Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A134F7FE4E4911EFB380CF9C762E951A.roa
File: A134F7FE4E4911EFB380CF9C762E951A.roa (raw, json)
Hash identifier: OylC/ScaP+i22wtTyJMu+ObWHH9RJGv3OjcGCYedszM=
Subject key identifier: 7B:2F:A2:BD:C7:77:28:57:3C:9C:3B:AA:1F:3A:03:DF:DA:D3:DA:DB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1761
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A134F7FE4E4911EFB380CF9C762E951A.roa
Signing time: Tue 30 Jul 2024 07:59:22 +0000
ROA not before: Tue 30 Jul 2024 07:59:18 +0000
ROA not after: Thu 30 Jul 2026 07:59:18 +0000
asID: 396073
IP address blocks: 154.127.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5985 (0x1761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 30 07:59:18 2024 GMT
Not After : Jul 30 07:59:18 2026 GMT
Subject: CN=66a89d59-34ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:13:8c:f1:e7:1e:f1:d1:61:c1:c5:01:00:87:
04:8d:56:87:83:fb:7f:ce:49:2f:8a:e7:d6:5b:78:
06:f4:4d:60:38:70:f7:c2:91:37:3b:a0:4d:96:a7:
58:0c:a7:e9:2a:dd:5f:a7:b5:6b:63:80:47:25:70:
88:93:fb:c4:57:1f:da:39:82:0c:67:e2:13:cd:55:
9b:37:be:42:c3:51:90:1d:96:ef:66:d0:71:40:96:
81:8b:5c:28:c9:c8:53:5a:17:25:9b:0b:9d:2e:c9:
d6:14:6f:5d:6b:83:ad:40:d0:82:9d:01:2a:ee:d0:
c3:92:06:15:c5:22:56:9d:e4:08:af:e8:98:46:31:
bb:e9:68:ae:80:22:bb:91:19:e9:6d:b6:b5:df:33:
60:22:c6:99:04:cc:c5:f2:42:d9:4f:a3:3a:06:41:
3a:a0:e7:61:01:72:0d:c4:43:dd:5f:45:49:55:a8:
c9:8c:00:e3:04:8c:cf:24:d2:79:21:22:aa:d7:45:
aa:07:68:fc:1b:25:0e:51:b0:66:7e:1c:bb:c0:0d:
6e:8a:5b:60:de:82:e0:64:81:eb:6a:5d:05:91:0d:
42:95:ea:b8:57:b2:92:69:ac:ca:87:d3:c9:62:25:
e5:81:07:93:8e:74:d1:ba:d5:c4:c2:d3:89:91:b0:
5f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:2F:A2:BD:C7:77:28:57:3C:9C:3B:AA:1F:3A:03:DF:DA:D3:DA:DB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A134F7FE4E4911EFB380CF9C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.53.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:2c:b7:f9:e7:40:38:30:6a:85:b8:cd:5c:8a:f2:f0:be:af:
b2:d3:7a:e0:e3:9d:6b:59:be:30:d2:26:a4:7c:b9:aa:1d:2d:
ec:e0:93:ef:30:95:73:63:d0:c7:cc:30:0b:67:49:6e:70:82:
ee:0b:dc:90:d5:18:73:21:6e:94:ed:ee:ec:9d:38:cf:0b:13:
e9:cb:81:76:1a:8a:fd:57:a6:77:a5:e9:ed:a0:45:13:84:df:
83:05:dd:18:97:59:04:07:04:19:ce:a4:99:a2:6b:d8:44:e7:
1a:6e:05:6b:f9:7f:4a:93:6a:cb:1c:a4:2d:77:0f:cf:a2:a6:
d7:2f:10:9b:13:6a:b3:bc:48:49:2d:45:79:18:5f:41:0e:c8:
2d:c9:90:f8:e0:fd:6b:4e:62:da:b2:7e:15:01:df:0b:83:40:
78:b8:db:30:a3:5c:3c:76:37:78:71:37:18:46:0a:3a:a4:c0:
7d:f9:1d:56:a5:90:4f:78:3a:05:c0:6a:66:b6:e6:de:ac:bc:
a9:fd:c8:93:ea:db:da:6f:75:0f:db:7a:40:c8:59:d6:df:87:
c0:8d:33:ab:4a:1f:91:a6:72:57:cb:b5:8e:da:3b:92:51:d7:
12:d8:99:94:ab:a1:00:9a:8d:32:50:1a:12:ac:55:52:71:6f:
d1:6d:2c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:46 2024 by rpki-client on console-ams.rpki-client.org