Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C490B2E6FCE711EE9FEEED20017001B1.roa
File: C490B2E6FCE711EE9FEEED20017001B1.roa (raw, json)
Hash identifier: aSaypaS19WQNEsPyM1T4hm1O6kXboCvZ+wTeKm9F+vw=
Subject key identifier: 87:86:30:74:09:73:94:B9:0B:41:E5:D0:E5:18:6E:88:0E:D5:C5:CC
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15D9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C490B2E6FCE711EE9FEEED20017001B1.roa
Signing time: Wed 17 Apr 2024 18:24:46 +0000
ROA not before: Wed 17 Apr 2024 18:24:41 +0000
ROA not after: Sat 18 Apr 2026 18:24:41 +0000
asID: 29802
IP address blocks: 154.16.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5593 (0x15d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 17 18:24:41 2024 GMT
Not After : Apr 18 18:24:41 2026 GMT
Subject: CN=662013ee-87c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:62:6a:1e:9a:6d:56:56:72:2a:95:f8:29:71:
47:20:57:12:2c:16:ba:76:17:02:56:11:da:ac:07:
6a:44:fd:91:48:76:f8:13:1c:26:c4:b0:2e:ab:17:
95:61:75:29:41:b2:c2:4e:ee:b1:ed:1e:3d:48:ff:
cc:4e:c0:6f:be:34:68:ae:48:74:2b:fd:ee:0d:de:
eb:07:01:6d:e9:73:09:e1:d2:a7:88:63:dc:db:b5:
79:26:2f:83:56:da:b7:9f:56:ec:3a:eb:f1:86:ce:
2d:7c:5e:30:1b:da:23:94:66:b8:b5:18:e7:c3:a9:
d2:c7:0b:98:f3:bf:1e:47:3b:25:6c:c0:8a:f3:53:
88:04:81:6f:b0:4f:18:8b:0a:b4:e9:a7:e6:b6:6b:
73:21:57:20:21:be:96:7e:52:de:a8:e6:ae:3c:39:
bd:03:0a:64:d8:43:a1:19:d2:16:88:30:a5:cf:de:
66:07:a5:d8:5d:13:ab:51:20:82:14:3d:65:94:98:
35:22:9d:67:ef:a1:3d:dc:64:6b:6b:5e:2a:a5:a5:
07:37:fe:d0:3e:c5:6a:0a:a1:dd:0a:62:72:c8:75:
6f:2b:79:a5:78:32:11:32:a1:43:58:cd:6c:b5:20:
d8:3b:fd:dd:66:d0:a6:72:8f:4f:54:6f:74:d5:70:
f8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:86:30:74:09:73:94:B9:0B:41:E5:D0:E5:18:6E:88:0E:D5:C5:CC
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C490B2E6FCE711EE9FEEED20017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.229.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:5a:ff:1f:ab:b4:52:2b:b0:c7:b8:6e:a2:ad:e6:ec:b2:e7:
8e:e7:d1:bd:df:72:57:7b:93:b2:36:08:06:24:8f:8b:67:59:
57:1d:20:06:a5:00:60:3b:99:52:a6:38:40:76:8a:1e:df:dd:
a6:29:40:b4:fc:9a:ee:7d:83:28:94:cc:38:55:fe:78:f3:ff:
b9:36:18:c3:f6:46:c9:33:85:cb:9a:9f:3f:0b:a6:37:4c:cc:
8e:8f:b6:53:78:f5:4c:98:66:56:bc:87:fa:7a:28:5d:21:a7:
aa:e1:0e:04:5c:ff:95:82:35:88:21:2a:a3:fc:8a:4e:f0:65:
96:26:48:36:34:8c:eb:3f:55:2e:e9:4c:cb:33:26:54:f0:d8:
e8:d4:6f:bb:d1:02:11:c7:96:d2:2a:aa:87:5f:c4:5b:4c:5b:
2c:2d:5d:cc:d1:68:d7:05:4a:ce:43:ff:8d:c5:4d:53:80:1f:
d0:12:57:88:77:a4:e8:d2:a0:ec:d5:a2:67:8d:1c:1e:d4:a3:
ed:c3:0d:05:02:fe:a1:5e:c4:ab:9a:3f:c8:1e:01:b2:3f:86:
21:c7:74:53:c7:08:87:c8:48:26:2a:a0:83:6f:c2:41:eb:39:
a9:dc:7f:ab:c9:cb:49:4e:81:63:d4:10:e3:51:a8:6e:74:8f:
2b:82:25:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:12 2024 by rpki-client on console-ams.rpki-client.org