Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/811B0F4682FF11EEAC9619864AD9E6FC.roa
File: 811B0F4682FF11EEAC9619864AD9E6FC.roa (raw, json)
Hash identifier: pPHAUOTt22hBeaB17IRburRyPCm6dJpRxd6TfErC+xI=
Subject key identifier: EB:21:3F:EE:26:63:CA:84:56:88:B9:5C:70:0E:42:82:2B:8A:83:C6
Certificate issuer: /CN=F36F7F21AF/serialNumber=52997871235F60CD715A7710FFD6E2EA4C88D29A
Certificate serial: 022F
Authority key identifier: 52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/811B0F4682FF11EEAC9619864AD9E6FC.roa
Signing time: Tue 14 Nov 2023 15:07:19 +0000
ROA not before: Tue 14 Nov 2023 15:07:16 +0000
ROA not after: Tue 14 Nov 2028 15:07:16 +0000
asID: 328155
IP address blocks: 154.65.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.mft
rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 559 (0x22f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F7F21AF/serialNumber=52997871235F60CD715A7710FFD6E2EA4C88D29A
Validity
Not Before: Nov 14 15:07:16 2023 GMT
Not After : Nov 14 15:07:16 2028 GMT
Subject: CN=65538d27-f029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:ff:80:34:a0:eb:13:aa:53:fe:81:f9:68:
09:9f:78:e6:70:7b:e4:7b:a0:6d:f1:3a:0c:a0:42:
59:5c:7c:fb:18:90:7e:e3:3d:52:b9:aa:47:0f:27:
1d:e0:e6:7a:e4:36:0a:66:d7:d9:f9:18:41:e8:fb:
35:f4:96:76:09:8a:1b:17:2f:ce:fd:91:f3:85:8f:
c6:6f:1f:5f:4e:b0:2f:b9:d4:9c:ab:73:44:c1:1f:
1a:7b:99:47:12:c2:72:16:ba:35:77:51:68:a4:37:
c1:41:8b:be:25:8a:3a:3f:d1:c9:02:aa:7e:8c:f5:
ef:7e:7e:ad:5a:4f:a7:77:01:0f:63:1e:6d:62:c2:
41:66:30:71:0d:69:4f:02:2e:ec:fe:ab:33:c0:84:
b2:9d:b0:8d:5e:66:91:ce:2a:c1:4d:0c:92:58:d3:
ae:34:f1:8d:6b:35:85:ca:f7:66:6e:59:3f:e8:79:
6b:3a:4b:c2:2a:17:a2:e5:e4:59:ec:1a:d1:77:45:
9b:df:fd:b0:c1:e3:a8:09:c0:37:4a:2a:97:0a:d0:
10:6a:fc:8d:24:f3:18:f4:ba:1c:5d:42:fd:58:eb:
5b:71:3e:e8:4d:3d:0d:aa:5c:14:08:5f:f3:10:7e:
66:7c:7c:10:07:08:ba:77:99:ea:6e:fb:0d:57:20:
76:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:21:3F:EE:26:63:CA:84:56:88:B9:5C:70:0E:42:82:2B:8A:83:C6
X509v3 Authority Key Identifier:
keyid:52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/811B0F4682FF11EEAC9619864AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.65.86.0/24
Signature Algorithm: sha256WithRSAEncryption
56:77:13:df:4a:2d:c0:b5:4f:a6:3f:10:eb:7b:4a:e3:9e:93:
73:b8:df:ab:db:39:e9:4f:35:35:c5:93:0c:df:bb:f8:9b:aa:
57:cc:32:cb:e2:35:8d:99:c4:d2:c6:a8:29:00:69:b0:46:1d:
44:c8:af:31:43:8c:d4:d4:5d:62:21:56:3d:94:65:b2:0b:ee:
68:4a:21:75:19:e2:a5:c5:71:0e:ee:0d:f3:57:df:f4:cf:37:
d0:bc:75:e0:30:07:36:d8:00:5e:0e:3d:7f:e2:63:16:40:87:
ae:f5:61:e9:fe:c8:45:c7:0d:7f:41:e1:cc:9b:39:d2:a2:fa:
01:87:73:67:94:68:b7:eb:34:37:b8:2c:58:eb:1d:77:c0:f1:
c4:dd:24:7d:cd:55:b8:55:4a:10:8b:a6:34:70:3f:b9:bb:24:
da:b3:0d:ef:88:e6:1a:8f:45:07:a0:19:26:97:de:fd:1d:b2:
a1:3c:da:51:22:52:b7:4f:d5:e7:4d:35:cd:b9:ea:84:30:c6:
a1:9c:af:2c:62:61:12:71:86:15:25:1c:e8:6a:ec:14:ed:ed:
0f:c4:66:35:ad:29:a3:7b:be:d5:da:d0:15:c1:70:5e:f3:1a:
6a:3a:7e:82:54:67:21:6d:00:fb:59:a0:97:f5:a7:f3:e9:b0:
2e:f4:4f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:15:15 2024 by rpki-client on console-fra.rpki-client.org