Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/F019B85EA62111ED8776367FF1222468.roa
File: F019B85EA62111ED8776367FF1222468.roa (raw, json)
Hash identifier: vz0gdE2qPXTbuobi42RjN0wKI0ZjByLhBDreE92zsPQ=
Subject key identifier: 6A:9A:FC:4C:CF:20:A8:8A:18:0F:2E:A5:FA:33:D0:A2:02:3B:74:87
Certificate issuer: /CN=F3623CAFAF/serialNumber=334DE7D2EB862018BB95749B648DCBAF50D13DA8
Certificate serial: 09FA
Authority key identifier: 33:4D:E7:D2:EB:86:20:18:BB:95:74:9B:64:8D:CB:AF:50:D1:3D:A8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M03n0uuGIBi7lXSbZI3Lr1DRPag.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/F019B85EA62111ED8776367FF1222468.roa
Signing time: Mon 06 Feb 2023 13:27:02 +0000
ROA not before: Mon 06 Feb 2023 13:26:57 +0000
ROA not after: Sun 06 Feb 2033 13:26:57 +0000
asID: 22690
IP address blocks: 196.223.240.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/M03n0uuGIBi7lXSbZI3Lr1DRPag.crl
rsync://rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/M03n0uuGIBi7lXSbZI3Lr1DRPag.mft
rsync://rpki.afrinic.net/repository/afrinic/M03n0uuGIBi7lXSbZI3Lr1DRPag.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 00:56:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2554 (0x9fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3623CAFAF
Validity
Not Before: Feb 6 13:26:57 2023 GMT
Not After : Feb 6 13:26:57 2033 GMT
Subject: CN=63e10025-be4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c5:0f:e9:ca:14:40:8d:ba:21:4d:c3:1e:1a:
1d:bf:39:1f:be:9b:c7:35:ad:c1:8a:e1:48:91:ff:
bd:d6:78:8d:00:bc:0a:94:1c:05:a1:6e:48:bb:c6:
b2:d2:50:21:44:9e:41:2c:cb:e2:b8:ac:17:92:ec:
05:7e:67:3a:16:35:ed:06:04:71:62:36:39:3f:3c:
e9:b9:db:bf:c7:e3:a7:14:2f:de:40:ae:d5:ef:74:
a7:c9:dc:44:43:d8:c7:bf:91:6f:83:29:a8:74:e6:
e7:21:5e:c5:41:6f:e4:d1:89:94:c4:e7:88:af:e1:
24:6b:c2:91:41:4c:33:87:9e:9d:75:be:9f:e1:1e:
cc:ef:cc:9f:05:e4:1f:2e:ba:fc:ab:7c:8e:66:19:
ea:b1:94:53:86:52:20:8b:59:e8:5e:dd:54:a0:6a:
37:14:bc:0b:ff:f4:25:b2:05:55:6d:a3:4a:48:f9:
af:7b:2b:28:da:f5:c1:6b:75:16:4d:f3:57:3b:fd:
3c:51:50:47:0c:0e:49:e7:76:22:51:31:25:b6:6b:
b8:e8:f4:a4:e9:09:fe:4b:c2:6b:16:34:5a:40:b3:
71:f5:be:23:52:aa:f2:97:b1:f6:30:3f:96:7a:46:
3b:d1:ac:e0:b0:52:aa:52:f2:a5:3b:55:b1:d2:6e:
1a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9A:FC:4C:CF:20:A8:8A:18:0F:2E:A5:FA:33:D0:A2:02:3B:74:87
X509v3 Authority Key Identifier:
keyid:33:4D:E7:D2:EB:86:20:18:BB:95:74:9B:64:8D:CB:AF:50:D1:3D:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/M03n0uuGIBi7lXSbZI3Lr1DRPag.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M03n0uuGIBi7lXSbZI3Lr1DRPag.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3623CAF/D13F9DB0F4F111E5BE8A634CF8AEA228/F019B85EA62111ED8776367FF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.240.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:99:64:18:94:6b:6a:07:47:81:87:ed:8d:fe:26:3c:f5:9b:
c1:e3:5b:d9:00:15:87:c1:9f:13:c1:84:02:ba:6b:5f:99:68:
dc:ef:8f:e8:8d:4c:51:a2:e0:70:dc:c8:47:7a:b8:16:81:7a:
b5:a9:63:cb:9f:95:40:70:05:70:d4:fd:9d:97:59:5d:62:2c:
e8:96:fc:15:87:4b:32:ae:58:c7:c1:b6:b4:55:7e:47:75:f3:
3f:df:21:84:72:ee:6d:f6:46:4a:1d:fc:43:c3:65:1c:f5:26:
1b:9c:cf:17:de:db:b2:0b:26:27:32:fa:58:03:24:5c:a4:8d:
bc:c8:05:a4:94:b4:95:e9:90:c7:e9:de:3e:f6:de:6c:09:9f:
b7:4e:b8:46:84:c6:03:d2:11:4f:a7:b7:a1:23:6f:26:20:20:
14:57:0a:ba:fa:11:77:f9:2c:27:df:9b:55:2d:05:2a:7b:54:
59:18:c0:09:1e:49:36:70:38:b0:68:36:18:43:32:46:af:61:
85:5d:a2:bf:7f:8e:98:37:d7:cb:90:4c:3e:c9:3a:68:c4:cd:
63:d2:11:9e:c8:91:f2:5d:d1:46:b6:38:de:96:36:d3:4e:9e:
55:10:cd:f0:c7:14:7e:09:09:c3:12:ba:fc:ec:12:67:ee:4a:
4b:67:50:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:43:13 2025 by rpki-client