Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C7A31BA8B6311EEA9886F2D4AD9E6FC.roa
File: 4C7A31BA8B6311EEA9886F2D4AD9E6FC.roa (raw, json)
Hash identifier: 5PQlY4YpD7vuOORhWqG2OlKxetZ+eF7DQVzmrEPN4xw=
Subject key identifier: 2B:9F:03:16:72:EC:0F:FF:79:04:09:89:85:C5:72:9D:BA:E1:02:6A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 133C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C7A31BA8B6311EEA9886F2D4AD9E6FC.roa
Signing time: Sat 25 Nov 2023 07:21:50 +0000
ROA not before: Sat 25 Nov 2023 07:21:46 +0000
ROA not after: Tue 25 Nov 2025 07:21:46 +0000
asID: 174
IP address blocks: 154.16.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:51:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4924 (0x133c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 25 07:21:46 2023 GMT
Not After : Nov 25 07:21:46 2025 GMT
Subject: CN=6561a08d-ac7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5b:2c:01:fe:48:d4:3c:7c:41:56:1b:0c:43:
48:9e:fe:7a:71:f7:ad:50:56:39:5d:eb:d7:e7:59:
3e:65:24:06:a5:ea:0f:2a:41:6d:ac:0e:70:f6:32:
ea:aa:a7:36:a2:1a:e5:64:b7:38:ec:03:7f:11:b6:
57:63:aa:1a:b7:73:32:14:90:7c:d8:5e:15:a2:a9:
35:53:34:14:76:a2:e8:5b:56:65:ec:06:06:e7:fb:
6f:19:b4:c9:88:2b:c8:6c:4b:6e:14:14:66:e5:53:
40:72:e0:b1:79:57:67:9d:d9:58:11:2e:5f:6c:d9:
88:2c:bd:74:22:8c:82:59:3c:5b:d6:cc:54:05:4b:
13:1e:9c:45:3d:31:73:98:21:e4:6c:fb:71:6c:e3:
a3:98:97:2e:ae:ad:36:7d:1e:d2:5b:54:17:44:ae:
ed:18:ef:b7:4b:f9:3f:6f:1b:44:3e:71:44:2d:7a:
d6:83:e5:7e:e2:e8:fd:7d:2c:b2:d5:75:10:cc:42:
fb:2b:d5:3a:6f:30:e5:a0:b3:81:a9:32:e9:9d:3d:
21:77:46:ab:5c:d7:8d:42:d4:dc:9a:f6:98:7c:20:
76:ee:1b:ff:b4:bd:79:15:6e:7e:aa:8d:6a:f6:1b:
07:23:0e:50:d4:81:32:76:fb:3e:b2:d7:88:95:8f:
2f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9F:03:16:72:EC:0F:FF:79:04:09:89:85:C5:72:9D:BA:E1:02:6A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C7A31BA8B6311EEA9886F2D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.232.0/24
Signature Algorithm: sha256WithRSAEncryption
34:35:94:f5:a6:b8:9e:92:06:e1:94:4e:a6:83:33:84:3f:d6:
7d:c3:50:09:55:7f:05:ba:95:1b:52:e1:62:05:43:d3:48:3f:
f9:9d:6b:ae:4d:47:69:21:18:8d:e3:77:9b:0f:9a:9f:1e:a7:
35:4b:94:b4:0f:d3:ee:b6:8c:2e:31:c2:93:b2:1f:ba:29:fd:
10:d7:87:a2:c2:db:8c:3e:3c:76:19:2f:86:7c:5e:90:74:03:
73:7b:19:63:fa:0b:50:03:ba:f9:72:a4:d5:aa:97:a5:cf:1f:
33:76:31:90:ee:1b:c9:c4:af:fb:27:1e:cf:c9:ff:92:d3:8e:
9b:ff:13:0a:28:a5:59:6e:22:fe:d5:43:ef:70:e3:be:8e:05:
06:de:29:6b:41:71:26:14:75:83:aa:28:f1:91:8f:bc:5a:ad:
49:90:d1:69:3a:4e:56:e0:73:16:cc:da:59:f6:cc:3a:3c:77:
41:10:11:2c:44:b5:fb:05:bc:57:f2:50:51:9e:85:07:36:23:
a5:44:86:a2:9f:32:77:dc:48:f5:94:49:a3:2b:46:b6:50:66:
8a:33:6e:fb:92:bd:b2:3f:f4:b6:3e:66:24:40:47:2d:16:f7:
43:88:08:2a:21:79:9d:8d:ac:8a:31:70:d1:31:ab:5e:8c:2d:
22:6d:80:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:12 2024 by rpki-client on console-ams.rpki-client.org