Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DDEEDB4434F11EF90069383762E951A.roa
File: 7DDEEDB4434F11EF90069383762E951A.roa (raw, json)
Hash identifier: 4OHCUcrNObzgXCgSmKhL8lnIHkGBYLhWM25E9/fqhko=
Subject key identifier: E0:AB:AE:2B:FA:51:41:5E:77:E0:64:88:54:7A:6A:9B:E0:D6:40:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 173A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DDEEDB4434F11EF90069383762E951A.roa
Signing time: Tue 16 Jul 2024 08:43:37 +0000
ROA not before: Tue 16 Jul 2024 08:43:33 +0000
ROA not after: Thu 16 Jul 2026 08:43:33 +0000
asID: 212238
IP address blocks: 154.16.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5946 (0x173a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 16 08:43:33 2024 GMT
Not After : Jul 16 08:43:33 2026 GMT
Subject: CN=669632b8-7b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bf:f8:92:ee:fd:a5:05:67:02:4b:18:53:de:
7c:73:c5:f1:42:db:b1:6a:5f:0f:9f:53:29:3a:fd:
35:e7:b9:3e:0d:04:7e:8b:6e:a2:be:17:85:4b:b6:
a5:65:50:c1:5f:c1:8d:32:82:f0:fc:91:65:3b:94:
88:35:16:ea:74:de:d7:36:da:d7:05:6a:63:93:4c:
6b:1c:0d:8b:f9:b8:0c:6c:ff:09:46:94:da:f0:6a:
40:46:67:70:43:73:de:6e:2e:0e:1a:96:c0:c5:e2:
5e:8c:ef:ea:09:31:ad:de:69:4a:73:38:50:8b:da:
0d:1f:04:42:9c:93:48:ce:dd:3a:bd:ff:37:10:15:
37:49:b2:73:be:76:f9:c9:80:78:77:b8:24:0d:28:
1b:76:25:8c:27:f1:b1:fc:72:56:c3:58:4f:ef:08:
5a:68:08:bd:7f:64:d1:6d:02:fd:80:1a:c1:56:40:
d6:7c:4c:6f:a5:db:d9:2b:ef:bd:41:62:3b:89:e2:
b7:35:ef:82:ca:fd:28:e4:06:95:e2:a9:a6:49:ff:
2f:66:d1:ab:41:a1:db:c8:cf:19:9f:49:34:c1:e9:
84:3a:07:c6:98:a1:c4:a8:f9:d9:73:d4:1d:19:79:
83:21:20:d3:eb:da:f8:1a:19:ee:86:55:ad:9d:47:
e9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:AB:AE:2B:FA:51:41:5E:77:E0:64:88:54:7A:6A:9B:E0:D6:40:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DDEEDB4434F11EF90069383762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:76:ef:ec:ea:25:53:8f:76:ff:2d:f0:f1:11:13:34:2d:b8:
d8:8b:4d:cf:37:1a:a4:13:5c:ee:92:5b:e3:2a:97:b2:ff:12:
fb:43:cc:ba:7c:5b:28:94:3d:a5:c9:91:31:e5:12:e8:ab:9b:
fc:63:c3:55:f2:87:f5:77:bb:7d:52:07:c2:08:ae:cc:a6:5c:
f0:fd:f3:b5:d2:32:2b:5c:b7:38:c1:45:16:32:53:62:5a:ba:
c4:89:26:a5:50:c6:20:3d:ce:9f:fe:8f:55:da:5b:87:e4:f6:
4e:e4:47:b1:bb:56:4b:a9:b1:fa:8a:3a:56:d6:d2:4b:06:10:
5f:6c:64:3f:f6:2b:dd:e5:52:21:fe:2f:95:d5:85:c5:21:ae:
f5:3c:57:7a:48:70:b6:af:97:69:72:ce:1a:bb:54:c8:83:6c:
d3:0f:0c:ed:aa:ee:bd:d0:48:f8:c6:ba:d3:70:a9:1c:00:ce:
4c:b4:d3:87:61:d1:eb:24:37:2c:d0:a1:ed:c1:91:a8:56:26:
03:57:fd:b0:6c:9a:a9:f9:c9:5c:6e:40:ef:a7:48:a9:f9:8e:
99:6e:c6:80:3d:72:83:f0:62:e3:7b:74:8a:17:a6:35:2e:ee:
be:82:33:95:59:c3:e7:54:6d:45:38:8b:bc:c2:88:81:2d:d4:
6e:9e:a0:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org