Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9D29B58C735B11EF9A490A81762E951A.roa
File: 9D29B58C735B11EF9A490A81762E951A.roa (raw, json)
Hash identifier: k3za3+lmZ93Au19I1FlEQ0Zeqx6QeJWTo4y38JhqBZA=
Subject key identifier: F7:C7:FE:E9:73:25:96:B7:1B:23:05:E9:A7:00:CC:2A:BE:8E:0D:6A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1804
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9D29B58C735B11EF9A490A81762E951A.roa
Signing time: Sun 15 Sep 2024 12:11:19 +0000
ROA not before: Sun 15 Sep 2024 12:11:15 +0000
ROA not after: Tue 15 Sep 2026 12:11:15 +0000
asID: 834
IP address blocks: 154.16.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6148 (0x1804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 15 12:11:15 2024 GMT
Not After : Sep 15 12:11:15 2026 GMT
Subject: CN=66e6cee7-cf41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a6:36:5a:7f:53:a4:8c:3a:7a:b6:b3:92:47:
fb:9f:1b:0b:9b:27:16:40:c8:1d:d6:cb:94:9e:26:
f2:75:9a:55:f5:7c:40:a0:eb:5d:36:d3:bc:8f:c5:
d6:76:d6:6b:92:91:fe:1c:c4:31:0e:56:9b:4a:f6:
c8:6c:eb:bd:6a:b5:75:9b:d5:6c:ea:0a:d2:2a:b3:
d4:80:65:04:75:8c:ed:6f:51:ad:5b:b7:d4:fc:ef:
52:12:05:48:b1:b4:50:80:e9:1a:6a:32:9d:67:e3:
c9:e9:ca:a8:f5:76:b9:f8:e9:4b:4e:bd:2a:d4:d6:
1d:6a:65:46:55:6e:70:41:49:84:ba:39:5a:64:91:
c3:6e:49:d1:0e:46:06:09:2e:14:0c:a3:27:c2:da:
6f:80:1c:87:0e:47:40:09:3d:de:f5:46:d8:6f:f8:
a5:89:20:e4:76:a6:c9:36:58:91:c1:10:ca:ae:d3:
b6:6e:42:21:57:42:59:f5:3e:f9:fe:97:56:8f:c8:
26:d9:ba:6f:09:e0:80:05:5a:85:bb:64:75:18:e4:
9a:e1:fe:86:64:8e:c9:dc:81:d5:9b:6d:9b:c3:3d:
64:06:d2:a6:ed:12:51:6e:8e:5f:ce:0d:84:49:8f:
86:ab:d2:dc:34:89:46:02:9d:2f:eb:fa:98:dc:09:
45:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C7:FE:E9:73:25:96:B7:1B:23:05:E9:A7:00:CC:2A:BE:8E:0D:6A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/9D29B58C735B11EF9A490A81762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.228.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:11:74:74:6b:65:62:6f:d9:06:9f:7b:24:3c:4e:96:13:5b:
73:0d:f0:72:95:02:02:c8:c2:97:e1:b6:90:68:f5:1e:e3:4d:
c8:c5:34:ca:50:6e:eb:ee:bc:ed:63:c8:f2:33:33:12:11:55:
28:0f:ff:5b:94:6c:8f:a2:7f:c1:e7:b8:6d:9c:01:d0:89:b5:
58:73:70:39:40:5f:ea:50:78:a8:e9:11:34:34:72:5d:84:ce:
cb:2e:d3:04:14:64:bd:3e:18:91:91:f3:20:81:1b:3e:2c:a1:
fd:75:c1:03:6c:9b:b9:3f:64:c8:5f:11:e0:dd:ee:57:8c:8b:
4f:e6:d6:04:e0:aa:61:ac:cc:50:83:d6:ac:0e:d2:45:d8:17:
ff:e3:b8:c5:11:e9:6a:dd:7f:28:34:df:84:8d:f3:78:b4:34:
91:05:0c:a3:da:13:0d:7c:01:9c:af:44:c3:4a:52:94:b6:e5:
9b:66:9f:1c:17:d0:9d:39:e2:b5:a5:13:9a:b9:fa:64:d4:19:
e2:08:07:42:43:c6:83:c0:d2:a3:85:9d:dc:23:13:ae:09:18:
25:5a:0e:1c:ee:30:24:52:3b:5b:15:c4:bd:04:6f:1e:96:d3:
a1:ee:78:c4:66:bb:62:84:21:33:b9:be:37:e6:ac:e5:b8:f6:
2a:82:2a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:18 2024 by rpki-client on console-fra.rpki-client.org