Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CFFC310A54A311EF874DFD74762E951A.roa
File: CFFC310A54A311EF874DFD74762E951A.roa (raw, json)
Hash identifier: GZnL26nxuggNIiAQZ2f1gZQMsYSSUtQf99es9P8tXNY=
Subject key identifier: 03:77:8A:8E:E4:BA:51:FA:48:4B:2B:45:87:A7:11:2D:0C:FE:97:1B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1793
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CFFC310A54A311EF874DFD74762E951A.roa
Signing time: Wed 07 Aug 2024 10:00:02 +0000
ROA not before: Wed 07 Aug 2024 09:59:58 +0000
ROA not after: Fri 07 Aug 2026 09:59:58 +0000
asID: 14670
IP address blocks: 154.16.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6035 (0x1793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 7 09:59:58 2024 GMT
Not After : Aug 7 09:59:58 2026 GMT
Subject: CN=66b345a2-47c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4e:d7:e9:4c:97:ed:7a:14:8d:05:7b:71:6f:
1c:c3:20:e9:ba:0f:ed:d2:ee:f7:ec:4b:08:2f:e6:
fa:5f:82:10:a5:08:ef:54:b3:60:e3:f2:d7:21:0e:
42:d3:9b:f0:d1:43:12:e1:9e:c4:92:b3:9a:39:76:
4a:ef:6b:50:58:f2:b7:55:4e:31:bc:dd:83:e0:81:
f8:71:89:b4:17:29:55:bf:b0:d4:1f:c0:2d:67:81:
d0:0a:7a:5b:6e:30:11:df:cf:7e:5c:46:65:23:1e:
04:86:35:18:64:d6:b6:83:25:8f:0b:f7:6c:70:ca:
2c:cf:b4:34:eb:36:f6:10:4b:6c:fd:d6:d7:8c:40:
ff:96:71:75:2c:f6:3c:67:15:fc:53:64:6f:47:a5:
be:fb:85:01:3e:58:b2:05:ce:5a:b4:a2:69:7a:20:
71:cc:09:29:8a:0c:34:fc:54:48:77:71:c8:ae:88:
f3:35:af:af:e9:7a:7b:69:46:95:2f:0e:64:9a:1d:
cb:a3:7b:22:7d:c3:4c:a1:3a:3e:0b:7e:d6:6d:78:
37:7f:10:31:e3:17:5f:98:9d:ac:05:b5:31:b5:3b:
1d:01:ff:dd:fa:10:9f:08:05:61:17:6e:e1:af:92:
37:9b:5e:af:34:a2:71:20:cd:f3:13:2a:a2:ae:f6:
00:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:77:8A:8E:E4:BA:51:FA:48:4B:2B:45:87:A7:11:2D:0C:FE:97:1B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CFFC310A54A311EF874DFD74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.115.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:3f:5b:91:c6:28:d3:aa:f7:75:d1:6a:90:13:b7:59:dc:80:
3e:9d:f6:ed:e9:e1:28:7d:0c:16:84:5f:8e:23:51:d2:8b:3f:
6a:24:23:03:ee:bc:32:43:66:1b:bd:50:91:b2:b5:f0:3f:45:
b5:01:15:ab:b2:4f:36:75:ab:11:93:ae:83:83:9d:f9:48:09:
cc:f1:08:f3:a1:23:8c:ce:ea:02:bd:58:4a:3a:ac:51:a5:33:
df:13:03:ed:28:16:91:57:c8:d9:f3:f9:7f:ad:3a:7d:c9:ec:
51:03:76:30:77:46:27:21:c5:85:14:25:cc:11:f9:7b:06:6b:
4e:f4:15:07:94:b1:fa:15:9c:cf:b9:7f:0e:85:86:85:a1:c1:
82:50:e3:4e:d9:27:05:e9:ae:55:4c:41:d2:47:fd:aa:eb:5b:
85:ca:03:52:77:26:74:64:56:6b:d6:d5:04:e6:43:22:73:4d:
bc:c4:da:9f:53:38:3a:c4:7d:4a:34:95:6d:6a:4d:44:75:45:
ff:bf:db:4a:16:d3:2f:c0:24:b1:3f:12:b3:dc:40:59:b9:f7:
df:04:90:8c:6c:14:19:99:e6:d7:c1:a5:4a:98:cd:3b:25:c1:
2b:bd:17:ad:92:85:3d:bd:1f:f7:5f:4d:3a:57:db:08:ba:d6:
61:91:66:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:33 2024 by rpki-client on console-fra.rpki-client.org