Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACB2368B43711ED9AE44C99F1222468.roa
File: AACB2368B43711ED9AE44C99F1222468.roa (raw, json)
Hash identifier: DuC+IadjmNpusTZk15QB5+6WSiqI21Mjr6CR6ipk+vk=
Subject key identifier: 5D:07:D2:41:4A:41:B5:11:D3:90:EC:14:54:FD:A1:30:DC:3D:B0:FA
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0BD9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACB2368B43711ED9AE44C99F1222468.roa
Signing time: Fri 24 Feb 2023 11:37:50 +0000
ROA not before: Fri 24 Feb 2023 11:37:46 +0000
ROA not after: Sat 22 Feb 2025 11:37:46 +0000
asID: 61317
IP address blocks: 154.16.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Apr 2024 12:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3033 (0xbd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 24 11:37:46 2023 GMT
Not After : Feb 22 11:37:46 2025 GMT
Subject: CN=63f8a18e-5b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:81:d5:e9:2f:bc:3e:97:d0:8b:d4:a2:ac:76:
81:1d:d6:b7:25:ca:23:1f:14:97:45:89:f1:19:9e:
7d:11:7e:8f:db:c2:3e:14:a5:2c:50:00:d3:8e:ba:
b6:5e:62:d9:30:94:98:02:40:0e:10:b1:b4:91:a6:
6d:ff:cc:8d:70:c5:04:03:9b:ab:f8:1e:1e:32:80:
a4:9d:f3:c4:f5:27:34:14:d7:aa:d6:0b:8c:8f:34:
6e:46:55:eb:ce:42:b7:6a:50:90:67:5b:9e:4d:9a:
ba:c9:84:f5:91:c5:54:14:6a:7a:a9:c8:6a:2d:b6:
96:a3:89:e5:df:f0:02:34:37:d8:3a:3c:92:fc:42:
ca:4f:66:95:d5:59:0c:d0:c6:74:d5:4e:2c:dc:f1:
c0:7b:18:67:7f:11:22:82:68:69:42:96:1a:ef:36:
0d:43:11:e4:2d:7a:9b:13:89:f9:81:e4:83:5b:8a:
b4:d0:9d:36:1f:62:77:4c:69:75:af:b0:29:1a:30:
09:ee:7a:99:06:83:b1:98:f4:26:36:77:a9:0d:71:
0d:c3:11:15:51:59:32:bf:5b:ff:e0:17:80:64:ed:
2d:aa:69:28:2e:87:b7:70:4c:0d:9c:60:67:31:83:
6e:48:eb:28:4e:e9:fc:42:a5:2d:a0:47:fc:58:70:
a9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:07:D2:41:4A:41:B5:11:D3:90:EC:14:54:FD:A1:30:DC:3D:B0:FA
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACB2368B43711ED9AE44C99F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c1:76:e1:45:63:47:29:c3:fb:da:df:b0:64:7b:4d:18:78:
28:6b:68:6e:e1:3e:eb:ea:2c:ea:c8:eb:9b:4f:f5:e8:6b:28:
fe:cc:5a:b8:38:f8:91:08:9c:40:9f:08:9d:d9:0b:a4:1e:a3:
f4:2a:b9:32:d0:79:f5:ba:b0:e0:ca:2d:73:29:c8:22:be:a0:
78:2d:01:70:16:2b:66:6c:52:e8:9f:31:68:eb:84:41:b4:a2:
6d:ab:58:e3:9a:25:96:e1:78:03:e1:24:ec:2c:8d:f0:1a:cf:
20:49:45:c5:ed:de:d4:2b:1b:2e:9b:c6:17:22:ca:e9:11:47:
88:39:aa:4c:18:11:a9:ec:99:71:e1:3e:c4:a9:65:5d:55:78:
8b:3b:0b:ac:f1:98:d1:38:e8:a3:f0:bd:60:70:3e:26:28:ea:
67:56:82:10:25:a8:0a:a4:cb:b8:ff:86:9f:30:ac:72:f5:65:
a7:70:d9:50:e5:1a:80:7c:81:8c:9d:f3:c7:84:5a:85:e2:81:
12:0a:a4:93:a3:3a:e3:40:bc:81:9b:48:62:30:2e:e2:0c:ca:
4c:1b:60:d0:4e:bc:85:74:70:4d:68:b3:9a:8e:42:ff:f8:9d:
72:06:da:3b:45:dc:37:ab:e0:6b:6f:e9:0f:7a:b4:ab:09:7a:
49:78:39:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 20:38:33 2024 by rpki-client on console-fra.rpki-client.org