Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/8916514CD03C11EB905CD648F8AEA228.roa
File: 8916514CD03C11EB905CD648F8AEA228.roa (raw, json)
Hash identifier: OozlDcr+dXwvsBnSt+q7FP27uCzQ+zfrjTjFPN+PVMo=
Subject key identifier: 33:C2:3D:B7:BF:2B:45:A7:5B:16:32:A6:D9:55:DC:44:91:AF:27:F6
Certificate issuer: /CN=F3627EC7AF/serialNumber=16F298A5700A954AF7548360EE40312B4415F289
Certificate serial: 0D
Authority key identifier: 16:F2:98:A5:70:0A:95:4A:F7:54:83:60:EE:40:31:2B:44:15:F2:89
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/8916514CD03C11EB905CD648F8AEA228.roa
Signing time: Fri 18 Jun 2021 13:53:18 +0000
ROA not before: Fri 18 Jun 2021 13:53:13 +0000
ROA not after: Mon 30 Jun 2025 13:53:13 +0000
asID: 29918
IP address blocks: 196.46.136.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.mft
rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627EC7AF/serialNumber=16F298A5700A954AF7548360EE40312B4415F289
Validity
Not Before: Jun 18 13:53:13 2021 GMT
Not After : Jun 30 13:53:13 2025 GMT
Subject: CN=60cca54e-d9d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fa:1f:8b:99:e4:60:29:9d:66:28:d8:cf:02:
34:9b:3a:6a:0c:ae:d7:cd:38:61:a2:e2:53:54:ff:
9d:fb:a3:d2:23:60:94:a4:b3:cb:68:02:29:72:47:
5a:d2:4b:f5:a4:e5:a6:89:f4:89:9a:f6:45:77:d4:
92:b2:f5:e8:12:27:0e:12:d4:0b:c6:52:34:1b:b6:
da:a6:2e:35:f5:3a:b3:3c:0a:34:02:c5:b0:8c:16:
44:97:a0:c0:2c:c6:2c:21:d2:3e:8c:ad:e3:e3:0d:
3e:d8:c3:1c:00:ac:21:de:21:5a:76:56:c9:cc:ac:
84:e8:60:31:6b:52:4e:51:d2:e2:a3:9e:e3:bf:80:
aa:c9:34:5e:e0:9d:70:fc:6b:d7:5c:f0:66:4e:a5:
c5:b0:68:6a:5d:e8:9e:dd:72:41:2b:d9:72:bd:a0:
de:f4:ca:b4:af:08:4e:a9:f1:20:0a:4f:d3:b3:54:
bc:a2:d5:19:37:89:9e:aa:95:c7:25:64:75:00:51:
10:65:e1:b7:69:ba:05:16:15:85:54:69:af:ee:c7:
6f:86:85:6b:0d:24:83:57:df:b6:7d:04:cc:b1:3f:
04:8c:cb:ea:4b:2d:d7:78:24:be:dc:33:e2:ba:69:
c4:fa:46:6b:d7:f0:b1:ad:70:a1:45:22:3d:47:21:
10:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C2:3D:B7:BF:2B:45:A7:5B:16:32:A6:D9:55:DC:44:91:AF:27:F6
X509v3 Authority Key Identifier:
keyid:16:F2:98:A5:70:0A:95:4A:F7:54:83:60:EE:40:31:2B:44:15:F2:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/8916514CD03C11EB905CD648F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.46.136.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:59:e7:45:e3:27:30:cc:cd:68:bd:50:79:62:81:70:52:06:
a3:79:70:00:e2:10:3a:ab:ce:37:e2:bb:ad:e1:18:b3:5c:d4:
a4:8c:62:a0:f9:a4:58:2f:5f:79:f6:8a:08:7a:1b:32:c9:51:
c3:8c:8a:1e:7d:31:75:5c:b9:3e:a5:ee:01:7b:3e:f4:18:80:
1e:ef:ba:ad:c9:db:3c:de:58:a6:6e:44:42:33:4f:d6:88:b5:
74:3a:02:48:28:cd:0e:05:93:4f:f1:e4:a6:1a:d7:f9:fa:34:
8f:a0:9a:6b:81:9b:80:ad:53:29:b3:cd:8a:e0:bc:ab:f4:51:
ae:06:04:c5:39:dd:f5:12:2e:09:b7:35:33:a0:8b:a5:11:43:
e1:d5:13:f6:94:4d:cb:d9:22:ef:2d:27:aa:56:40:e0:d2:aa:
fd:b3:ff:ac:39:cf:8a:16:e7:b0:a2:fd:c3:9e:46:e8:9c:d3:
91:fe:3d:22:a3:4d:18:e5:67:1b:46:a6:c4:e4:7b:92:9b:e3:
db:c7:ab:d0:f8:dd:ac:07:7b:00:b8:12:90:f6:25:49:9a:d7:
e3:37:5d:2c:43:e8:0a:c2:0f:86:18:00:3c:d7:df:6d:08:44:
ef:a5:bc:93:4f:1c:04:bb:de:89:32:e5:e8:1e:61:02:ea:3e:
cc:b9:64:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org