Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DE75A6387FED11EFBE7C7048762E951A.roa
File: DE75A6387FED11EFBE7C7048762E951A.roa (raw, json)
Hash identifier: flhc8apDT8fBXKJIRdfDkZYdOSdqPvSPkZDQ0gTo9JA=
Subject key identifier: F7:6D:4D:67:4F:D1:9C:BC:4B:2C:74:75:12:69:B1:9A:00:CB:34:DD
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1840
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DE75A6387FED11EFBE7C7048762E951A.roa
Signing time: Tue 01 Oct 2024 12:08:29 +0000
ROA not before: Tue 01 Oct 2024 12:08:25 +0000
ROA not after: Thu 01 Oct 2026 12:08:25 +0000
asID: 6461
IP address blocks: 154.16.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6208 (0x1840)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 1 12:08:25 2024 GMT
Not After : Oct 1 12:08:25 2026 GMT
Subject: CN=66fbe63d-1120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8d:5f:6e:89:26:4b:17:e2:f3:39:9a:93:0b:
ad:f3:a0:56:31:ef:a1:66:43:49:78:c9:37:78:89:
ad:d6:b9:38:3f:2b:af:72:14:56:66:78:b8:20:7a:
2b:5c:23:fe:7c:cc:aa:8b:fd:a3:64:64:51:b1:3b:
a2:21:fd:81:3e:d7:39:3b:2c:ff:53:97:0a:4d:8c:
05:22:cf:c5:50:b1:bf:cd:54:a5:a2:c9:8a:41:ea:
13:51:71:e0:05:66:15:79:31:e9:b9:05:fa:35:7a:
61:bf:59:db:86:ae:7c:a2:a3:35:a9:01:80:98:8f:
a5:ef:36:2e:c4:df:d9:2e:18:b3:28:40:13:01:c2:
98:80:39:23:b5:9e:59:a3:77:23:f1:65:c3:c8:93:
87:6f:b0:71:d3:48:86:46:8a:80:91:76:d0:bb:84:
59:84:c0:d5:60:ec:60:72:b2:eb:28:64:01:dd:5b:
13:29:44:5f:fc:2f:be:bb:a6:1e:64:c4:ec:c3:3c:
9e:dd:96:bf:8e:09:b5:e8:70:40:2c:b7:21:9c:ef:
f2:04:fe:da:98:64:34:14:73:d3:98:b8:50:45:8c:
f1:a3:4a:32:0d:4d:97:a7:0e:aa:1c:c9:7e:f3:40:
a2:e4:c2:0a:93:3d:30:0c:4e:29:61:0d:ff:28:c2:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:6D:4D:67:4F:D1:9C:BC:4B:2C:74:75:12:69:B1:9A:00:CB:34:DD
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/DE75A6387FED11EFBE7C7048762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.173.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:a5:70:98:06:c8:87:82:38:db:c9:73:ff:fe:92:77:78:f3:
85:95:f2:44:75:32:eb:14:ba:56:c1:bc:2d:51:80:89:d8:0d:
51:6f:d9:3f:c6:01:01:94:fe:70:68:cc:e9:ff:85:53:a9:17:
01:2b:96:d4:d3:e0:d5:d1:2b:62:0e:9e:e8:33:20:1a:cf:dc:
00:f4:b1:f3:fd:fa:aa:7f:53:2e:14:76:de:b8:bc:7e:a9:95:
70:7d:e2:ec:64:ef:b4:ef:20:bd:1e:f9:e5:38:db:3b:42:83:
43:32:16:b8:f1:be:e0:77:34:b2:f3:fa:83:8a:73:13:0d:74:
4e:a5:11:07:5f:64:02:4d:27:c5:d8:11:04:72:e3:fc:35:bd:
ff:76:0f:85:b2:1e:97:cc:a3:34:17:fb:df:ca:71:03:d2:0e:
d5:12:54:56:f4:95:ec:1c:3c:69:3a:10:fd:9d:1b:cb:c1:36:
d7:58:a9:cf:ac:ca:a0:0f:1b:1a:24:e5:c3:b7:3e:70:b4:64:
2e:21:a5:f9:98:d6:64:f0:b4:f2:b1:27:4e:67:8c:a8:c2:37:
bf:fc:71:51:41:c4:ce:a9:ab:23:a5:db:49:ae:02:61:5d:bb:
e5:69:b3:14:d7:46:a4:b4:22:8c:9f:63:70:ec:ee:2a:0f:b2:
72:90:ca:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:34 2024 by rpki-client on console-fra.rpki-client.org