Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0F455FE673011ED8594BEA1F1222468.roa
File: D0F455FE673011ED8594BEA1F1222468.roa (raw, json)
Hash identifier: 4ufyKyFpjmrgKa1MB5aPSDtRU9eGmPnkNuHghUIEREw=
Subject key identifier: C3:EB:91:61:F3:ED:E2:BA:DF:B1:DB:93:BE:E6:32:29:5B:05:FC:35
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0AB9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0F455FE673011ED8594BEA1F1222468.roa
Signing time: Fri 18 Nov 2022 11:04:48 +0000
ROA not before: Fri 18 Nov 2022 11:04:43 +0000
ROA not after: Mon 18 Nov 2024 11:04:43 +0000
asID: 212384
IP address blocks: 154.16.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 12:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2745 (0xab9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 18 11:04:43 2022 GMT
Not After : Nov 18 11:04:43 2024 GMT
Subject: CN=637766d0-b223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:92:20:09:3d:f8:74:98:73:ab:d6:46:fe:
f7:10:56:63:e3:0f:28:74:63:6c:ef:f2:0e:4f:ea:
dd:b8:bf:6b:30:fc:8f:c8:d2:55:d6:79:94:77:b9:
9f:8c:1e:89:56:8a:53:4a:3c:26:60:8d:e5:aa:83:
2a:0d:db:56:29:ce:26:b3:a9:28:a6:50:f2:04:24:
bd:90:99:ea:42:ae:08:20:80:0d:7b:a4:67:e6:4e:
9d:c9:40:90:e3:f8:fb:21:91:55:f6:fc:c0:d9:5b:
ad:b9:af:64:b2:e3:a0:eb:e0:ab:59:46:2d:3b:7e:
dc:00:f1:31:34:00:c6:dd:bc:55:8a:62:74:77:a3:
2e:d8:56:e9:c3:b0:6f:a1:69:38:a9:99:d6:b7:c4:
a3:cf:a5:b8:f4:4e:8d:38:b2:a4:f6:48:92:c0:8a:
31:5d:12:21:f2:ae:57:22:22:f1:4f:b3:31:bc:8a:
01:1a:18:dc:67:29:ab:be:07:0d:9b:f7:96:2e:18:
f9:ff:a8:c1:0a:27:aa:a2:e5:4a:c7:39:30:30:90:
7a:14:1e:85:71:b9:6d:db:bf:f8:31:c7:7f:41:f3:
bb:4b:14:29:ec:12:d4:45:50:27:e9:41:b1:ae:cf:
01:08:f8:82:5c:7e:56:5a:1e:7b:6a:7c:c9:af:be:
37:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EB:91:61:F3:ED:E2:BA:DF:B1:DB:93:BE:E6:32:29:5B:05:FC:35
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0F455FE673011ED8594BEA1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.88.0/24
Signature Algorithm: sha256WithRSAEncryption
69:9a:66:64:e3:6e:a7:6f:9c:19:56:ee:b3:6f:5f:3b:c3:e4:
f8:7b:e9:35:91:2b:1a:0b:3c:93:b9:fa:7b:30:60:a0:c1:64:
48:0e:52:27:15:fb:4c:fd:2d:d8:5b:b4:5d:ce:69:da:23:96:
da:e3:03:a3:98:81:5d:16:0b:56:03:64:e1:5d:52:59:a3:5b:
56:f1:f4:35:ff:00:2e:2b:d5:a1:49:d1:3c:7e:6c:5a:f2:89:
09:29:5f:a4:8b:a3:83:44:ca:b0:c0:6e:df:ab:7a:de:21:59:
a4:f6:dd:c5:78:fe:c9:a9:77:7b:d8:c4:11:33:6a:cd:94:99:
58:c7:61:9f:ca:db:71:de:a6:65:fe:17:bb:08:e4:bf:12:20:
f2:3c:7a:d3:bd:ef:bc:e7:b7:55:8d:18:22:38:8a:92:01:42:
d1:e1:da:5c:84:85:50:6f:4a:6c:5a:af:1a:22:22:1a:3b:dd:
8c:82:db:5e:b4:b8:c5:36:f7:1f:95:8b:cb:71:a3:7e:f2:8c:
21:35:5d:6a:25:ff:0f:ba:a1:05:a7:fe:04:03:9c:8b:be:3d:
8d:c1:2d:ee:ba:94:e8:67:56:51:ef:97:60:b6:1a:b4:8d:9b:
b9:30:ed:75:63:0a:e8:d7:74:b7:93:e6:90:b7:a2:27:40:e5:
a1:61:b6:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 13:23:15 2024 by rpki-client on console-ams.rpki-client.org