Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACED1DE904511EFBA62815E762E951A.roa
File: AACED1DE904511EFBA62815E762E951A.roa (raw, json)
Hash identifier: khZMuGqZ00uHp3nvO36ZUypN+dA8hk0Eeg7zThW2BxM=
Subject key identifier: 63:3C:46:E4:DB:57:51:32:9F:73:D1:6F:57:86:A8:AD:88:A2:6D:AD
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18B4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACED1DE904511EFBA62815E762E951A.roa
Signing time: Tue 22 Oct 2024 07:17:16 +0000
ROA not before: Tue 22 Oct 2024 07:17:13 +0000
ROA not after: Thu 22 Oct 2026 07:17:13 +0000
asID: 11426
IP address blocks: 154.16.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6324 (0x18b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 07:17:13 2024 GMT
Not After : Oct 22 07:17:13 2026 GMT
Subject: CN=6717517c-2ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8e:bf:b6:8a:ca:b9:fc:2b:4e:bf:ab:97:3b:
09:ea:91:e6:bf:16:3e:0e:4f:4a:5a:fa:6a:7b:e5:
7d:25:8e:0b:9f:33:73:3b:da:87:6a:f5:fe:5d:bb:
a9:91:76:e0:23:d8:b4:fd:00:01:6b:36:fa:85:ae:
36:b1:6c:55:e4:51:ee:9b:a5:b0:9b:c1:a3:13:6f:
c2:5d:67:30:4b:eb:e9:fb:bb:16:97:33:76:37:e7:
d6:85:8d:26:a2:7a:e7:fb:77:d7:52:ed:a3:f8:c9:
c2:80:9a:11:e2:6f:be:0e:51:e0:8d:e8:6e:91:90:
03:70:f0:e5:56:bd:90:0b:a5:11:16:03:62:1f:58:
0c:5c:91:48:29:d2:07:09:39:fe:4b:cf:65:a8:16:
de:f4:17:54:f0:22:7c:54:c3:87:9f:ce:bb:f5:d8:
83:a6:44:81:06:5a:f4:55:a7:f8:f2:33:78:a8:81:
42:70:66:51:b2:e4:4d:4f:e8:4b:b2:4a:cd:3f:c6:
3c:0b:03:a4:f9:8b:93:62:e1:58:fd:ce:2e:ff:a8:
53:e6:48:49:0b:29:ed:9f:83:fd:e5:7e:ce:2f:30:
77:ae:fb:58:02:be:89:47:11:e0:79:cd:b4:9e:71:
bd:40:c1:60:41:eb:4b:03:24:58:29:1d:95:cd:36:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3C:46:E4:DB:57:51:32:9F:73:D1:6F:57:86:A8:AD:88:A2:6D:AD
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AACED1DE904511EFBA62815E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.173.0/24
Signature Algorithm: sha256WithRSAEncryption
78:76:89:2c:70:ba:d0:3d:fa:94:b6:51:ac:f1:5d:53:ee:a3:
11:9b:79:92:da:f5:57:2e:7e:49:4b:7f:0b:9c:73:d9:ad:11:
28:62:58:4d:e8:0b:67:09:61:8a:17:8d:17:b2:36:b3:24:88:
c2:08:18:7c:7c:15:9f:b3:ed:ee:1b:22:ec:14:2a:df:f4:c6:
4c:c4:96:79:58:03:21:42:d3:4f:e0:ea:18:bc:f2:2f:e2:36:
c7:30:63:66:3f:a4:e7:1c:ef:45:55:d6:c5:77:f6:86:49:f0:
59:f2:8d:70:0a:94:ef:42:03:c2:79:b7:2d:cc:ee:b5:71:1b:
fb:7f:95:be:7b:67:59:d8:9e:6d:ff:3b:af:f1:15:07:f2:9d:
89:a5:29:e8:71:be:da:bb:9e:a8:6f:77:fb:b3:d3:73:85:ac:
e5:74:92:e4:f0:d6:c4:35:c3:6d:9e:90:00:d1:7c:8c:47:ec:
e4:31:87:88:1b:eb:c3:b4:27:1f:7f:93:af:7f:00:27:2c:33:
c9:d2:89:78:3d:d0:81:4f:d1:d7:76:31:8c:f3:2c:5e:31:34:
12:1b:2e:19:ee:d0:91:00:92:3a:41:23:34:00:91:79:9b:bc:
12:40:bf:a6:12:af:48:3b:35:f5:86:b5:a1:96:c6:51:16:11:
0d:5b:81:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org