Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D20B8E34552011ED84F0B986F1222468.roa
File: D20B8E34552011ED84F0B986F1222468.roa (raw, json)
Hash identifier: F65Kn149NvP479QTz1bC1aE5+BaQnC/LI17z4M+nJ4U=
Subject key identifier: 51:F6:85:4F:B2:EA:1E:C8:82:2D:2C:C6:C7:FE:AA:94:E5:AE:0E:E5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0A64
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D20B8E34552011ED84F0B986F1222468.roa
Signing time: Wed 26 Oct 2022 11:24:57 +0000
ROA not before: Wed 26 Oct 2022 11:24:53 +0000
ROA not after: Sun 27 Oct 2024 11:24:53 +0000
asID: 212238
IP address blocks: 154.16.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2660 (0xa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 26 11:24:53 2022 GMT
Not After : Oct 27 11:24:53 2024 GMT
Subject: CN=63591909-2664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:a2:0a:97:50:0e:64:da:18:d2:e7:98:0e:
99:5d:dd:8a:ee:c4:37:f1:f1:b0:c0:f1:da:c2:34:
c0:ed:af:4d:93:ba:03:d5:07:df:1b:e8:74:c1:8e:
eb:5b:12:9c:af:5c:af:e7:f6:5e:93:dc:d9:27:b3:
8c:ff:b6:b9:15:9d:92:b5:16:03:11:bc:d9:91:33:
d9:4b:15:81:e8:95:05:f5:2b:11:51:a7:f7:de:df:
7b:f6:3a:59:d9:db:86:96:1e:24:a1:f3:99:c4:fd:
b9:b5:3e:fa:f9:f3:0c:72:64:2b:89:c8:9d:13:09:
c5:5b:0b:e3:e3:e4:00:3a:02:6b:d2:df:b7:eb:da:
df:af:3f:45:2e:e6:d9:bd:8d:ee:09:18:29:e7:cb:
79:0b:eb:37:f0:57:d4:79:b8:1b:e2:f0:ab:1d:cb:
e2:c3:31:33:90:63:7f:86:76:d7:2d:b5:bb:f3:98:
6b:91:d9:5b:60:d4:5c:a3:94:cf:f4:7b:fa:bf:3f:
22:4c:3d:ff:b7:01:5f:3e:a4:00:7f:8a:1c:67:15:
b6:94:99:58:e8:25:93:4c:ae:98:74:72:5e:3f:bc:
05:7a:b1:c9:68:f6:01:ba:68:e4:03:29:c6:19:d6:
26:8b:9c:03:3b:62:c6:3f:47:be:3e:09:66:6c:fb:
9d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F6:85:4F:B2:EA:1E:C8:82:2D:2C:C6:C7:FE:AA:94:E5:AE:0E:E5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D20B8E34552011ED84F0B986F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.201.0/24
Signature Algorithm: sha256WithRSAEncryption
31:00:a5:ce:9c:40:88:3f:30:42:8f:77:69:a7:1a:59:f9:44:
10:f1:68:8f:f0:7d:07:6e:52:e3:55:c0:38:51:55:d1:c9:ca:
ca:42:95:92:b7:40:ff:38:65:fa:c7:e8:82:4d:fb:17:9e:09:
1d:e4:54:cf:f6:56:f5:1a:6c:f8:65:97:39:12:86:a3:c1:78:
3d:fa:01:12:f4:f6:8f:28:87:4b:f8:8a:74:4e:d2:d5:d8:f2:
cc:f3:30:04:92:85:de:8d:a3:a5:20:e1:e6:b2:ef:de:96:4c:
40:93:14:ea:c1:eb:3b:12:1a:97:5f:1b:e7:20:ef:fd:34:71:
09:46:3f:fa:65:12:c1:0d:74:e4:46:51:0d:62:5f:e3:61:3f:
c0:37:d8:4f:e1:b6:15:bd:80:af:95:f0:72:c4:8d:44:46:ed:
2e:15:f5:c3:77:c8:fb:50:2c:32:8c:b5:10:e0:d6:6f:1a:69:
33:0f:bd:5f:87:3f:d5:35:ba:d5:bd:41:4b:f4:6e:7b:43:7f:
5d:cf:e7:c2:f1:13:6e:86:04:0a:fa:75:ba:61:ac:11:ef:91:
99:05:c9:c0:49:60:a9:4a:c4:d8:10:df:17:c0:65:6a:a1:02:
ce:24:c9:5e:81:fa:6d:20:5c:db:a4:84:a7:03:ab:c3:4d:9e:
d2:7d:61:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:24 2024 by rpki-client on console-fra.rpki-client.org