Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DDEAA5F0856611EFB9492FBC762E951A.roa
File: DDEAA5F0856611EFB9492FBC762E951A.roa (raw, json)
Hash identifier: 21FOomsNY9ykh7bmtCXYJbBWCT983PS8WFU89HN6B+4=
Subject key identifier: 6F:D3:72:D5:81:9D:D1:FE:5B:B5:96:DF:7A:20:FD:F4:09:2E:2B:5D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1853
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DDEAA5F0856611EFB9492FBC762E951A.roa
Signing time: Tue 08 Oct 2024 11:17:13 +0000
ROA not before: Tue 08 Oct 2024 11:16:52 +0000
ROA not after: Thu 08 Oct 2026 11:16:52 +0000
asID: 137409
IP address blocks: 154.16.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6227 (0x1853)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 8 11:16:52 2024 GMT
Not After : Oct 8 11:16:52 2026 GMT
Subject: CN=670514b9-c76d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9a:12:04:4a:da:5b:ef:15:38:f6:e5:86:4b:
7b:67:5d:97:1b:5c:10:5d:41:be:b1:6b:f5:e1:8b:
33:cb:42:c4:b3:86:05:73:cf:34:28:8c:03:f2:0a:
a7:a9:12:e5:18:5b:f6:ef:ba:99:30:c8:a3:32:2e:
f5:ad:db:43:68:60:e3:c5:ed:cb:f4:68:25:cc:a1:
cf:9b:62:36:06:2c:3d:3e:26:e5:34:9b:c7:5d:f9:
80:99:5e:0a:5c:0a:36:90:47:5b:bb:2c:0c:4b:e3:
10:f9:a2:b0:38:29:c5:45:05:87:30:c0:38:04:7f:
da:db:bb:5e:46:34:c6:f2:4d:ce:71:17:4d:70:ab:
cb:d3:40:6f:dc:27:03:f7:5d:46:7c:e4:9e:7e:84:
dd:62:ec:e4:9f:4a:ad:57:da:b2:c8:75:0e:3e:87:
bc:86:3f:be:66:3c:0d:08:51:6e:af:1e:6f:96:eb:
26:96:de:cf:40:5d:65:2c:e2:82:c5:8b:9c:8f:3a:
a5:d0:8c:fd:59:71:26:b3:a4:19:9f:46:d3:3c:95:
c2:cd:4d:43:39:8a:1a:01:f9:68:70:e9:76:f1:f0:
b9:f3:5c:06:a6:f6:f7:57:c0:3a:95:c3:6f:17:2c:
68:09:16:69:68:cd:73:6a:3e:ae:7a:b0:c2:ed:09:
5d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D3:72:D5:81:9D:D1:FE:5B:B5:96:DF:7A:20:FD:F4:09:2E:2B:5D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DDEAA5F0856611EFB9492FBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.162.0/24
Signature Algorithm: sha256WithRSAEncryption
01:8b:a5:52:10:ec:3e:c1:4a:3f:9c:e1:a9:61:c2:f9:df:76:
40:f7:e3:1e:6f:27:09:67:15:07:c0:ea:27:37:1c:7a:b1:e3:
8a:0e:ff:a6:b5:da:ac:38:86:78:95:a2:e3:44:84:75:98:c5:
cf:08:a7:1c:17:2e:d4:c5:40:aa:55:e5:37:1d:95:35:b5:8e:
7d:0c:ad:35:f9:fa:3a:ca:44:7b:69:c3:1f:1b:a4:19:13:73:
a7:c9:46:f4:94:4e:a3:62:7a:7b:a7:40:2f:fe:1f:5d:38:80:
eb:07:cc:a3:1e:19:40:f2:b6:72:fc:42:9b:2d:25:cc:ee:61:
81:75:38:a0:7b:32:47:10:7c:5f:fc:f0:b9:2d:f7:12:14:b5:
b4:32:96:a2:d7:4b:68:2e:03:51:fc:b8:45:99:39:5f:5a:ad:
ef:a5:98:8e:c2:2c:99:cb:68:23:7c:50:88:47:4d:7e:c8:49:
6d:f0:aa:8c:26:99:21:83:9e:cc:d5:c8:05:0f:92:73:84:42:
5c:29:4c:95:93:b6:03:f0:2c:79:ab:e5:dc:e7:39:c0:1f:3f:
37:7b:4f:6b:24:e3:1b:12:1f:62:5a:eb:4a:05:b4:73:18:e2:
ef:25:12:a4:fc:29:b8:1d:2d:ea:a7:13:31:80:e4:8e:a3:ce:
ce:26:fb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org