Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ADD7712E71AF11EFB2A3EB44762E951A.roa
File: ADD7712E71AF11EFB2A3EB44762E951A.roa (raw, json)
Hash identifier: n7xlLUXh+wVZrt6LltnIA8Jno0z5cYAjJgbTk07MSVk=
Subject key identifier: F3:D0:F7:66:DC:C7:ED:07:4E:FF:C1:7B:BD:65:4B:DD:9F:A9:D3:F5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17FF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ADD7712E71AF11EFB2A3EB44762E951A.roa
Signing time: Fri 13 Sep 2024 09:08:02 +0000
ROA not before: Fri 13 Sep 2024 09:07:59 +0000
ROA not after: Sat 12 Sep 2026 09:07:59 +0000
asID: 212238
IP address blocks: 154.16.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6143 (0x17ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 13 09:07:59 2024 GMT
Not After : Sep 12 09:07:59 2026 GMT
Subject: CN=66e400f2-0121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4b:79:89:d6:ac:90:b6:1b:d3:de:16:f5:24:
a0:45:40:73:0c:f6:28:71:1c:95:10:75:a8:86:db:
91:58:30:b9:cb:60:29:3b:59:91:cf:54:5d:cd:9e:
52:3b:17:fa:66:e8:87:79:7b:4c:a2:8f:f6:d4:89:
21:a2:b5:ac:f3:f9:f1:41:f7:5d:8d:28:65:f1:f9:
e4:35:8c:98:4f:7b:f9:a7:ad:c0:ff:5d:80:dd:7c:
dc:00:fb:b1:2d:cf:5d:ef:f9:23:3c:f8:12:48:67:
0d:6b:24:20:83:20:eb:2a:00:7a:83:1b:62:ab:1c:
b8:b1:b2:00:0b:2e:79:7d:2c:96:d0:28:a2:e1:7e:
b5:3a:69:1e:62:21:ee:94:b6:93:36:8e:f8:51:2b:
84:be:a4:2c:46:d4:ce:c6:12:64:ce:7b:e9:8d:36:
2d:a1:5d:1e:33:23:38:d1:4f:10:5c:d4:de:86:7b:
80:60:98:59:26:e6:80:38:57:3d:fe:3f:01:5f:72:
e4:bb:49:d1:d4:03:86:ce:15:57:3f:3f:b2:50:5c:
16:6a:90:7c:f3:11:b2:d4:a9:ff:22:ab:36:4b:2c:
48:2f:d6:b1:9e:b9:9c:b8:54:7b:ec:bf:39:04:a0:
de:31:32:0a:60:3b:ae:8a:b0:dd:6c:fa:3a:0b:16:
fa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D0:F7:66:DC:C7:ED:07:4E:FF:C1:7B:BD:65:4B:DD:9F:A9:D3:F5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ADD7712E71AF11EFB2A3EB44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.17.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:f9:8a:45:d4:51:50:ed:c6:dc:cb:82:19:30:46:ba:9a:8e:
df:a7:e1:ef:b7:c1:29:e8:28:c7:dc:03:b4:67:00:b7:d6:30:
52:54:1e:5d:d1:c9:75:24:b8:0d:bc:a9:74:a1:54:96:8b:98:
3d:b7:65:b7:bf:d5:c4:3b:3a:35:6a:f8:cf:a1:66:ca:10:ce:
ba:e3:ed:e9:db:38:15:18:4a:42:12:4f:db:23:d9:fc:c7:00:
39:1d:a9:44:2b:41:8e:66:9b:a6:0f:2a:1f:42:eb:b3:58:19:
d9:6b:29:92:e7:fc:68:a8:52:67:cf:85:f3:2a:ed:19:fb:a2:
d6:80:16:83:12:7a:35:1b:fe:b5:cf:50:fe:ea:b2:a9:04:7a:
e3:07:98:81:23:2e:52:3e:53:0c:56:70:16:3d:2e:d0:9a:ce:
d6:6f:5b:e9:f6:b3:fe:83:37:3c:4a:d1:22:89:49:18:48:c5:
60:62:b7:46:38:60:92:19:95:f0:d6:d4:84:41:e5:65:2f:86:
ff:67:da:ea:d8:04:81:74:88:10:6b:16:ea:58:6c:c2:1d:71:
9c:aa:69:d1:b0:e0:04:b2:02:d3:db:50:dc:57:7d:ff:7b:2e:
5d:20:15:2d:20:a4:d8:80:bb:bf:79:b0:b9:f3:b0:81:76:0d:
86:4c:77:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org