Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4831B156644711EFAFEB0D81762E951A.roa
File: 4831B156644711EFAFEB0D81762E951A.roa (raw, json)
Hash identifier: 4/VA88Po/0p+mrv+aj18SaLCT9AX8Fw4/ko/kkNdEPA=
Subject key identifier: 1A:8E:03:FB:70:41:2A:39:29:BD:46:18:87:5D:FB:99:C1:09:3D:82
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17C6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4831B156644711EFAFEB0D81762E951A.roa
Signing time: Tue 27 Aug 2024 07:37:59 +0000
ROA not before: Tue 27 Aug 2024 07:37:56 +0000
ROA not after: Thu 27 Aug 2026 07:37:56 +0000
asID: 20141
IP address blocks: 154.16.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6086 (0x17c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 27 07:37:56 2024 GMT
Not After : Aug 27 07:37:56 2026 GMT
Subject: CN=66cd8257-f547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:02:f2:01:bc:d9:8e:e6:c8:e0:e6:02:1e:70:
6e:84:5c:e7:01:9d:38:ce:87:a7:7b:d9:d9:84:9c:
12:ea:47:18:68:22:81:87:b6:b4:9f:b8:de:6f:08:
d4:24:0b:81:9f:12:a9:5d:31:2d:b5:b5:d8:dc:6b:
81:f7:49:44:6a:ed:8a:c0:00:a6:4d:a3:5e:c2:2a:
76:bc:b9:13:43:4e:fa:b1:d1:f6:37:78:36:0c:8c:
66:e0:b4:fc:24:25:6c:48:82:da:72:bc:c3:36:85:
d5:b0:ff:36:76:79:1f:1d:1a:ea:81:60:d5:71:54:
77:9a:c0:9b:05:af:14:5f:b1:10:21:92:06:e4:c1:
0c:d0:5d:26:c6:73:04:d7:ba:c8:5c:a0:b6:be:c2:
8b:8b:a9:26:b4:eb:3f:b1:48:32:8d:e4:20:54:2a:
ba:f2:91:72:2a:44:4b:45:58:ea:c4:3d:03:11:59:
f7:dc:65:06:46:a8:bf:95:dd:9f:0b:94:79:e2:cc:
c3:69:80:0a:0d:cb:99:59:a4:d4:07:73:87:39:77:
84:b3:7e:e7:c5:2a:c6:2a:2b:36:27:1f:2c:ce:f9:
cc:e5:19:66:64:fd:19:3d:14:28:fc:e3:33:fb:7c:
3b:66:18:75:77:86:83:37:6c:cc:34:04:24:9e:72:
4f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8E:03:FB:70:41:2A:39:29:BD:46:18:87:5D:FB:99:C1:09:3D:82
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4831B156644711EFAFEB0D81762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.15.0/24
Signature Algorithm: sha256WithRSAEncryption
37:4c:a9:9f:c6:03:82:e2:3e:40:df:bb:bd:1b:9c:eb:7c:68:
8d:1e:d1:76:75:fb:10:48:66:cf:4a:f4:78:c0:82:1f:61:ec:
14:f7:5b:aa:7a:f1:be:b2:a4:be:ab:7a:37:f4:ec:5b:57:2c:
64:22:e5:dc:66:e6:50:80:b9:da:f7:b2:19:ae:f5:0c:ed:1a:
f7:1a:cd:4a:78:8c:39:a3:86:c2:7b:07:a3:30:40:87:cb:81:
41:a3:60:23:cb:59:f5:47:cb:a4:74:8b:02:d6:c9:8a:c4:eb:
15:b5:9b:8e:b5:13:44:07:33:39:74:2a:94:ce:62:a6:1a:19:
8a:7f:b1:ae:10:b5:9f:c8:21:b2:a1:1d:4c:ee:e2:5b:16:05:
59:44:64:f8:d8:cb:c9:3d:d5:49:e3:28:f5:c2:41:a0:ad:b5:
58:b6:17:50:17:3a:48:6d:10:de:ff:43:84:7d:77:3f:dc:bf:
39:93:80:60:12:c8:e6:9d:ce:e2:6e:23:29:58:70:e5:8b:65:
e1:66:e8:37:f1:fc:ce:36:95:80:8b:03:86:8a:07:ef:a4:51:
c9:70:91:b8:b2:e5:3b:c1:7b:2d:ba:03:f8:a9:b1:a3:30:e3:
0f:b3:5c:02:ff:f1:6d:02:34:09:70:ae:f4:b9:37:78:56:da:
d6:24:cb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:46 2024 by rpki-client on console-ams.rpki-client.org