Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0E8C7614F37311EA85643E6FF8AEA228.roa
File: 0E8C7614F37311EA85643E6FF8AEA228.roa (raw, json)
Hash identifier: 4f6xaF15K3MtjfMxIB45u8FI4cWX8llt7oAnhMwF85c=
Subject key identifier: C4:80:2F:93:62:2A:A8:51:10:86:E2:6D:B7:82:2F:68:F5:AD:86:C3
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0240
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0E8C7614F37311EA85643E6FF8AEA228.roa
Signing time: Thu 10 Sep 2020 14:36:49 +0000
ROA not before: Thu 10 Sep 2020 14:36:41 +0000
ROA not after: Tue 10 Sep 2024 14:36:41 +0000
asID: 327687
IP address blocks: 196.43.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 576 (0x240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 10 14:36:41 2020 GMT
Not After : Sep 10 14:36:41 2024 GMT
Subject: CN=5f5a3a00-768a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:35:ea:44:27:78:7e:7b:32:e8:c3:65:6e:ac:
bc:3a:15:8c:10:76:64:05:75:37:63:80:ce:0e:0d:
e7:5b:dd:8c:60:c1:9e:dd:35:97:28:97:96:83:9b:
7e:f1:7c:04:c3:e9:da:70:21:4f:bc:22:0c:f3:6b:
5b:a9:33:5a:9d:90:98:4f:4f:9c:00:64:16:e0:0d:
23:bf:21:97:03:cb:52:63:8c:ce:fb:2a:e4:4c:eb:
71:06:03:39:fd:c0:85:19:da:33:4e:0a:d7:5d:d0:
90:16:a2:69:6b:0f:51:4a:a6:94:17:28:36:0c:ab:
7f:d2:53:0f:15:18:ee:b5:b5:65:d0:eb:27:14:01:
71:45:5d:dc:63:ba:95:0b:28:7d:4d:b9:14:7a:66:
70:d6:25:cd:a5:9d:03:3d:17:5a:ce:5f:9d:6c:18:
df:60:73:1b:31:57:bd:2c:24:06:86:a7:3f:07:90:
f0:d5:c4:a4:e0:55:da:a1:bc:59:6b:2d:d8:e7:9b:
91:60:2e:16:9a:c7:1a:00:00:27:66:4c:a3:7d:1d:
84:66:b4:b0:02:9f:e6:ef:56:6e:7a:27:4a:e1:ee:
15:28:6f:9a:7b:9a:09:cc:dc:85:3f:b6:02:4c:b0:
7b:db:84:27:f3:ff:dd:db:50:61:80:3d:7b:d3:23:
ec:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:80:2F:93:62:2A:A8:51:10:86:E2:6D:B7:82:2F:68:F5:AD:86:C3
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0E8C7614F37311EA85643E6FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.130.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:c7:96:0d:7f:10:ae:9d:f9:0b:91:36:30:45:92:9d:9a:fc:
88:d8:55:d8:2b:33:77:dd:f2:d0:fb:76:22:73:63:f1:3c:a6:
a2:7b:a6:4d:4b:ab:7e:f1:77:32:58:64:2d:b0:2f:67:b5:36:
40:b3:0a:1c:40:a0:59:7d:1d:19:09:8a:d5:9d:35:3b:5f:79:
7f:04:d3:35:25:98:e4:a9:ff:30:24:e5:9d:4c:05:66:f1:cd:
37:d4:f7:d2:2b:d6:d8:25:50:3f:cf:f8:79:fd:4c:ad:11:7e:
55:ce:15:8b:51:ae:e2:31:82:43:01:66:72:29:80:6c:f4:20:
ca:5d:14:27:ba:61:4d:bf:81:e6:9d:68:6b:c4:c5:4b:5f:7e:
d6:b1:40:3c:be:8b:be:f9:c8:de:07:27:34:67:cb:ff:36:b5:
72:56:82:90:8d:7b:8a:b4:cf:13:cb:88:c9:e1:bd:3d:f5:d1:
0d:1d:3f:5c:27:f0:88:21:db:1b:18:70:59:f5:4e:71:27:69:
ee:e9:96:5f:7f:ef:69:2a:db:17:a9:40:cc:9a:aa:b9:ea:ca:
51:11:b6:91:84:5b:89:75:53:49:a3:86:25:de:a2:64:3a:66:
83:d9:0b:11:40:f3:f9:e7:62:54:7a:2d:2b:e7:af:d6:7b:a3:
de:57:6e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 02:37:45 2024 by rpki-client on console-fra.rpki-client.org