Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AB7C7F62644611EFA8747A7E762E951A.roa
File: AB7C7F62644611EFA8747A7E762E951A.roa (raw, json)
Hash identifier: NjLTfWwKSH81FLOvh5iFItymhzEkoncN0hFJsUTM4HE=
Subject key identifier: C9:68:E2:AE:3A:92:70:33:53:B7:1A:63:7D:33:3B:C4:3D:41:0F:15
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17BD
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AB7C7F62644611EFA8747A7E762E951A.roa
Signing time: Tue 27 Aug 2024 07:33:36 +0000
ROA not before: Tue 27 Aug 2024 07:33:32 +0000
ROA not after: Thu 27 Aug 2026 07:33:32 +0000
asID: 5065
IP address blocks: 154.16.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6077 (0x17bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 27 07:33:32 2024 GMT
Not After : Aug 27 07:33:32 2026 GMT
Subject: CN=66cd8150-43d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:39:3a:40:46:67:6f:88:7c:17:e7:54:ea:d3:
25:b0:e9:42:22:03:65:8d:52:df:68:1d:4d:17:6e:
71:71:d7:35:01:9f:a6:bf:3d:de:81:1b:24:b6:5a:
ec:97:b8:e9:30:f6:05:89:5f:ab:24:d6:1e:fb:ab:
00:a3:4e:00:a3:2e:a4:92:b8:10:71:2f:18:a5:05:
1e:fc:70:f8:15:e6:ed:f5:e0:3e:d8:6f:c2:4d:bf:
75:df:71:4a:1c:71:84:6a:b2:8b:ab:ff:3a:6f:28:
97:a5:c6:00:b8:a3:97:f6:0d:75:5d:b4:24:08:f9:
a6:ab:e5:d9:87:59:c8:93:86:37:54:cb:0e:ca:57:
35:4c:fb:e1:a6:31:1f:4f:ae:fe:dc:11:53:15:e1:
0d:29:d7:c1:95:01:9d:04:3e:b5:c8:33:93:76:ca:
69:3e:a7:f1:8b:d3:69:46:b7:3a:af:64:04:fb:d1:
80:2f:99:27:96:39:2c:c4:a2:cc:d9:fa:d2:1d:ea:
49:0f:a7:82:6d:27:4f:8a:70:f0:fb:05:f3:fd:f0:
62:33:d1:e6:e0:15:51:1d:1e:7e:2c:f1:ef:a4:78:
40:24:a0:84:cd:e8:1c:04:d0:71:05:59:86:40:42:
7a:51:bb:b3:37:03:5a:22:79:e1:c4:ab:4e:e5:1e:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:68:E2:AE:3A:92:70:33:53:B7:1A:63:7D:33:3B:C4:3D:41:0F:15
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AB7C7F62644611EFA8747A7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.28.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:34:36:e6:71:f7:15:f3:2d:d4:c1:dc:56:15:11:7d:8c:4e:
4b:ff:83:c4:a4:46:16:41:d0:cf:a7:b0:99:57:98:78:96:dd:
98:7d:ba:91:b6:15:37:d4:aa:9e:cb:c9:fe:04:83:4b:b4:78:
bc:77:89:56:d2:ee:f3:3b:29:29:73:4a:0a:91:93:46:a3:81:
b8:92:57:8f:71:f1:29:96:11:29:be:a0:9c:06:46:da:bf:44:
d7:7e:6a:e6:1d:09:b8:6c:2e:ff:72:a2:f5:4c:1f:06:39:d5:
74:99:ef:7e:8d:69:67:d0:2a:d6:bd:89:ac:7e:fc:45:d3:05:
27:6b:7a:75:7c:90:ec:77:e8:95:ff:45:03:9f:bf:ca:6a:f5:
4d:6b:e3:1c:f2:bd:cc:be:67:20:b5:c0:5b:6a:97:ad:99:bb:
ef:d0:d6:7f:18:76:cb:f0:65:fc:b7:2b:15:e1:a1:c3:5f:2c:
8b:7d:5b:d9:94:da:8c:39:bb:54:2e:8d:90:7c:fe:10:0b:26:
fd:7c:72:60:68:37:be:cf:c2:4f:a2:24:de:bb:1b:fd:4b:e0:
75:81:29:f2:e0:9b:3f:98:e0:d2:61:a7:ea:6f:0b:7f:f4:e3:
85:4d:43:00:d8:3d:66:d9:7a:30:12:ac:a3:33:a1:46:88:be:
96:d4:a4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:27 2024 by rpki-client on console-ams.rpki-client.org