Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/485703B0644811EF97108487762E951A.roa
File: 485703B0644811EF97108487762E951A.roa (raw, json)
Hash identifier: eilT2nUYdTiQuVI5FKjWGafL0ScU9RnVddpD3GrPAJg=
Subject key identifier: 25:86:BD:CF:B4:47:D8:78:01:1E:22:3D:48:20:DE:48:74:23:EB:C1
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17CF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/485703B0644811EF97108487762E951A.roa
Signing time: Tue 27 Aug 2024 07:45:09 +0000
ROA not before: Tue 27 Aug 2024 07:45:05 +0000
ROA not after: Thu 27 Aug 2026 07:45:05 +0000
asID: 399838
IP address blocks: 154.16.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6095 (0x17cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 27 07:45:05 2024 GMT
Not After : Aug 27 07:45:05 2026 GMT
Subject: CN=66cd8404-9c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:19:d8:94:34:10:c6:69:38:7d:a7:7a:16:
c1:5a:01:af:14:cc:b4:c1:b2:15:23:10:16:3c:2f:
2e:91:30:52:33:2b:bf:ce:6b:91:02:aa:6b:1f:49:
08:fd:bb:87:1f:19:08:b7:55:72:28:2f:1e:0d:4c:
84:61:7a:74:e8:76:f0:0b:b2:2a:c3:a1:8a:48:73:
c0:d4:23:50:45:06:80:63:00:ca:53:dc:4d:24:90:
8a:e1:1b:89:07:b3:6e:3c:44:9d:d1:48:69:4d:58:
30:df:ff:21:39:2f:70:98:cc:5d:7e:d1:82:c2:7f:
57:7d:b6:32:6c:c4:bb:c6:0f:dd:c7:55:4a:35:ed:
15:52:af:c9:14:9a:38:92:67:f2:1b:b7:38:eb:1e:
31:dd:c4:f4:33:5d:fe:e9:0c:77:9f:cd:1b:10:0f:
7a:3e:37:d7:77:bb:e6:4a:a7:e3:a7:95:c7:fe:7d:
d2:a6:ee:01:18:d7:0d:57:d5:f3:d7:26:bc:5b:a5:
ec:01:0f:ef:64:82:77:a9:51:4e:29:80:a2:67:00:
e1:5e:80:97:b4:dd:f4:05:aa:40:3e:24:e4:7c:3d:
ca:6d:26:77:bb:7b:bc:e1:97:27:6f:f9:64:87:9b:
05:70:d0:3a:62:08:2d:1a:32:27:13:0f:17:96:c8:
dc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:86:BD:CF:B4:47:D8:78:01:1E:22:3D:48:20:DE:48:74:23:EB:C1
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/485703B0644811EF97108487762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:39:60:55:8d:8d:e1:c6:da:3f:85:b0:18:2a:1b:49:32:cd:
db:f5:aa:db:95:72:4d:c7:b6:d3:4e:12:76:aa:a0:87:b1:5b:
78:4e:69:ca:fd:a2:03:c5:b9:6e:32:92:0d:c3:b0:32:09:9e:
5b:b2:b4:e2:d0:3e:9c:92:a7:40:af:5d:03:27:45:e6:e9:dd:
3c:d8:b4:1f:01:0b:38:97:6c:87:d3:dd:37:bf:4e:16:f2:64:
73:5c:4a:a0:e0:ad:7d:a9:bb:29:ac:a5:7c:7a:0b:06:cd:57:
33:e1:80:13:bb:49:69:c8:f7:78:25:bb:57:4a:5e:a8:7a:d9:
f0:f1:bd:19:c7:ae:c3:38:3f:f6:76:48:76:db:af:9b:6b:54:
fc:03:26:42:5f:5c:19:f3:99:84:74:4c:c6:ef:d7:fe:14:4f:
f2:62:3e:23:a2:61:4e:88:68:d6:50:3d:89:4d:42:b6:a9:f6:
cb:ed:1a:7e:d2:17:5a:c8:fb:41:3c:15:7d:4f:f9:bf:29:dd:
0a:e0:00:8a:4b:fd:5c:6d:2d:34:80:14:20:19:77:47:c0:ba:
31:d9:44:60:7e:2a:b7:a8:ca:ff:0b:a8:c6:ad:bf:78:a8:72:
5c:a0:fa:30:01:bf:63:e8:3e:e6:0d:3b:a3:f4:b1:47:46:d7:
9e:e0:d1:1b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF88wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDA4MjcwNzQ1MDVaFw0yNjA4MjcwNzQ1MDVaMBgxFjAU
BgNVBAMTDTY2Y2Q4NDA0LTljN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCx6hnYlDQQxmk4fad6FsFaAa8UzLTBshUjEBY8Ly6RMFIzK7/Oa5ECqmsf
SQj9u4cfGQi3VXIoLx4NTIRhenTodvALsirDoYpIc8DUI1BFBoBjAMpT3E0kkIrh
G4kHs248RJ3RSGlNWDDf/yE5L3CYzF1+0YLCf1d9tjJsxLvGD93HVUo17RVSr8kU
mjiSZ/IbtzjrHjHdxPQzXf7pDHefzRsQD3o+N9d3u+ZKp+Onlcf+fdKm7gEY1w1X
1fPXJrxbpewBD+9kgnepUU4pgKJnAOFegJe03fQFqkA+JOR8PcptJne7e7zhlydv
+WSHmwVw0DpiCC0aMicTDxeWyNw7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUJYa9
z7RH2HgBHiI9SCDeSHQj68EwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzQ4NTcwM0IwNjQ0ODExRUY5NzEwODQ4Nzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEIEwDQYJKoZIhvcNAQEL
BQADggEBAF85YFWNjeHG2j+FsBgqG0kyzdv1qtuVck3HttNOEnaqoIexW3hOacr9
ogPFuW4ykg3DsDIJnluytOLQPpySp0CvXQMnRebp3TzYtB8BCziXbIfT3Te/Thby
ZHNcSqDgrX2puymspXx6CwbNVzPhgBO7SWnI93glu1dKXqh62fDxvRnHrsM4P/Z2
SHbbr5trVPwDJkJfXBnzmYR0TMbv1/4UT/JiPiOiYU6IaNZQPYlNQrap9svtGn7S
F1rI+0E8FX1P+b8p3QrgAIpL/VxtLTSAFCAZd0fAujHZRGB+Kreoyv8LqMatv3io
clyg+jABv2PoPuYNO6P0sUdG157g0Rs=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org