Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/B26CC39CE06E11EE9B19AF6C775412E6.roa
File: B26CC39CE06E11EE9B19AF6C775412E6.roa (raw, json)
Hash identifier: Ty5HAlTEhASXYCuUF5uWrrX1/gj8dWsdudDz16cov10=
Subject key identifier: 07:09:DA:12:61:92:C4:0F:62:3E:AE:6D:09:59:C7:38:5E:69:77:A7
Certificate issuer: /CN=F36FA15DAF/serialNumber=D8B6E18C65DD1F96F2A544CACFC98086AEF9296F
Certificate serial: 04E7
Authority key identifier: D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/B26CC39CE06E11EE9B19AF6C775412E6.roa
Signing time: Tue 12 Mar 2024 12:47:34 +0000
ROA not before: Tue 12 Mar 2024 12:47:31 +0000
ROA not after: Tue 12 Mar 2030 12:47:31 +0000
asID: 207990
IP address blocks: 154.73.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.mft
rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1255 (0x4e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAF
Validity
Not Before: Mar 12 12:47:31 2024 GMT
Not After : Mar 12 12:47:31 2030 GMT
Subject: CN=65f04ee6-0e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:33:26:b2:e5:a0:ae:59:c4:1a:e9:d8:26:77:
16:db:15:4e:e6:f5:ff:5b:af:67:62:e5:ad:e8:8a:
64:0d:5f:e2:c4:73:c3:b4:f6:06:20:b6:85:8a:f1:
c8:fd:91:06:91:5c:9b:b0:3a:7b:87:d9:66:a6:8a:
64:bb:9e:5a:38:c8:65:df:a1:dd:eb:4f:08:61:57:
f8:d5:2f:5d:2f:1e:ec:50:f9:99:22:27:6a:da:a1:
38:7a:ce:35:c7:c0:c7:5b:49:ad:98:44:d4:e5:9d:
86:61:3b:0e:0e:b1:2d:60:12:0b:2b:a5:30:b2:f2:
af:6e:a6:5e:68:2c:fd:db:fb:ac:79:f9:04:f0:7d:
d3:1a:89:80:90:65:04:7a:db:b6:b2:02:c7:9c:cf:
b8:6a:ad:d5:5e:4d:8b:81:47:fe:27:ca:1e:40:77:
cd:98:81:6d:21:eb:bd:c6:c8:e3:93:6b:8c:05:dd:
38:d0:15:cd:c9:9a:44:20:d0:9a:44:b8:68:a6:63:
5c:b3:dd:aa:ae:3d:04:2e:07:ca:de:81:b1:58:b7:
6c:bc:b7:a1:4c:30:02:5e:42:ce:7a:b0:82:c8:4f:
6e:43:a3:a4:46:03:f9:d2:80:0a:64:fa:24:42:20:
49:b6:d9:e1:67:c7:ca:08:37:8e:14:df:dd:af:a9:
65:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:09:DA:12:61:92:C4:0F:62:3E:AE:6D:09:59:C7:38:5E:69:77:A7
X509v3 Authority Key Identifier:
keyid:D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/B26CC39CE06E11EE9B19AF6C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.73.248.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d9:cd:43:c6:69:6d:68:05:f0:55:11:4f:ce:92:0a:a3:20:
7b:cd:0d:ae:5b:50:62:48:28:26:4d:d3:b4:12:2c:c3:44:68:
d6:a2:6b:37:92:98:6d:ca:84:9f:d4:d4:ae:7c:1e:97:d2:30:
13:8e:fc:9d:3c:a9:ae:69:13:12:e8:3f:59:8b:cc:06:ec:a4:
5f:af:56:e6:9a:2a:39:d1:18:7e:9f:25:52:25:d7:ff:ae:af:
df:17:da:6c:bb:0c:82:ef:36:5e:90:19:65:26:b0:a2:92:b7:
f7:b9:83:b2:18:cb:5c:c2:f9:80:86:d8:1e:1a:d8:a9:7b:95:
15:7e:48:c6:bf:64:11:bc:5a:17:8b:3e:d7:f3:31:42:74:9d:
d0:6f:b7:da:9b:3e:0e:2e:0d:c2:8c:5a:69:ca:a3:bc:2c:ff:
fc:f2:da:cd:f0:61:d0:77:98:d2:df:7e:3b:06:c1:41:d2:dc:
9f:55:3e:29:dc:68:be:78:de:2e:bf:11:86:66:7f:80:85:e6:
33:78:2e:0c:7a:4b:a9:fa:ec:c8:d7:32:04:f7:f7:4e:e9:e9:
b3:cd:eb:50:cb:6f:c0:de:4a:18:c5:94:cf:1c:5a:fd:c9:58:
29:12:58:8b:1c:7c:2d:54:08:5f:be:14:ed:d6:21:e5:dc:64:
7a:d0:ab:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:45 2025 by rpki-client