:ff:99:5e:02:64:88:9f:3a:83:4f:ad:
68:a1:06:c8:6c:bd:9b:d6:e2:3c:c4:45:dd:7a:81:
23:7b:c5:96:be:f2:5f:41:30:32:7d:a4:9e:06:f1:
ce:d1:6f:ba:ae:e9:5b:ff:81:24:5e:66:14:26:02:
29:f3:07:7a:18:76:8d:5e:e8:b8:b9:c8:9d:14:d3:
66:ac:c0:70:b5:44:00:ec:c5:75:10:88:10:28:81:
60:5d:2d:b6:bc:66:1d:24:f8:a4:cc:7f:54:bc:5b:
8d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A2:71:31:7B:30:7F:5E:0C:6F:1A:CE:32:19:DF:54:3A:AE:17:91
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33134F16565311EFA9823097762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.58.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:df:b7:32:76:5d:4d:73:35:45:3b:3d:77:d8:e0:e4:43:9c:
01:79:c4:42:51:6a:08:0c:ec:29:ad:ad:20:dd:f3:88:09:fb:
07:c1:46:5f:8b:c6:3b:63:78:59:a1:ab:c9:64:4d:3f:4f:ff:
17:10:9d:18:29:db:01:ea:29:c5:09:19:81:b9:a1:4a:15:6f:
a0:e8:3c:56:b8:23:2f:96:0b:04:33:61:0b:4c:47:b3:28:ad:
b2:eb:eb:8c:89:2d:5f:17:86:81:eb:eb:27:77:48:33:65:29:
f1:f2:52:71:5a:36:25:22:8d:23:4a:da:89:11:06:77:da:ba:
4e:ef:4f:46:01:80:15:bc:f4:a0:50:f7:a0:94:6d:74:ab:12:
5f:4a:ac:5e:3e:60:af:fe:94:4d:42:31:f0:ce:7b:1f:7e:23:
0b:d1:1c:e1:1c:68:e6:aa:21:52:1e:57:68:a0:ec:f4:f1:f9:
98:6c:10:12:42:37:f4:39:69:26:af:f5:e2:1e:b5:64:f2:dd:
f8:f8:ba:3e:5a:32:46:d0:9b:6d:a0:14:1c:7d:2c:82:6c:d8:
eb:c8:00:43:74:61:8c:1c:1f:cd:ce:1c:52:59:cc:87:07:28:
a0:a9:15:71:62:cb:7a:d1:bf:2e:8a:5c:4c:92:c0:d4:06:bc:
ba:a5:d6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org