Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A98E85A08C1C11ED8A4AF5BAF1222468.roa
File: A98E85A08C1C11ED8A4AF5BAF1222468.roa (raw, json)
Hash identifier: tIgjSNq9LGQtRKHrQLftkV8zHv+kqC3sstBluhoZt7I=
Subject key identifier: 76:01:6D:EE:EC:87:C5:4D:44:17:37:64:AE:EA:2F:24:33:2A:6F:F5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B43
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A98E85A08C1C11ED8A4AF5BAF1222468.roa
Signing time: Wed 04 Jan 2023 10:43:45 +0000
ROA not before: Wed 04 Jan 2023 10:43:41 +0000
ROA not after: Sat 04 Jan 2025 10:43:41 +0000
asID: 399641
IP address blocks: 154.16.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2883 (0xb43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jan 4 10:43:41 2023 GMT
Not After : Jan 4 10:43:41 2025 GMT
Subject: CN=63b55861-0939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a9:26:75:24:df:ad:f3:f4:c5:4e:ae:57:46:
9b:39:15:29:48:27:3b:08:cb:de:a4:ae:f4:e8:8e:
b2:0c:4e:9c:23:42:69:d4:1b:9e:2a:e7:15:8e:b0:
05:ee:1e:81:50:78:a6:73:07:de:d1:ad:ce:a8:f7:
8e:78:89:44:cb:63:b8:86:97:9a:43:74:2e:c3:11:
6f:81:36:ea:db:f3:90:61:6e:3a:0c:99:0c:dd:0f:
da:97:da:5a:70:3d:8a:ac:98:47:e0:26:97:11:38:
a9:ce:a7:58:b0:28:b4:b2:73:ae:a8:a5:f1:85:a0:
14:a9:25:e4:80:d8:ad:52:c4:00:0e:0a:94:56:c6:
77:a9:f5:2d:40:9b:2d:8d:0b:23:12:84:27:1e:3c:
be:0d:8d:4e:e8:27:14:1a:27:78:bd:7b:a2:40:b4:
54:c1:ba:a3:66:c1:bd:d0:99:10:34:1a:44:57:a6:
fc:74:6e:64:0e:31:c7:48:01:9e:ed:ed:dc:2c:6a:
81:ff:5b:e1:c4:50:80:03:8a:60:45:60:88:52:0c:
cd:b2:90:e2:17:4a:9d:6a:cb:f2:75:1e:1d:f0:33:
4f:b1:17:80:eb:fe:50:f6:5a:d9:f6:6f:b2:f6:91:
de:07:20:55:8a:83:f0:a0:da:45:21:5f:b7:8c:cd:
49:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:01:6D:EE:EC:87:C5:4D:44:17:37:64:AE:EA:2F:24:33:2A:6F:F5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A98E85A08C1C11ED8A4AF5BAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.99.0/24
Signature Algorithm: sha256WithRSAEncryption
70:54:54:72:9b:a8:0f:48:64:58:8b:4f:bf:92:79:b9:11:0e:
fc:b6:a2:79:c7:61:18:5a:75:5b:c8:e7:24:66:b3:1a:0c:3f:
8c:94:7a:46:2f:d5:af:0b:a5:ae:07:a1:b7:76:a8:00:e9:2a:
10:c4:00:5d:9c:9d:2e:34:1e:30:af:52:2f:f2:be:51:af:65:
e2:1c:36:a7:25:90:60:08:85:39:b2:16:33:f1:c8:5c:dd:be:
0a:57:fa:b0:4c:69:80:22:78:38:2f:88:b2:f0:10:be:db:b3:
9c:c4:3b:18:d5:ac:24:fb:b0:b4:3d:b0:6f:df:ab:a4:fc:3d:
af:f1:26:02:f9:c0:e4:95:fb:6c:26:ab:29:f7:ab:c6:de:62:
b4:4b:37:eb:b6:ea:03:9f:09:60:31:4a:09:67:67:24:50:4b:
27:89:f1:18:b2:ca:19:31:f2:29:36:ba:cd:70:35:f4:24:a2:
f2:57:fa:0a:d0:ed:cf:28:ad:41:b8:70:74:b9:53:2d:73:f6:
28:4e:04:d3:39:ff:89:d3:13:f0:52:ca:0f:b9:9b:f1:47:4b:
ef:fb:37:41:82:17:c1:00:bd:b2:f5:d0:15:0a:ca:55:f4:e2:
94:e6:59:3a:57:aa:44:7f:13:57:74:81:c2:54:db:0c:2a:07:
49:13:1a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:32 2024 by rpki-client on console-fra.rpki-client.org