Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89167FD867AF11EFBD7F8D69762E951A.roa
File: 89167FD867AF11EFBD7F8D69762E951A.roa (raw, json)
Hash identifier: q+j3gaezq5qmE4yZI5h59bz/ZeKSGj8awqWgeuPjx10=
Subject key identifier: 75:A0:FB:26:F9:31:34:A5:05:1A:E4:67:73:18:E0:78:CB:DF:FE:1A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17DD
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89167FD867AF11EFBD7F8D69762E951A.roa
Signing time: Sat 31 Aug 2024 15:41:49 +0000
ROA not before: Sat 31 Aug 2024 15:41:45 +0000
ROA not after: Mon 31 Aug 2026 15:41:45 +0000
asID: 834
IP address blocks: 154.16.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6109 (0x17dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 31 15:41:45 2024 GMT
Not After : Aug 31 15:41:45 2026 GMT
Subject: CN=66d339bd-404a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:54:1e:a5:e2:3a:80:76:bb:44:3e:7d:6d:75:
a2:9b:76:87:c3:4a:ae:f0:88:83:2c:67:ec:db:b0:
5b:4c:c2:15:22:e0:6c:4f:d0:76:a0:08:f2:9e:5c:
9b:c0:31:44:96:ab:bd:b9:e5:22:69:90:73:88:b6:
8d:6d:36:59:a6:7d:1a:d8:56:a3:83:00:49:e1:ac:
48:0c:08:34:d6:94:ef:08:b2:03:62:9f:30:94:5a:
30:24:7c:82:77:60:e7:0a:12:11:79:d2:da:63:76:
04:40:a1:d0:02:39:74:86:7b:c7:c2:b7:a1:92:ab:
ad:47:09:9e:82:8b:ce:07:f5:20:f9:86:54:9a:3c:
f4:de:69:0f:ee:18:cc:4b:4b:b9:66:5a:71:58:21:
69:7b:ec:58:b6:00:59:58:60:94:2f:35:36:78:b4:
d3:af:02:a2:3c:f7:5a:ce:cc:15:2a:ea:ff:88:91:
23:c9:cf:20:8f:cf:13:e7:7f:ea:2c:16:37:5a:19:
e1:9b:10:40:b0:ea:4a:b6:82:2b:0c:86:3e:a4:d6:
0e:72:37:f3:ee:0d:54:3b:61:d9:1d:82:14:8f:72:
b0:69:9b:83:d2:62:59:f7:ad:12:28:d2:ab:9f:84:
c9:37:43:3a:08:fc:d1:6f:43:27:cf:9a:ec:9e:52:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A0:FB:26:F9:31:34:A5:05:1A:E4:67:73:18:E0:78:CB:DF:FE:1A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89167FD867AF11EFBD7F8D69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.194.0/24
Signature Algorithm: sha256WithRSAEncryption
af:63:4e:aa:40:80:2d:06:ba:aa:e8:82:cc:2f:a4:63:31:94:
9f:94:b3:5f:7b:ed:f7:09:e9:35:31:72:be:40:e2:cc:a5:f0:
a0:8f:45:3b:b2:93:15:34:4d:e0:e0:05:79:08:45:2a:ac:74:
4a:e7:df:03:c9:c6:01:e4:56:ba:ff:a7:86:66:4a:a7:e4:3b:
d6:0f:02:98:da:be:cb:44:76:19:a3:2a:0f:f9:23:73:97:c8:
c3:06:4b:ed:85:4c:25:0a:49:b8:18:13:e7:c0:40:98:b9:76:
ba:a9:4d:b9:22:dc:43:16:b0:55:de:a6:ec:38:e1:da:71:1e:
98:ab:a2:af:92:46:d9:9f:5d:ff:5e:b8:54:f5:bf:21:53:89:
f6:4c:ad:fe:a3:a5:71:c4:81:96:68:eb:1f:eb:ab:97:6d:e9:
f3:af:55:07:d3:ff:c9:af:11:48:bf:c0:4f:43:0e:82:90:da:
00:e5:5c:d9:24:82:d4:cd:53:05:51:48:21:56:25:aa:82:c8:
be:33:9d:5a:cf:cf:c4:46:04:11:28:03:13:ce:54:15:09:2e:
89:50:85:e3:d6:79:da:0d:61:4a:0b:dd:a7:82:3d:60:7e:67:
b0:97:b0:2f:d7:f3:2e:eb:9f:b8:55:40:2c:96:ba:79:a9:c5:
fa:98:99:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org