Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B098AD0CB8FA11EDAAEF767DF1222468.roa
File: B098AD0CB8FA11EDAAEF767DF1222468.roa (raw, json)
Hash identifier: r6iACKtqRwCagyZ7ivAHvVwGhW2eAacrKECRmbeN0E4=
Subject key identifier: 08:F7:AD:ED:75:FC:58:AE:2C:69:6F:02:D5:B5:40:EF:72:FA:FB:B7
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0CCD
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B098AD0CB8FA11EDAAEF767DF1222468.roa
Signing time: Thu 02 Mar 2023 13:03:56 +0000
ROA not before: Thu 02 Mar 2023 13:03:53 +0000
ROA not after: Sat 01 Mar 2025 13:03:53 +0000
asID: 61317
IP address blocks: 154.16.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 00:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3277 (0xccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 2 13:03:53 2023 GMT
Not After : Mar 1 13:03:53 2025 GMT
Subject: CN=64009ebc-e771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:82:ed:35:b2:dc:80:81:13:56:92:0c:59:2b:
1b:02:59:27:a0:cc:c8:4b:5e:8b:fb:cf:34:8b:99:
02:6a:c8:f9:98:12:02:eb:4d:6e:31:c1:b8:a7:db:
a1:2c:86:3c:58:57:cd:eb:9c:b0:d6:e2:9c:79:c1:
91:0d:70:83:95:69:0b:34:3e:58:88:06:e1:6d:ff:
9e:eb:41:cf:60:bc:34:1d:bf:41:91:ec:36:5a:05:
22:e5:42:05:cb:17:14:85:7f:30:b8:c2:74:75:40:
1d:a9:8d:b3:71:51:b5:65:72:e1:1e:02:00:11:9a:
d5:1b:6e:b9:e8:7c:a1:93:34:f2:02:54:29:ee:8a:
4b:94:07:91:89:74:74:0f:32:cf:37:a5:ae:4a:3d:
10:84:a5:53:d4:f8:c4:43:dc:85:bb:fe:58:ef:63:
9a:be:a3:cf:e0:35:df:17:64:5a:9d:a0:ea:f9:55:
6a:43:e0:10:50:9b:ec:50:4f:f8:22:be:88:c5:85:
30:3f:5c:cf:20:c4:b7:f6:eb:8c:00:94:f2:f7:af:
bb:c5:9e:e7:b2:b9:c5:d3:5d:65:77:ae:c2:55:be:
f9:e3:b7:0f:6d:2d:67:29:e5:5d:fb:8a:07:b5:17:
f6:97:bc:13:9e:89:79:35:7a:81:35:92:5b:84:7f:
14:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F7:AD:ED:75:FC:58:AE:2C:69:6F:02:D5:B5:40:EF:72:FA:FB:B7
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B098AD0CB8FA11EDAAEF767DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:e1:ea:cb:ea:e1:95:ed:bf:db:50:81:45:f3:cb:6a:36:76:
3f:95:24:5e:65:e1:4a:16:4d:07:f7:d9:fe:cb:ad:8f:db:87:
fa:d9:79:3a:0b:ee:24:b8:36:24:a9:43:c6:22:9c:d0:3c:df:
d5:56:26:0f:fd:60:6e:e4:36:96:69:76:9a:82:3f:ce:46:85:
54:34:df:47:ba:5d:8a:2c:d6:3c:8b:46:a7:4e:8c:ef:d6:93:
6b:c9:ba:03:ad:cc:d8:3c:ad:2b:e5:76:91:94:27:26:da:1b:
8d:3d:7e:9c:35:91:71:8c:fb:b0:db:72:14:38:17:2f:03:1e:
a9:79:41:5e:5b:47:e3:07:ee:a3:9a:3c:f9:80:23:99:5f:24:
31:8e:9d:c9:5e:cc:88:17:e2:65:22:67:ac:55:8c:00:8a:19:
1f:24:9a:44:62:70:49:17:90:89:86:fc:d9:ed:f7:c5:f4:50:
83:3d:f4:93:f3:1a:43:77:5f:02:16:7c:1c:b9:b5:68:61:70:
e6:7c:9d:4e:b0:3c:b0:43:e3:29:b0:c4:75:9c:05:fd:ab:30:
fa:8a:05:d6:c2:47:55:82:a7:05:44:12:93:8d:4e:64:4b:cb:
aa:4d:af:a8:f2:0c:d5:fb:23:64:06:47:c8:7a:20:23:82:7b:
09:2c:d6:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 11:25:22 2024 by rpki-client on console-fra.rpki-client.org