Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5C22C1569DDF11EF9E461996762E951A.roa
File: 5C22C1569DDF11EF9E461996762E951A.roa (raw, json)
Hash identifier: BX4TrnZ9RAuKvRrZHDurNCFcZ5RlEIPSNluBP6VY66A=
Subject key identifier: 2E:4E:A0:E2:43:56:00:D9:0A:92:2F:74:F3:C2:4E:1D:53:7D:5A:3D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18D1
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5C22C1569DDF11EF9E461996762E951A.roa
Signing time: Fri 08 Nov 2024 14:40:12 +0000
ROA not before: Fri 08 Nov 2024 14:40:08 +0000
ROA not after: Sat 07 Nov 2026 14:40:08 +0000
asID: 53340
IP address blocks: 154.16.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6353 (0x18d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 8 14:40:08 2024 GMT
Not After : Nov 7 14:40:08 2026 GMT
Subject: CN=672e22cc-07f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2c:ea:60:8a:60:66:36:9b:96:72:de:ce:17:
77:eb:f6:8c:4c:8c:c3:1c:73:71:72:8c:40:20:5c:
62:49:61:d0:50:66:08:78:29:5d:52:73:e7:b6:24:
21:6b:a9:01:85:40:4c:bb:12:e8:61:fe:9f:29:35:
3b:cc:01:e7:1b:ed:b1:7f:73:91:a9:6e:dd:d4:33:
ea:ca:01:f8:7b:1a:b1:3d:45:d3:e4:ab:67:8f:07:
ed:ea:2e:22:24:e7:1f:81:ed:35:04:3d:ba:89:73:
f4:dd:41:12:a8:a0:94:60:73:5d:24:44:e6:9d:79:
21:30:32:a0:86:19:d6:23:a6:3e:a3:38:9e:73:21:
12:f7:df:8c:e9:ff:cf:71:28:3f:0a:06:35:bf:ee:
99:64:98:89:64:ad:a2:6a:a2:52:a4:88:18:df:8c:
38:79:ca:fb:51:04:8e:fb:4f:29:e1:45:93:9c:66:
f8:a7:8a:3b:e1:4f:43:e3:2b:92:bb:25:08:de:a3:
61:f5:f8:29:46:08:c5:30:90:1f:37:ee:c8:16:95:
5f:13:26:64:65:0a:1a:2d:dc:ea:34:f1:6f:9b:27:
67:15:00:65:0c:c3:86:cf:de:06:e9:e7:76:9b:64:
c6:1e:1b:b1:94:47:08:6d:d7:18:bd:29:96:ff:ba:
39:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4E:A0:E2:43:56:00:D9:0A:92:2F:74:F3:C2:4E:1D:53:7D:5A:3D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5C22C1569DDF11EF9E461996762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.176.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ea:af:07:01:0d:2f:b3:7c:7a:90:30:53:dd:a1:27:83:99:
e5:37:04:f5:61:ea:b8:95:03:29:0d:89:ac:82:93:03:78:4b:
da:1a:41:5a:69:7c:6f:e2:d1:2b:05:81:2b:3a:30:51:e8:3a:
34:53:f6:fb:47:41:93:a5:57:2f:c0:09:89:1e:d9:ce:7c:d3:
de:74:9f:fb:dd:d0:c1:3a:ba:a2:26:51:59:02:a5:63:99:52:
1b:58:a5:11:7c:b3:b8:d3:80:fb:19:d6:39:84:e7:56:2f:5b:
0a:91:9a:11:d0:90:a8:bc:1a:d3:b9:82:a3:4a:eb:6a:f6:2b:
2f:ef:06:e2:e8:fd:72:c4:e8:4c:4e:80:f1:9c:03:4a:fe:4d:
c3:3c:d1:1a:0b:72:51:8d:f8:b4:90:cb:f6:c4:7e:d7:73:ae:
8f:f9:eb:4a:14:29:a6:e5:3b:e9:59:85:d2:2a:3d:7c:23:93:
c8:d5:d6:60:39:86:25:81:0c:bd:b1:e1:a9:75:f6:31:db:1d:
78:fd:54:b6:a0:10:77:89:be:fd:d7:6c:67:c2:c8:f2:06:4f:
f9:12:68:31:c9:ad:b7:f0:6d:bb:1f:06:a8:92:ee:9f:be:44:
f6:1b:f6:e7:d8:c4:be:a9:57:c8:02:a2:8b:4e:78:5c:a0:e8:
2c:9e:ed:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:26 2024 by rpki-client on console-ams.rpki-client.org