Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA89561C903711EFB37C7B85762E951A.roa
File: AA89561C903711EFB37C7B85762E951A.roa (raw, json)
Hash identifier: RYqTGRq59Ul/5sjLKl/XJlYmxukdEw2zvgU9qmLc4aY=
Subject key identifier: 5E:E8:6E:02:E1:B1:EF:FB:F7:8A:4E:BB:7C:8E:99:3F:22:A1:B2:EA
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 187E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA89561C903711EFB37C7B85762E951A.roa
Signing time: Tue 22 Oct 2024 05:37:03 +0000
ROA not before: Tue 22 Oct 2024 05:36:59 +0000
ROA not after: Thu 22 Oct 2026 05:36:59 +0000
asID: 36352
IP address blocks: 154.16.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6270 (0x187e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:36:59 2024 GMT
Not After : Oct 22 05:36:59 2026 GMT
Subject: CN=671739ff-645a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:c6:55:d7:91:3f:82:e0:f6:b6:76:2d:3f:
37:ff:cb:5a:17:f6:92:cf:13:bc:c0:5e:1e:84:33:
2b:b5:3e:30:5f:cf:fd:76:a2:84:6c:bc:58:ed:e8:
53:88:e2:d7:fe:9c:8a:f9:b7:d7:be:b8:c4:fb:7a:
7b:5b:15:ee:27:c3:f6:95:d0:c2:1d:f8:0a:29:28:
68:c5:03:b1:1e:39:3e:8c:80:9e:d5:3b:3b:5c:0e:
ef:99:a5:cc:11:16:7e:e1:b3:40:71:8f:62:02:23:
7a:51:66:c5:d1:fa:0b:56:91:2f:c5:11:2e:88:2c:
11:b2:42:6f:7a:67:c6:05:7d:af:47:d3:24:ba:08:
51:15:a4:ee:e9:23:45:22:80:72:d1:f0:53:24:52:
b0:29:a8:50:d7:87:77:67:ec:d9:1c:0e:4e:80:88:
b1:27:e3:ba:3e:ee:0d:a8:2f:a0:d7:40:38:f6:69:
50:6c:57:f3:ee:c5:63:1a:33:cb:ae:bb:56:72:e4:
41:bf:38:dc:63:ff:ed:df:50:bf:fb:b6:79:c7:f1:
5e:c0:45:f9:3d:19:b4:71:f2:05:62:c8:b0:35:ce:
6c:59:24:93:42:68:12:69:63:b3:7d:05:82:2f:59:
24:c6:b5:1f:28:52:0f:d0:be:5c:6c:72:cc:74:52:
41:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E8:6E:02:E1:B1:EF:FB:F7:8A:4E:BB:7C:8E:99:3F:22:A1:B2:EA
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA89561C903711EFB37C7B85762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.115.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:05:e6:a7:af:d1:96:0d:e1:a3:73:15:51:fd:36:e7:95:0a:
4d:2f:7c:d7:e4:51:3c:21:ce:0e:a1:07:d3:54:7c:9d:fe:78:
41:c7:05:6b:f7:0d:d5:ef:df:95:60:80:1d:dc:c1:08:65:bf:
c8:eb:f0:2e:45:15:bb:ec:53:b3:82:4f:0d:0e:56:f0:04:0d:
9a:b3:e8:d6:05:4f:f5:dc:7b:6a:4e:87:98:dc:32:ae:94:ba:
31:a0:0e:69:cc:21:d5:bc:5d:8a:51:6e:3c:02:d7:c2:c1:bb:
a6:e4:84:75:07:7c:db:62:5f:00:7d:8b:97:7d:eb:2f:a9:c3:
ba:6d:c1:b9:d3:3c:a9:d4:0a:f7:3c:38:21:10:fa:95:7b:f8:
48:9f:2b:12:0b:46:3b:a4:ef:ea:dd:3b:98:e7:a9:cc:97:e9:
85:79:73:a9:ac:0a:23:80:d8:92:71:60:cc:9d:8d:7c:f5:9b:
98:8b:7a:29:ce:37:6d:19:4c:94:cb:99:a2:00:9e:58:f6:ef:
c4:09:9b:37:c5:73:e4:0c:7f:99:0e:1b:f0:0e:c6:21:4e:90:
bd:c8:36:a0:ac:6c:9b:7a:35:68:69:08:1b:48:56:11:62:ac:
aa:34:e1:a6:0b:f0:9f:5b:d9:d2:37:94:81:d1:06:ad:ae:09:
44:b9:b2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:46 2024 by rpki-client on console-ams.rpki-client.org