Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4E7B435CF0E711EE9F2A699B775412E6.roa
File: 4E7B435CF0E711EE9F2A699B775412E6.roa (raw, json)
Hash identifier: L3GDBm0zy1hyWkkhmRyLkBlLPE6SCundGFw3o5oAxag=
Subject key identifier: B9:1A:72:DB:3D:C0:60:28:44:F6:CB:D6:F6:D7:F5:A2:3B:45:A0:E4
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 158E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4E7B435CF0E711EE9F2A699B775412E6.roa
Signing time: Tue 02 Apr 2024 11:51:14 +0000
ROA not before: Tue 02 Apr 2024 11:51:11 +0000
ROA not after: Thu 02 Apr 2026 11:51:11 +0000
asID: 150698
IP address blocks: 154.127.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5518 (0x158e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 2 11:51:11 2024 GMT
Not After : Apr 2 11:51:11 2026 GMT
Subject: CN=660bf132-a98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:78:c4:c0:7d:25:58:bf:f1:1e:c5:a0:81:46:
50:e6:97:93:55:e8:c1:0b:66:b5:02:e3:c1:21:ec:
5d:6f:6c:5a:d0:f3:53:76:b8:80:b8:ec:44:ee:09:
54:02:38:65:70:16:d2:95:10:84:bf:0c:60:3e:90:
3d:ba:f0:1a:3c:88:62:ee:0e:f9:e1:d3:17:25:8d:
f3:ed:5a:90:ba:b0:7f:4f:8a:d7:86:33:16:fc:fd:
c4:c8:b0:b2:89:a7:02:5b:86:ac:60:d0:b3:c8:7c:
7d:bd:72:23:14:5d:dc:ce:14:38:a8:de:a3:ac:66:
9f:9f:35:2a:7f:92:50:42:0c:9c:82:f6:b1:ee:a4:
14:30:a2:a5:1a:28:9c:d0:a0:41:49:b4:51:01:52:
cd:fd:0c:49:be:a7:29:14:5c:39:2c:31:4a:47:cf:
68:4e:46:73:2a:02:68:63:3c:73:9c:81:7e:f0:4a:
73:d6:f6:14:11:dc:19:f4:e4:5b:38:86:bb:4f:5e:
1d:67:8f:e6:75:44:cf:14:b8:68:14:8a:90:29:6e:
9f:17:42:8f:6a:60:bc:79:8e:91:e7:bc:ec:c8:6d:
4d:fb:2a:9e:50:99:26:84:2a:6e:51:cb:cc:bd:83:
be:65:09:a1:3d:28:05:4d:3e:f7:93:04:39:bd:3d:
ff:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1A:72:DB:3D:C0:60:28:44:F6:CB:D6:F6:D7:F5:A2:3B:45:A0:E4
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4E7B435CF0E711EE9F2A699B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.56.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e0:19:36:65:83:3b:e5:24:eb:5c:6c:a2:34:67:10:42:4b:
d7:f3:3f:5d:2d:86:1d:56:cb:ad:9d:56:44:cf:de:17:2c:ea:
e7:c1:0e:84:04:91:07:2a:bc:72:bf:16:05:76:bb:c6:4a:5e:
dd:f4:b2:1d:a2:12:f7:46:eb:60:58:8b:2e:cf:6e:3a:86:7e:
5a:71:62:27:6a:fc:19:c6:f9:9e:f5:ba:66:96:ef:9d:39:69:
5b:10:ca:6c:91:62:48:de:02:86:ec:c1:ff:9d:89:18:2e:ee:
b5:13:39:e6:d5:1c:d0:2b:8b:4d:dd:ec:c2:57:53:42:c0:ff:
a8:b9:1d:5c:f2:6e:a1:f2:4a:96:d0:ce:9a:b5:93:18:62:a3:
c7:50:52:51:78:de:27:75:c4:3d:e3:6a:4d:6f:b5:c7:89:90:
24:86:f6:f4:bd:45:68:31:65:93:9a:d4:3b:85:5f:28:48:6c:
35:8d:cf:2b:3d:74:45:07:be:1e:20:f3:23:d4:ce:d3:f6:b3:
2b:6b:6a:96:c6:18:70:09:2c:6b:20:01:e4:c2:b1:24:ed:a8:
b5:6d:09:bd:c9:30:8d:a6:21:9c:a5:50:ca:49:c1:50:7b:c0:
21:44:af:41:67:d3:dc:3f:87:36:aa:4a:9e:7c:20:cb:02:5b:
cd:c4:6b:b0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFY4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDA0MDIxMTUxMTFaFw0yNjA0MDIxMTUxMTFaMBgxFjAU
BgNVBAMTDTY2MGJmMTMyLWE5OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD6eMTAfSVYv/EexaCBRlDml5NV6MELZrUC48Eh7F1vbFrQ81N2uIC47ETu
CVQCOGVwFtKVEIS/DGA+kD268Bo8iGLuDvnh0xcljfPtWpC6sH9PiteGMxb8/cTI
sLKJpwJbhqxg0LPIfH29ciMUXdzOFDio3qOsZp+fNSp/klBCDJyC9rHupBQwoqUa
KJzQoEFJtFEBUs39DEm+pykUXDksMUpHz2hORnMqAmhjPHOcgX7wSnPW9hQR3Bn0
5Fs4hrtPXh1nj+Z1RM8UuGgUipApbp8XQo9qYLx5jpHnvOzIbU37Kp5QmSaEKm5R
y8y9g75lCaE9KAVNPveTBDm9Pf9bAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUuRpy
2z3AYChE9svW9tf1ojtFoOQwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzRFN0I0MzVDRjBFNzExRUU5RjJBNjk5Qjc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACafzgwDQYJKoZIhvcNAQEL
BQADggEBAATgGTZlgzvlJOtcbKI0ZxBCS9fzP10thh1Wy62dVkTP3hcs6ufBDoQE
kQcqvHK/FgV2u8ZKXt30sh2iEvdG62BYiy7PbjqGflpxYidq/BnG+Z71umaW7505
aVsQymyRYkjeAobswf+diRgu7rUTOebVHNAri03d7MJXU0LA/6i5HVzybqHySpbQ
zpq1kxhio8dQUlF43id1xD3jak1vtceJkCSG9vS9RWgxZZOa1DuFXyhIbDWNzys9
dEUHvh4g8yPUztP2sytrapbGGHAJLGsgAeTCsSTtqLVtCb3JMI2mIZylUMpJwVB7
wCFEr0Fn09w/hzaqSp58IMsCW83Ea7A=
-----END CERTIFICATE-----
Generated at Sun May 5 02:32:45 2024 by rpki-client on console-fra.rpki-client.org