Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B276996C7FEC11EFB68C42BE762E951A.roa
File: B276996C7FEC11EFB68C42BE762E951A.roa (raw, json)
Hash identifier: SdoENKJC46WQjHDoe7DcYxemXa2nnMSLYv5F+c9uU9s=
Subject key identifier: CC:5B:4F:23:7F:16:DD:1F:0C:F8:22:83:27:DD:C0:20:42:D3:65:DC
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1834
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B276996C7FEC11EFB68C42BE762E951A.roa
Signing time: Tue 01 Oct 2024 12:00:05 +0000
ROA not before: Tue 01 Oct 2024 12:00:02 +0000
ROA not after: Thu 01 Oct 2026 12:00:02 +0000
asID: 18345
IP address blocks: 154.16.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6196 (0x1834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 1 12:00:02 2024 GMT
Not After : Oct 1 12:00:02 2026 GMT
Subject: CN=66fbe445-0bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:7f:83:f4:d3:30:7a:91:ea:db:5e:a9:92:
0e:71:a3:2b:4c:2a:0c:34:33:5a:79:8b:54:e6:99:
66:f7:78:b1:44:c7:30:95:7c:98:42:45:6f:c6:ac:
33:62:d6:f0:99:4d:f2:35:0e:fa:17:a2:91:49:e6:
86:26:17:b8:05:00:fe:d8:ec:a7:ef:44:ef:70:ff:
e3:35:72:40:60:62:ae:21:98:86:52:72:ad:31:3b:
5f:19:82:23:3f:bc:7a:75:4a:4f:39:00:ff:9a:1a:
1e:82:d0:d7:fa:71:a3:17:46:39:a6:53:fa:99:83:
e7:90:e7:d2:8f:f1:3d:90:89:55:25:82:c1:88:30:
56:3a:8d:09:b2:69:80:e0:f3:c8:ce:7c:42:7f:2e:
37:f4:fa:88:42:23:4f:92:7b:c6:10:34:1a:6b:cc:
51:42:c5:0c:dd:c2:5f:cb:20:f4:b1:44:02:eb:4d:
fa:fa:11:bb:a6:14:46:d1:01:10:ab:96:60:e5:92:
0a:6e:79:c1:d4:b5:de:e9:13:71:0c:59:91:83:26:
51:56:f7:d9:20:bd:9b:ed:df:89:18:3f:01:ea:cc:
d8:3d:86:fb:6a:a9:fa:0c:d7:fd:ec:74:bf:af:27:
02:26:cb:6f:7f:50:f6:a1:8c:b1:b4:ef:23:66:be:
6a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5B:4F:23:7F:16:DD:1F:0C:F8:22:83:27:DD:C0:20:42:D3:65:DC
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B276996C7FEC11EFB68C42BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.81.0/24
Signature Algorithm: sha256WithRSAEncryption
97:2b:be:63:0f:de:4a:fe:6b:eb:87:86:62:da:6a:68:52:bb:
f6:f3:c3:ea:0e:d1:33:f3:51:87:82:20:2d:0d:4b:3f:ec:1e:
11:d2:96:91:cf:b2:8a:bb:ba:82:27:19:71:b6:9b:92:2c:2a:
d4:44:ef:2a:e4:f6:20:cc:78:f7:3f:e4:2d:d4:2a:d2:8f:86:
51:26:e1:39:0e:2b:e1:f2:3c:48:3e:1e:92:b5:55:15:13:15:
62:4c:12:e9:28:79:87:a7:f5:9a:f9:3f:1b:6a:7c:b3:cf:51:
fd:eb:25:57:68:43:31:8b:33:cd:cb:5d:e1:74:25:07:48:c1:
fc:0b:a2:78:59:f0:05:79:73:c2:50:97:9b:56:4c:99:e8:80:
da:40:e9:0d:47:b8:0d:2c:dc:c4:5d:53:fa:6f:6b:50:6c:c0:
05:0a:0e:61:cd:64:d2:cc:b0:8a:e7:9f:fa:15:77:4e:39:6b:
b6:61:82:74:a2:54:20:29:90:18:83:97:14:49:ef:3d:0d:92:
0b:6c:43:49:34:62:40:07:c4:45:a9:07:a9:cb:b3:02:ca:da:
ae:11:f8:3c:90:05:8a:2d:01:99:e6:46:a0:20:68:e9:6a:d6:
b8:ac:f4:af:85:48:30:53:57:ef:76:11:f4:80:6b:92:12:be:
87:fa:df:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org