Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/BCDF6628A63E11EE922406BB775412E6.roa
File: BCDF6628A63E11EE922406BB775412E6.roa (raw, json)
Hash identifier: f2MOLNpNKMza2QgxblQUpRlXQjKDJ6J9XWGpOXICkww=
Subject key identifier: 99:60:43:D6:A1:8A:00:25:4D:78:BD:41:0B:3C:06:59:2E:61:DF:8C
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1425
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/BCDF6628A63E11EE922406BB775412E6.roa
Signing time: Fri 29 Dec 2023 11:38:08 +0000
ROA not before: Fri 29 Dec 2023 11:38:05 +0000
ROA not after: Mon 29 Dec 2025 11:38:05 +0000
asID: 138195
IP address blocks: 154.16.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:51:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5157 (0x1425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Dec 29 11:38:05 2023 GMT
Not After : Dec 29 11:38:05 2025 GMT
Subject: CN=658eafa0-945b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:66:fe:8b:ba:2b:39:7a:6f:ee:39:30:f6:85:
b9:04:8c:16:92:7a:a2:4c:2f:db:19:fc:7f:e5:c5:
2b:07:6f:0f:ae:4a:d0:eb:ef:6a:07:27:4e:55:8e:
db:8a:e5:15:d9:82:71:b3:ef:07:32:45:59:c7:2d:
27:3e:07:53:3b:a1:c2:c7:e1:b4:c6:ab:cd:bd:56:
39:db:86:e1:1f:88:ad:87:98:31:d6:6c:7f:ff:07:
67:ce:75:ea:cb:50:1b:e8:45:e4:45:7c:d6:ac:03:
b1:29:a5:df:f0:3f:05:22:65:d7:de:e7:25:c1:a6:
3d:2a:78:e2:34:05:08:e9:43:1d:d3:bd:38:f2:a3:
15:38:50:93:a0:0f:24:87:91:ce:6b:4c:56:2d:fd:
de:b1:5c:a4:08:1d:71:49:a4:49:e2:e8:71:de:29:
4c:38:9c:86:92:9b:b8:9f:90:83:93:ec:2e:96:00:
84:e5:5a:b2:81:a0:e5:36:fa:e7:6e:29:d1:a7:9f:
54:24:2e:6b:70:06:c8:f8:03:75:49:29:30:98:9a:
7c:7d:64:f8:68:6d:d4:84:88:f4:1a:73:3d:c1:dc:
db:45:e1:e3:1c:1f:c8:db:af:4a:08:ce:97:23:67:
30:58:57:b4:d7:65:68:39:3d:41:22:c5:ae:5e:d7:
ee:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:60:43:D6:A1:8A:00:25:4D:78:BD:41:0B:3C:06:59:2E:61:DF:8C
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/BCDF6628A63E11EE922406BB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.56.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:43:d2:95:3c:69:37:91:d4:5c:3c:25:02:71:1c:7f:8f:df:
d2:36:df:38:63:61:74:97:3b:a3:2d:fc:c1:b1:c0:b5:14:34:
82:d5:14:74:78:98:5d:fa:87:8e:bc:ce:10:a7:15:49:6d:de:
c6:ad:8f:d4:55:09:0d:7b:06:de:2f:2b:92:4c:fc:e0:50:ad:
db:f3:fd:28:d6:3c:dd:2d:60:f9:e1:2f:ab:63:f1:0e:31:4d:
3b:89:75:4a:3d:98:c4:43:fd:df:4a:0f:68:c0:3f:12:87:79:
bc:3e:1f:37:ea:c4:5f:82:b5:61:cd:20:a5:01:25:37:02:f9:
d0:d3:b9:0e:8c:02:c2:29:ea:91:78:76:81:40:f9:b5:45:0d:
c3:20:4a:eb:7e:aa:41:24:6b:b6:9f:1f:68:95:54:b9:10:86:
d5:05:e6:98:c6:c1:81:fd:98:21:7a:c8:a7:fc:36:92:b9:6c:
c7:bd:34:3f:98:33:7b:0f:a9:15:35:da:5a:ee:3a:7f:17:99:
1e:80:6d:1a:24:7f:83:58:87:85:6c:17:7c:29:8e:aa:f4:f2:
7e:33:28:68:ea:18:86:48:51:03:0e:80:72:a4:ea:a5:f7:cc:
b1:61:23:9e:9f:44:37:f3:38:48:54:42:8e:aa:c7:8c:0b:a9:
6a:2a:fd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:12 2024 by rpki-client on console-ams.rpki-client.org