Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
File: D081E672551F11EDBA224F84F1222468.roa (raw, json)
Hash identifier: lWC//j+1Jsvm3H4E2PeAx9m7Yclu0s1Es3RuUxpQhF0=
Subject key identifier: 98:A2:52:14:93:D5:9C:44:A4:36:20:F0:04:CB:50:72:D5:BD:15:CB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0A53
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
Signing time: Wed 26 Oct 2022 11:17:45 +0000
ROA not before: Wed 26 Oct 2022 11:17:40 +0000
ROA not after: Sun 27 Oct 2024 11:17:40 +0000
asID: 61317
IP address blocks: 154.70.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2643 (0xa53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 26 11:17:40 2022 GMT
Not After : Oct 27 11:17:40 2024 GMT
Subject: CN=63591759-9d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:85:40:93:d3:62:10:0f:6f:41:2d:fc:6a:23:
db:76:cb:28:b7:eb:b0:9d:3d:fc:13:c9:5d:1c:0d:
c8:b3:47:5a:c4:54:54:bf:66:ed:a8:15:d9:82:57:
46:8f:08:4c:1e:0a:84:b4:11:ce:b2:6c:3f:b1:46:
fb:87:80:18:19:73:b7:db:d5:04:e2:86:a1:6e:80:
98:5c:b1:88:55:ad:d2:2b:5b:b7:c8:02:7f:f8:24:
45:62:b3:7b:48:2e:00:f5:20:73:ba:a8:fe:8d:ad:
82:31:c6:7e:e3:e9:67:7c:e5:48:56:d9:40:e4:18:
27:68:4f:dc:21:df:c3:89:66:0c:f8:f8:08:de:79:
49:87:43:5c:98:eb:a9:47:1e:06:9e:25:66:9b:b4:
da:86:6b:e1:ff:5f:f8:8c:43:a2:37:cd:df:c9:ea:
e3:91:d5:31:3f:4a:84:28:ef:3e:20:91:fc:8b:94:
36:4a:b4:3e:5d:3d:24:f3:00:4e:d2:9c:e0:48:6d:
59:81:24:b8:50:54:85:33:0a:d6:c4:74:d4:f0:91:
29:ca:e8:15:fe:0b:61:6e:34:29:38:e3:d2:e8:c9:
2e:0d:21:81:4d:fa:5c:28:0f:94:b7:26:03:4f:82:
f9:97:6a:0f:fe:28:47:5a:d3:47:14:c6:9f:8c:34:
38:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A2:52:14:93:D5:9C:44:A4:36:20:F0:04:CB:50:72:D5:BD:15:CB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.154.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:32:fb:7a:e6:6b:b3:8e:82:f6:f8:fe:d6:27:63:fc:35:4c:
b8:84:bb:4d:79:e4:aa:7d:c7:d2:53:ff:fd:c8:37:aa:e8:2b:
6c:76:1a:f9:14:1d:48:19:d5:c3:94:a1:2c:4d:e6:89:8f:db:
ca:b4:22:c9:a9:cd:68:ac:c5:4a:a1:73:c5:dd:d8:fe:0b:12:
46:1f:6f:33:b1:62:0a:6b:85:fa:0a:31:89:c6:8d:a9:18:fb:
66:70:f0:71:27:f9:3f:10:39:e5:14:3b:54:05:de:0b:6e:07:
26:33:e9:8a:f9:37:45:3a:98:8e:a0:ad:04:1a:74:10:76:59:
e3:1a:a9:b7:3b:c1:99:ed:54:54:f9:a8:6e:37:c2:77:06:7f:
0b:9d:44:37:ed:c6:30:41:32:32:60:02:f2:da:aa:df:60:7f:
00:5d:be:36:1b:34:a7:e5:1b:68:e9:23:da:3c:97:2a:01:81:
d4:ee:d7:d0:ef:cc:53:fa:c9:7f:fb:14:3f:b9:29:74:37:57:
84:a0:bc:dd:02:a4:97:27:7c:2e:21:e9:39:e2:95:1c:18:4d:
ed:29:41:12:d9:d6:4c:97:a5:10:20:dc:a5:73:7d:b7:17:27:
0e:6d:cf:5d:16:2e:c6:ad:b5:33:0e:e2:30:df:21:89:91:1d:
45:97:b7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:24 2024 by rpki-client on console-fra.rpki-client.org