Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A10F1984B74C11EDA5958CEAF1222468.roa
File: A10F1984B74C11EDA5958CEAF1222468.roa (raw, json)
Hash identifier: Y25dn2WrwmhZvFF7TmafvoLhyPEHuRMzVkbJcLaOmx8=
Subject key identifier: 0E:99:C8:A2:8D:A1:A1:75:A8:61:11:24:CA:63:79:CF:7D:DC:1D:A9
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0C7F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A10F1984B74C11EDA5958CEAF1222468.roa
Signing time: Tue 28 Feb 2023 09:45:27 +0000
ROA not before: Tue 28 Feb 2023 09:45:23 +0000
ROA not after: Fri 28 Feb 2025 09:45:23 +0000
asID: 61317
IP address blocks: 154.16.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3199 (0xc7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 28 09:45:23 2023 GMT
Not After : Feb 28 09:45:23 2025 GMT
Subject: CN=63fdcd37-a044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f5:ab:52:ee:7a:49:73:46:bf:b6:76:5b:9b:
0d:9a:ab:06:2b:a8:fa:c8:8b:f8:5d:dc:36:5e:b6:
36:8f:83:78:e2:aa:3c:63:9d:fb:d3:d6:03:b3:61:
92:fe:eb:a1:0b:29:96:50:91:42:20:24:32:e6:d0:
d3:65:5c:96:18:6b:b4:61:94:7e:b8:87:fa:3d:06:
d5:62:46:5e:ca:ff:37:62:5a:7c:cd:84:42:da:10:
fc:20:5b:8b:5d:a8:b6:fd:97:d8:8e:12:f9:70:81:
c2:01:b2:d9:06:d2:48:e0:22:c2:d7:d2:40:2e:5a:
15:02:dc:11:f4:a0:e1:81:50:8a:8f:2b:84:b9:ba:
26:f8:62:78:aa:4f:85:21:cd:19:66:33:4b:d3:df:
37:8a:0e:be:98:bf:b8:c7:01:56:e9:7e:61:37:2c:
aa:6b:7c:c9:ed:7c:4f:79:f9:33:33:16:68:fd:d5:
c0:ce:df:34:ec:44:9e:9f:d6:7a:c1:4a:a9:e7:ab:
2d:5e:e7:95:c9:cd:5d:f8:f8:8c:a9:15:6a:3f:f0:
f9:21:f4:54:36:89:44:8c:70:1b:73:99:5b:fe:ec:
26:60:3e:e9:7f:e8:e2:dd:4d:30:02:2b:30:8f:de:
df:b2:b8:fb:a3:ef:ca:19:fc:a4:31:25:84:ae:9f:
6b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:99:C8:A2:8D:A1:A1:75:A8:61:11:24:CA:63:79:CF:7D:DC:1D:A9
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A10F1984B74C11EDA5958CEAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.177.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ba:18:06:bf:29:0a:70:61:2b:89:81:2d:42:5b:0b:bd:26:
d2:8c:27:46:71:eb:35:7d:fa:e2:58:9b:e5:e1:ca:d2:85:b5:
3c:81:02:c8:19:cf:6f:b1:ca:22:9b:a9:71:19:84:57:9c:9b:
e5:97:20:c8:2a:84:0b:bd:e5:44:6f:47:74:b4:ac:74:89:92:
26:67:17:8b:61:25:c8:56:35:0d:7d:71:54:7b:ee:15:d4:05:
b5:e3:e7:d1:70:85:c3:5c:f5:fb:f0:88:70:d5:5c:0d:59:48:
89:44:bd:0a:ec:4c:f6:6b:ba:0d:d6:3b:45:25:ad:bc:de:fd:
a2:ad:44:43:3d:f8:c5:d2:45:7b:75:d2:ab:f8:31:0f:fe:85:
08:c4:f6:0d:8f:71:db:35:08:02:a6:43:66:e1:6a:94:3b:02:
bf:1c:b3:35:f2:51:7d:6d:73:ac:88:b1:d7:44:d2:d9:cf:e7:
f8:4c:82:7e:87:c4:d1:d7:06:54:a9:34:24:38:71:1f:c3:74:
71:aa:85:cb:eb:16:62:0d:30:32:66:df:60:2d:e9:41:06:8a:
c0:87:2c:88:e5:a0:e0:08:e1:1f:d6:ed:4b:76:64:30:0a:50:
52:18:ca:9c:0d:0b:23:5c:41:8f:a1:04:66:be:5a:0d:4a:d9:
f0:b3:7d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:33 2024 by rpki-client on console-fra.rpki-client.org