Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3844C06C48C711EF9651AEB1762E951A.roa
File: 3844C06C48C711EF9651AEB1762E951A.roa (raw, json)
Hash identifier: iKlCl+Kq+x9sFvoT2jJA/d2g2UVx+aSg2n4hfzcRWBc=
Subject key identifier: 9F:03:B3:2C:BE:4D:FE:63:F5:19:10:DD:5D:07:AE:C2:7A:4F:AE:5E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1754
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3844C06C48C711EF9651AEB1762E951A.roa
Signing time: Tue 23 Jul 2024 07:43:15 +0000
ROA not before: Tue 23 Jul 2024 07:43:12 +0000
ROA not after: Sat 25 Jul 2026 07:43:12 +0000
asID: 147176
IP address blocks: 154.16.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5972 (0x1754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 23 07:43:12 2024 GMT
Not After : Jul 25 07:43:12 2026 GMT
Subject: CN=669f5f13-6e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f6:6d:ea:8b:f0:30:43:20:09:49:8a:7b:5b:
33:22:1b:f3:e6:6d:26:7d:79:59:37:57:51:de:62:
c6:28:f9:44:35:bc:41:a4:87:f5:95:52:36:a1:40:
db:71:40:19:b0:b6:59:a0:99:c7:e4:d2:fa:62:4b:
b4:45:58:ae:7e:f4:c1:ab:9a:ec:fc:c6:e5:0e:54:
c5:5b:44:1a:73:8b:80:27:ed:a0:d1:4a:83:23:c2:
10:df:1c:cf:be:0a:b6:e9:16:7c:ed:89:04:db:df:
9b:4a:f1:23:ed:64:51:4d:f5:37:24:2f:6c:13:4f:
35:9f:52:06:0f:06:05:e3:6f:21:aa:42:bc:30:9b:
cc:72:49:2f:b4:3d:8b:ea:3d:4f:a9:7a:a6:13:29:
74:2b:4e:6c:3c:e1:d5:1c:0f:52:1f:87:26:b7:42:
fa:72:40:6e:8b:6a:d6:ac:24:67:49:77:ed:12:54:
77:77:27:8c:6a:18:c2:77:f0:9b:b6:01:7b:fe:0b:
63:b5:c1:c4:b0:dd:e0:b9:bc:a2:da:1e:b8:ea:2d:
7b:7f:1e:56:bc:ba:be:07:3d:1a:37:f2:46:40:bb:
39:4f:71:04:e1:ea:d6:59:67:d2:48:0c:1b:35:90:
f3:97:33:1c:44:09:90:07:28:72:1a:c6:cf:fa:2d:
7e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:03:B3:2C:BE:4D:FE:63:F5:19:10:DD:5D:07:AE:C2:7A:4F:AE:5E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3844C06C48C711EF9651AEB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.66.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ee:97:ef:a6:5d:ee:a3:36:50:a4:d8:a6:a2:3a:d7:1e:5d:
39:3c:27:83:27:6c:8d:26:04:26:7b:88:35:f9:ff:ec:92:f1:
9d:7f:89:2f:89:47:e3:34:81:40:1c:4d:0c:6a:df:a3:45:a0:
c7:7e:35:f0:8a:ed:69:d5:27:1f:a5:ed:0d:20:6b:d6:fc:92:
cd:63:11:b1:d0:91:9d:52:02:ba:48:50:12:75:69:b6:4a:a7:
60:38:73:61:27:84:68:b2:0a:04:7f:d7:19:ee:48:a8:5b:06:
36:02:b0:24:c7:29:dd:40:fc:5c:33:5e:ac:11:e2:63:3b:1c:
a9:9e:36:05:2c:0d:de:8c:0a:89:83:cd:8a:40:6b:28:af:6e:
59:94:e7:5a:61:39:29:58:e7:63:ec:97:b3:88:09:61:e1:3e:
d1:2c:0a:3c:2e:93:a3:18:3a:0b:d4:0d:0e:0b:3a:3e:10:2d:
fd:d8:1c:84:08:7d:40:e7:58:de:7f:e7:ee:32:0e:ff:06:8a:
de:4b:3f:e3:04:98:92:f1:8a:8a:ab:a3:8f:6a:85:b6:74:ba:
32:33:77:15:65:14:b6:5e:03:dc:ee:d4:a6:66:0a:f5:86:a1:
7c:e9:1a:ef:57:7a:6d:17:55:b9:d5:9f:35:b3:a6:d7:05:8c:
54:0e:e9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org