Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6F4483A8903A11EF93E5B796762E951A.roa
File: 6F4483A8903A11EF93E5B796762E951A.roa (raw, json)
Hash identifier: fl2tlIjcxY+nmmEmkbD5s+Bu+O0TZhXdvm625upW8/w=
Subject key identifier: 11:67:69:08:BC:29:C0:C2:D3:7B:49:CC:BF:1E:41:E3:31:02:9F:72
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1896
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6F4483A8903A11EF93E5B796762E951A.roa
Signing time: Tue 22 Oct 2024 05:56:52 +0000
ROA not before: Tue 22 Oct 2024 05:56:48 +0000
ROA not after: Thu 22 Oct 2026 05:56:48 +0000
asID: 212238
IP address blocks: 154.16.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6294 (0x1896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:56:48 2024 GMT
Not After : Oct 22 05:56:48 2026 GMT
Subject: CN=67173ea4-acd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8e:f4:9c:b3:c5:d9:2f:4b:6f:23:f3:da:39:
97:df:64:37:52:44:59:83:1e:60:f1:24:16:8b:a4:
fb:24:34:e5:3b:b4:8c:33:2d:e3:83:2e:4c:4c:c4:
6e:cd:7f:74:0e:d9:da:f9:48:19:56:28:2e:01:23:
9b:58:21:36:1f:3b:8e:2a:05:8c:3c:14:2d:72:13:
62:27:b5:3c:79:8a:17:08:3c:63:37:04:56:50:be:
05:a5:37:26:c9:f1:47:82:48:c5:f8:96:15:d8:99:
6d:28:c0:d0:c2:cb:a8:78:a8:a9:c6:6c:87:2e:ed:
79:64:81:4d:3b:35:55:2c:75:3b:ff:9c:36:23:b6:
8d:77:91:ae:26:8f:01:4b:25:cb:72:24:2d:5b:b3:
68:6a:93:fb:c1:e5:be:8d:f1:85:31:66:7f:33:b9:
00:17:de:42:46:08:ee:0b:97:33:6a:e5:f1:c8:81:
7d:c5:ca:d4:30:5f:61:f3:17:bc:56:c0:af:ed:c3:
30:d3:32:1e:73:bf:78:1d:38:f9:26:c5:ff:1e:95:
c6:c0:9a:df:97:b4:b7:66:ba:2b:ea:df:71:5e:ce:
0d:22:ba:af:c3:25:76:de:08:2b:91:80:8b:d3:b2:
7b:57:87:ce:66:ad:de:26:6a:9f:5e:19:1e:77:39:
2c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:67:69:08:BC:29:C0:C2:D3:7B:49:CC:BF:1E:41:E3:31:02:9F:72
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6F4483A8903A11EF93E5B796762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.197.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:20:b8:90:1e:69:3e:51:aa:55:f8:ee:1a:92:5f:bb:87:e3:
b2:2f:6f:ae:84:72:71:6e:40:13:1b:68:43:2f:e7:ac:56:ec:
ef:cb:eb:0f:32:bd:67:6e:12:71:c0:b0:61:b4:bc:85:6a:05:
09:e4:56:be:68:5a:70:93:6b:e5:11:60:5c:f3:0f:fd:9b:62:
25:fc:d9:c3:84:21:3d:d1:a3:42:af:c9:4e:96:77:c5:f7:be:
f9:8c:1a:dc:d2:75:1f:4d:2d:bc:45:1f:60:6a:c5:1a:a3:ac:
d9:67:71:d0:6f:03:a7:5d:4c:75:ab:31:d4:21:e4:74:e9:a4:
0a:a0:90:e5:58:60:04:bd:65:02:bb:bf:dd:6e:d0:ed:7f:b0:
73:e9:57:6e:13:72:39:dc:5b:d5:8d:b1:37:01:00:58:4f:68:
c2:f9:7d:bd:47:9d:9f:e0:c0:87:20:95:a6:09:0d:38:4e:7f:
2d:3a:98:78:6d:27:cb:6b:18:a8:13:60:f6:84:44:84:5a:2b:
24:a4:42:9d:f0:c7:b1:20:4b:ba:f0:c1:42:05:55:7c:6b:2d:
38:84:4f:1b:0b:c0:3e:2e:27:d3:cc:37:c2:ae:48:bb:90:76:
f2:02:2c:ec:90:12:32:fe:b1:34:52:60:bf:99:5c:4d:9f:08:
62:e5:f0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org