Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBD095A64E4911EF9D17849D762E951A.roa
File: FBD095A64E4911EF9D17849D762E951A.roa (raw, json)
Hash identifier: U4mdK5EEnHXpldhobUHnpX9PaQxjgnDN10Vb4J8X3E4=
Subject key identifier: F0:8A:19:2F:83:C3:EE:CB:48:00:45:3D:4F:36:05:BC:6E:D5:BE:1E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1764
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBD095A64E4911EF9D17849D762E951A.roa
Signing time: Tue 30 Jul 2024 08:01:54 +0000
ROA not before: Tue 30 Jul 2024 08:01:50 +0000
ROA not after: Thu 30 Jul 2026 08:01:50 +0000
asID: 397423
IP address blocks: 154.16.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5988 (0x1764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 30 08:01:50 2024 GMT
Not After : Jul 30 08:01:50 2026 GMT
Subject: CN=66a89df1-6cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b3:f0:b6:d9:17:bb:10:2f:a8:2c:ba:f5:ff:
ff:7a:c3:80:23:13:1d:33:a8:a5:46:3e:0e:f0:12:
3b:1d:cd:b4:a2:2d:ac:61:fd:e9:73:ed:fc:61:7d:
d1:e6:9b:96:3c:dc:4d:f3:db:a9:c0:16:c1:6f:81:
9c:05:25:2f:2d:ff:e2:b2:dc:95:fa:c8:e8:21:8f:
04:7f:99:9a:df:30:4a:01:e6:d6:70:98:b6:52:68:
5a:57:c4:d7:d6:07:fa:6c:05:4b:33:0a:38:01:c2:
92:29:0a:7a:83:fc:33:a3:23:2b:a7:41:a3:ce:9d:
7a:b9:46:c3:55:ee:1b:d8:a8:a7:94:01:13:8d:66:
44:4f:5a:1e:d4:f1:a3:d0:52:85:8a:ea:b5:68:fe:
fe:5b:4d:e3:16:41:db:15:1d:e9:1a:93:47:94:83:
5c:1c:5c:10:76:44:3a:07:e2:6c:df:cd:09:ce:66:
d6:f5:d9:91:9d:f8:6e:0d:2d:bb:cd:76:f7:68:6a:
1b:44:5a:b1:bc:6a:53:b5:0b:94:96:72:1e:b0:e3:
e5:7d:83:bf:25:ca:10:23:31:36:d4:e7:46:dc:2b:
ed:5e:45:00:77:4f:5e:44:a0:0e:c8:9c:64:22:04:
e7:2d:64:75:7b:dd:83:18:50:ad:df:b1:c5:8f:3e:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8A:19:2F:83:C3:EE:CB:48:00:45:3D:4F:36:05:BC:6E:D5:BE:1E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBD095A64E4911EF9D17849D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.171.0/24
Signature Algorithm: sha256WithRSAEncryption
96:50:14:b0:91:a5:5d:6a:18:43:7d:a3:da:43:98:18:dc:5b:
f1:b4:0b:55:2b:09:03:7a:ed:bd:47:cb:04:fe:0b:2d:e7:d4:
0c:e1:90:00:f5:2e:45:13:79:60:76:d1:11:65:73:4e:4d:c1:
1e:74:3f:d2:67:1c:c5:c1:08:b8:0b:94:d5:eb:c5:3a:03:fa:
82:b2:88:8a:8a:94:e7:9c:5e:5c:82:96:a5:ae:57:71:6f:d7:
57:a0:56:18:4d:c4:92:4b:56:86:f3:03:ad:c6:80:02:d6:20:
1d:be:4f:aa:9b:bd:26:2d:cb:e2:1d:84:17:8d:64:8b:91:ea:
15:a6:50:fd:64:98:c8:06:04:cb:73:31:2e:f5:8a:d8:a3:61:
43:37:e3:26:9a:e0:69:a3:62:e8:11:95:56:b0:3d:c3:2b:3f:
90:79:19:1b:16:4c:9c:8a:cb:40:c5:12:f9:a7:a6:48:cd:58:
84:7e:1f:70:79:6e:97:09:c2:0b:98:61:cb:33:e5:60:39:b0:
06:38:e5:96:61:ba:e9:45:a6:32:38:f1:2a:de:22:cc:d7:2b:
8e:20:16:e6:6b:39:7c:42:38:e8:98:46:d2:29:6a:13:f5:c6:
96:39:d8:1b:42:71:69:1f:54:df:ad:ef:19:84:80:2e:9e:8a:
84:84:b7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:47 2024 by rpki-client on console-ams.rpki-client.org