Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/C7ECF7DE74D211EFA2250567762E951A.roa
File: C7ECF7DE74D211EFA2250567762E951A.roa (raw, json)
Hash identifier: 2JN5T3Dym/uP+aQB4QDNBNpdJtMGonjqC1jPbmHacMk=
Subject key identifier: 08:CC:83:E6:08:31:C9:29:BE:A5:73:8F:3C:DE:63:81:55:13:80:8D
Certificate issuer: /CN=F361C63DAF/serialNumber=F160FBEE9047B4C33D2FA1D9D38201AE0D18C39F
Certificate serial: 02
Authority key identifier: F1:60:FB:EE:90:47:B4:C3:3D:2F:A1:D9:D3:82:01:AE:0D:18:C3:9F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/8WD77pBHtMM9L6HZ04IBrg0Yw58.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/C7ECF7DE74D211EFA2250567762E951A.roa
Signing time: Tue 17 Sep 2024 08:56:52 +0000
ROA not before: Tue 17 Sep 2024 08:56:48 +0000
ROA not after: Sun 17 Sep 2034 08:56:48 +0000
asID: 329479
IP address blocks: 196.2.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/8WD77pBHtMM9L6HZ04IBrg0Yw58.crl
rsync://rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/8WD77pBHtMM9L6HZ04IBrg0Yw58.mft
rsync://rpki.afrinic.net/repository/afrinic/8WD77pBHtMM9L6HZ04IBrg0Yw58.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361C63DAF/serialNumber=F160FBEE9047B4C33D2FA1D9D38201AE0D18C39F
Validity
Not Before: Sep 17 08:56:48 2024 GMT
Not After : Sep 17 08:56:48 2034 GMT
Subject: CN=66e94454-20dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f7:54:93:71:22:4e:db:a4:e8:f7:2f:55:c0:
e7:f0:f7:c9:b3:9e:e4:60:67:4e:9d:46:cc:3a:5c:
df:68:0b:63:59:ce:aa:8f:9e:33:91:39:9e:2a:b9:
85:dc:68:ce:0f:fe:2e:8a:c1:16:5c:ae:3e:08:49:
8e:c1:23:6b:d0:07:f0:71:91:59:77:68:71:40:c7:
73:4a:68:21:dc:f6:45:f7:6c:fc:e9:eb:1a:a8:ef:
0c:22:3a:5c:b8:c3:bb:55:f6:1a:0b:49:84:42:14:
5b:59:c4:d6:20:58:16:4a:cb:5f:a9:ba:85:a3:93:
b3:b5:c0:fd:ef:62:dc:6e:c2:c7:e0:ff:2d:1e:7e:
dd:ab:37:40:10:e0:d3:6a:18:ef:82:5f:18:3b:37:
31:8a:ad:13:65:29:7b:3d:79:63:d1:94:25:de:96:
f4:2e:c8:e1:18:7f:8f:20:e5:08:6c:91:ed:fa:29:
65:c7:30:98:76:9e:bb:44:7c:ba:8f:c1:9c:3d:57:
d6:a6:13:49:95:df:20:2b:ac:1f:56:7f:78:55:a3:
61:fb:a3:37:5e:96:31:d7:31:86:04:3b:de:f5:65:
4a:bb:30:56:9c:1c:eb:ec:8e:d5:dd:4b:c6:8b:73:
3b:e6:00:9a:16:41:7d:0c:30:c4:0c:64:06:d3:56:
9a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CC:83:E6:08:31:C9:29:BE:A5:73:8F:3C:DE:63:81:55:13:80:8D
X509v3 Authority Key Identifier:
keyid:F1:60:FB:EE:90:47:B4:C3:3D:2F:A1:D9:D3:82:01:AE:0D:18:C3:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/8WD77pBHtMM9L6HZ04IBrg0Yw58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/8WD77pBHtMM9L6HZ04IBrg0Yw58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361C63D/5342378C74D211EFA0CA8366762E951A/C7ECF7DE74D211EFA2250567762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.160.0/19
Signature Algorithm: sha256WithRSAEncryption
3c:52:a3:bf:4d:ca:ac:d8:26:d1:72:3c:eb:52:bf:20:3b:b6:
ad:dd:7b:fb:43:62:81:9a:ba:95:f2:59:56:b2:64:72:67:4b:
6a:0c:65:10:4b:85:56:13:b3:f3:44:ee:8f:df:2b:c7:b4:e1:
80:43:b6:9f:5a:de:2a:a9:eb:ec:88:83:45:d8:84:2d:aa:c6:
05:b4:d9:ab:3a:06:a0:db:58:34:ce:26:81:21:93:0c:76:c7:
2e:cf:2e:b2:c2:bc:0b:6c:d1:0b:85:1f:6d:47:24:e2:ff:54:
7d:c9:2d:de:d5:7e:40:54:34:e1:9e:66:19:00:ce:af:38:e5:
33:ce:4d:a8:b0:87:f9:c7:2a:2c:e4:c4:16:76:93:f1:03:3e:
5a:7f:26:7c:28:bd:33:4f:6d:b2:20:4c:92:b2:ad:95:f7:0f:
6e:35:a3:90:8c:61:ad:10:df:08:99:34:ef:c1:af:63:b8:c0:
44:d0:d7:3b:5b:dd:3b:bd:ab:81:c9:03:4f:4b:06:22:e5:fe:
f6:22:ca:bc:fe:3a:d7:7f:e2:f0:81:0c:b9:b9:6d:c8:a0:b6:
e5:0e:46:6f:25:eb:47:07:2b:ef:02:8e:fb:f5:bc:6a:04:75:
a1:dc:c7:27:03:6d:af:fa:cc:c2:cf:22:fa:23:16:f0:63:71:
08:ed:34:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:45 2024 by rpki-client on console-fra.rpki-client.org