Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
File: EB58F4DE3E8811ED935BEADDF1222468.roa (raw, json)
Hash identifier: weSTEB8IWtINS22uesWBGc1Fcr6m760JxdC6SIgtAqo=
Subject key identifier: FC:3D:4E:07:3E:7B:5B:C5:EB:5A:34:A3:27:42:48:E2:BE:6A:14:B6
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 09C6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
Signing time: Tue 27 Sep 2022 17:22:10 +0000
ROA not before: Tue 27 Sep 2022 17:22:05 +0000
ROA not after: Mon 30 Sep 2024 17:22:05 +0000
asID: 212238
IP address blocks: 154.16.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2502 (0x9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 27 17:22:05 2022 GMT
Not After : Sep 30 17:22:05 2024 GMT
Subject: CN=63333142-578d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d1:a6:29:a6:7e:9f:17:09:c0:55:ef:f7:59:
0e:33:b0:05:f3:9a:7c:d3:fd:e0:33:f0:15:58:8b:
47:91:6d:fc:b6:9f:8c:82:8d:4b:5a:3d:72:b9:93:
78:6c:96:96:b5:8b:5c:77:90:ea:9e:4d:12:82:8a:
fc:f3:5d:0e:d4:a3:4d:2a:c2:15:55:0e:b9:68:9a:
3c:e4:54:25:ec:34:1d:b1:20:e1:a7:03:b4:61:be:
54:74:d3:0f:ba:cd:b3:04:99:4a:5f:75:e7:e6:72:
f5:2c:0e:30:57:15:cc:40:c5:34:0f:ac:ed:8a:d4:
04:8e:d9:9d:d8:29:2a:5e:37:f3:05:fa:ad:b2:4b:
c7:83:e2:ba:a6:c9:74:dc:a0:0d:72:49:a3:83:b1:
31:35:0a:c1:35:10:b5:80:10:29:0c:c3:67:6f:cc:
a9:a5:fb:02:78:a5:3c:58:ab:39:6e:73:66:32:a6:
d9:2b:07:5b:e9:0c:9b:9d:7c:3e:51:00:f0:4d:f2:
70:39:c3:4c:58:78:d7:31:bf:7e:ce:5f:15:88:01:
e6:07:c8:fe:ec:b5:13:9b:bb:cb:d1:3d:b2:a4:f9:
06:ff:d5:79:44:28:dd:7a:70:b8:7b:02:8b:91:40:
b7:85:06:4f:db:21:c8:47:e2:ca:1e:e1:9c:21:fc:
21:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:3D:4E:07:3E:7B:5B:C5:EB:5A:34:A3:27:42:48:E2:BE:6A:14:B6
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.77.0/24
Signature Algorithm: sha256WithRSAEncryption
30:c8:d1:33:31:44:50:5e:fe:8a:2b:4c:b7:52:f0:c6:b0:72:
5f:52:a9:d7:c0:7d:d4:b9:90:c4:e7:37:70:7b:43:18:a2:6b:
ae:a1:2f:0f:f9:e5:79:23:7f:9c:7b:d3:12:d4:e0:45:45:b7:
25:6f:98:88:1b:10:42:4d:89:e4:08:3b:f2:8f:d9:74:7a:2e:
c3:0f:72:ac:22:82:c4:62:08:8b:14:5d:58:63:a8:4f:1d:a8:
2a:bd:12:6d:30:c7:57:9c:e8:63:4c:fb:6a:26:1a:af:9e:51:
2a:5e:b4:4e:8a:b4:b1:51:1c:9c:d4:71:5e:58:b1:e7:5f:d5:
7f:fa:d6:ac:ea:96:79:c0:17:35:47:9b:0c:a0:52:7b:56:5d:
b8:0b:0c:aa:bb:e4:c4:f1:4a:e4:f9:24:ae:3a:1f:3b:d9:6f:
e8:ec:5b:3d:ce:33:98:10:e3:0b:2b:20:03:71:8f:4f:e7:60:
1d:2d:ee:04:d5:c1:0c:17:eb:15:ae:2c:da:45:cf:4c:f9:ad:
a5:16:88:0d:95:95:a9:bc:e8:7a:fe:7d:28:45:2f:e4:1b:36:
8b:ed:31:83:58:8b:81:7d:45:b4:0b:38:11:63:2b:ca:21:5b:
a5:a0:c3:dc:b0:2d:c8:fa:74:b8:ae:27:b5:58:54:11:4d:e8:
3b:81:72:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:49:52 2024 by rpki-client on console-fra.rpki-client.org