Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E623D6BC552311EDBDADAA8DF1222468.roa
File: E623D6BC552311EDBDADAA8DF1222468.roa (raw, json)
Hash identifier: NZ7luZg+PGVKOGO4AhCbgTigj1dF52r/HzU1AJr/2Co=
Subject key identifier: DA:9F:D0:3A:C2:73:F3:59:62:3A:F5:6C:9B:DE:7C:AB:01:A3:26:7E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0A7C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E623D6BC552311EDBDADAA8DF1222468.roa
Signing time: Wed 26 Oct 2022 11:46:59 +0000
ROA not before: Wed 26 Oct 2022 11:46:55 +0000
ROA not after: Sun 27 Oct 2024 11:46:55 +0000
asID: 61317
IP address blocks: 154.16.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2684 (0xa7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 26 11:46:55 2022 GMT
Not After : Oct 27 11:46:55 2024 GMT
Subject: CN=63591e33-9c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:2a:1f:81:83:7e:c3:3f:0d:b1:7f:97:9c:
e7:28:41:c5:72:59:b6:ae:92:7c:d1:bf:02:94:85:
84:5d:d7:0d:bb:00:2c:04:58:fa:e6:82:63:b5:5f:
2e:fd:a2:6e:27:64:86:9f:24:81:27:6e:f7:22:94:
40:2c:11:09:19:9a:b0:6e:37:d2:6c:97:86:af:6f:
0a:8a:f5:e0:15:27:63:5b:1a:69:d3:dd:d8:ca:a1:
36:0b:36:bc:64:34:9f:a2:65:54:4e:35:68:fb:48:
4a:f5:d9:7d:67:d9:5e:44:8d:05:69:e8:18:35:54:
23:90:07:3e:79:83:cd:4f:22:1f:05:d5:53:22:9f:
e0:95:78:7d:d4:b7:01:14:e6:41:c1:0b:bf:d5:01:
c4:78:8d:3c:c5:0a:55:ed:82:74:e2:b0:8a:0e:68:
db:f7:1c:90:7f:e7:31:35:ec:c4:be:20:bb:e9:e6:
5e:22:72:63:71:c0:60:1c:19:d6:72:2e:bc:15:35:
82:d2:2e:e6:0f:fc:53:91:55:c8:3d:91:17:9a:7a:
cc:85:e6:d1:15:f7:5d:a7:b8:5a:ec:55:f8:0d:1c:
8e:1c:37:fd:56:5c:b4:32:4f:86:0b:4d:2d:b2:9b:
57:00:65:47:44:c3:fb:91:d9:49:55:b9:d3:9c:77:
f0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9F:D0:3A:C2:73:F3:59:62:3A:F5:6C:9B:DE:7C:AB:01:A3:26:7E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E623D6BC552311EDBDADAA8DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.191.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:0c:61:2b:7d:bb:a5:1c:d7:fb:73:31:99:0b:58:cb:fd:c6:
eb:5a:70:16:6b:6e:d6:62:9c:81:29:a3:04:b1:e6:5d:f0:c8:
a4:26:99:77:50:27:54:72:b6:81:cc:41:93:84:c7:e1:d0:72:
6f:2c:b6:6a:6f:6f:c7:85:6a:82:8b:20:f5:96:ae:12:e2:42:
f1:b7:25:cb:73:c5:fb:4d:73:66:0b:13:36:6e:69:57:cf:3c:
a5:bc:98:61:84:52:bf:59:5b:60:ed:84:ee:16:82:70:f4:d8:
c8:64:64:90:e3:08:6f:dd:7f:dd:6c:4a:95:b7:67:4a:bf:ba:
f6:bf:25:04:16:28:fe:97:c7:a8:d1:c6:f5:9e:e7:db:07:57:
b0:30:0b:ff:fd:6a:b0:73:79:a9:5f:8a:07:dd:11:80:1c:e1:
48:e8:46:8e:65:07:e2:66:33:ed:f1:40:a7:b5:ce:d7:10:ba:
8c:a6:67:77:ef:06:27:8e:bb:1c:12:7b:a6:4d:7c:96:65:f1:
a6:96:b6:c1:4e:87:52:9a:88:f1:02:1c:1c:11:df:89:c4:85:
b6:cc:30:91:e3:ef:53:a4:47:08:f8:a5:3f:97:b0:f2:47:bf:
47:77:45:22:f7:98:02:0d:86:ab:c5:b6:ca:89:af:f0:da:81:
89:ad:6c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:24 2024 by rpki-client on console-fra.rpki-client.org