Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A58CF63A856211EF97F669A1762E951A.roa
File: A58CF63A856211EF97F669A1762E951A.roa (raw, json)
Hash identifier: uos+wd6sh+mcoalRQmcR1fMNn7d2oIq0/+paCeFfZq8=
Subject key identifier: 20:1C:7B:5D:E3:37:E9:93:E0:8B:AF:F2:38:09:00:C7:78:AA:B9:CE
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 184D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A58CF63A856211EF97F669A1762E951A.roa
Signing time: Tue 08 Oct 2024 10:47:01 +0000
ROA not before: Tue 08 Oct 2024 10:46:56 +0000
ROA not after: Thu 08 Oct 2026 10:46:56 +0000
asID: 212238
IP address blocks: 154.16.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6221 (0x184d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 8 10:46:56 2024 GMT
Not After : Oct 8 10:46:56 2026 GMT
Subject: CN=67050da4-3753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0e:d4:0e:02:a4:91:f3:20:0b:2a:3c:cc:25:
ee:c0:88:c9:ab:77:f3:68:29:1a:d5:5a:6d:a4:d6:
b2:80:50:33:a6:1f:c6:09:72:3b:9b:86:16:9e:94:
de:ab:76:fc:f1:72:c1:63:d6:6b:11:3a:96:06:65:
5c:ac:01:8e:b5:20:d5:a9:10:91:55:5c:90:89:ce:
6e:91:19:0f:ae:73:fb:33:7d:57:4e:73:d2:60:90:
df:b7:0a:6e:25:b2:e4:96:d1:29:3d:e6:c2:65:07:
54:5f:6b:cf:40:87:51:83:88:5b:f9:e9:cb:ac:ff:
95:7c:65:71:57:db:fc:a6:f7:44:0b:ca:ed:45:ee:
52:86:29:6c:90:b7:6f:6d:4a:af:e8:30:1a:c5:f8:
1d:fc:b2:ea:b8:5d:39:11:75:ea:d9:bb:4d:1a:06:
4f:b8:ff:ca:0c:9b:6b:5d:55:79:83:de:27:3b:e3:
64:b4:c3:3b:d9:d0:15:2a:a4:64:4b:93:9b:e4:5a:
31:97:85:da:ec:41:2f:17:7e:3e:0b:fc:bf:43:4d:
86:4a:00:96:24:27:6b:b3:0d:41:61:45:16:35:d7:
c6:a6:ea:66:9f:ef:05:97:ca:ff:9f:0b:2a:90:c6:
c8:e3:22:df:42:29:96:d2:4b:f3:67:d9:66:4c:f4:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1C:7B:5D:E3:37:E9:93:E0:8B:AF:F2:38:09:00:C7:78:AA:B9:CE
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A58CF63A856211EF97F669A1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.164.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2d:10:12:2e:fd:72:44:95:3e:53:cc:4e:0c:17:d4:a5:26:
55:45:f7:9f:9c:9f:25:38:22:f2:8b:e0:a5:5b:6b:d6:88:e5:
d6:3c:4f:ce:66:e7:f6:c6:c5:e2:8a:26:ca:42:81:8e:4e:42:
75:f2:94:39:ee:3d:42:dc:6a:ae:99:41:60:2c:24:d1:a4:a8:
41:e1:a0:07:f2:b0:14:1c:dc:40:ec:1b:cb:04:52:ab:6b:e5:
02:a2:28:0b:e0:e7:0e:0b:a7:8d:a1:41:15:14:b1:51:b6:55:
59:35:8b:42:3a:f2:05:3d:e1:61:89:6c:a9:a1:c8:c6:98:41:
ce:9b:cd:90:5e:85:4e:2c:2a:a6:ac:59:ac:07:82:10:a6:07:
fa:29:87:6c:f8:07:d1:4c:4a:b3:c0:55:2d:e3:9e:08:4e:41:
1c:47:6f:cc:f4:b9:f9:9e:0e:96:ce:a8:1c:38:b2:ef:c0:d9:
30:0a:96:66:a9:af:45:57:5f:19:b6:cc:f5:de:ed:e8:cf:b3:
af:cf:e8:2d:56:96:4d:3d:f4:2f:e5:d9:98:dd:3b:b3:c2:40:
34:50:1a:10:64:55:30:34:4f:1f:a4:8b:7c:d4:bf:a9:9c:60:
b8:42:fe:62:03:a9:a0:29:b0:08:33:bb:f0:9b:e9:a2:47:3b:
32:a8:5c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org