Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CD15DE18903611EFADED0481762E951A.roa
File: CD15DE18903611EFADED0481762E951A.roa (raw, json)
Hash identifier: Hc/v8aFM1D0uRIJCh6LjriCBqq2XoGmuMHbGtPB8xYs=
Subject key identifier: E6:B0:A1:F0:46:D5:2B:30:FF:6C:E8:B7:D1:B2:0E:41:45:66:88:2D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1875
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CD15DE18903611EFADED0481762E951A.roa
Signing time: Tue 22 Oct 2024 05:30:52 +0000
ROA not before: Tue 22 Oct 2024 05:30:47 +0000
ROA not after: Thu 22 Oct 2026 05:30:47 +0000
asID: 36352
IP address blocks: 154.16.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6261 (0x1875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:30:47 2024 GMT
Not After : Oct 22 05:30:47 2026 GMT
Subject: CN=6717388b-a32e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:e5:2d:ba:41:91:7f:91:64:bc:21:59:c1:
e9:4e:ea:f8:d9:de:da:4a:24:da:75:d6:a0:26:34:
f5:26:4a:9d:f0:54:ea:49:15:7a:ba:ba:3d:d1:7f:
90:c2:f7:d5:22:77:cf:e9:9b:5d:c7:7f:10:9d:c1:
ab:4c:0a:da:c0:3f:86:ff:ed:ec:5a:6d:2c:fc:84:
ec:46:ba:23:b4:b5:2f:cc:87:a9:ef:c7:b9:9b:85:
3e:dd:e1:79:35:9f:1a:98:2c:62:f8:32:d2:83:c7:
d6:03:94:db:93:44:bf:fe:79:ac:da:9c:93:97:3c:
0f:d8:8d:7f:d1:52:6f:fb:19:98:2a:ad:c7:70:58:
c8:36:8c:b0:d2:4e:fd:cb:01:48:79:d6:47:a3:fd:
af:26:6b:f3:ff:76:ae:c0:48:be:b0:31:92:e9:5f:
d9:2d:18:3c:1b:16:0f:87:90:96:55:51:15:2a:fd:
ff:ef:99:3c:d6:e7:31:ab:35:09:61:72:2b:36:35:
a7:ee:bf:89:d3:ad:9e:50:57:e9:be:9e:50:79:68:
e3:e0:ed:e1:5a:01:64:fc:35:79:42:2c:5f:91:aa:
c2:57:63:ce:e1:09:aa:02:cf:77:ff:4a:82:92:76:
0e:91:f4:f4:78:da:90:09:3d:7b:8d:51:3d:e0:0c:
15:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B0:A1:F0:46:D5:2B:30:FF:6C:E8:B7:D1:B2:0E:41:45:66:88:2D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CD15DE18903611EFADED0481762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.118.0/24
Signature Algorithm: sha256WithRSAEncryption
76:36:96:37:9d:61:bd:9c:df:af:be:b3:d6:45:78:0f:b2:68:
9c:0a:75:52:a6:a0:df:7c:f9:67:ad:58:e6:d7:03:85:ee:ff:
ac:4a:d8:bb:ab:5a:b5:4a:2e:79:ca:86:49:63:df:19:0c:fb:
6b:13:9c:6e:c0:ee:23:6e:fa:8b:46:c0:6b:07:2e:64:8e:6c:
73:31:34:e9:b7:3f:7a:45:2b:99:b1:98:f6:32:03:98:5e:92:
77:8f:77:b3:14:6b:a2:e3:48:49:c7:b6:98:b7:d8:05:c8:17:
a4:7e:8d:22:91:30:23:68:14:15:ec:3e:f6:0c:18:6c:44:14:
58:49:58:fe:f7:d0:3b:8f:69:bb:0b:ec:11:f6:0d:82:75:10:
70:6f:cb:c1:a3:e5:fe:6b:1c:3f:8f:1a:ce:04:48:9a:c4:77:
00:ba:e6:70:4f:79:6b:cc:8b:6e:d3:91:e1:00:46:c6:70:4b:
75:a5:4e:d6:7a:eb:28:3f:45:11:f5:a0:86:75:f8:ed:98:81:
cd:73:dd:f9:a6:24:86:b9:39:6d:41:c6:9c:30:5f:a3:d5:db:
b6:9f:c0:6f:9f:eb:02:d6:20:09:14:be:e8:57:22:71:cd:f1:
cd:3f:52:99:9d:fa:c1:4f:9e:9b:ef:01:58:44:dd:3a:16:de:
7a:f9:3c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org