Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/43F3A452F37411EAAF9B8170F8AEA228.roa
File: 43F3A452F37411EAAF9B8170F8AEA228.roa (raw, json)
Hash identifier: EAyMwTo1XhB4cgTO3UFlqkCouUzp14bj0d1qvObhRKM=
Subject key identifier: BD:B7:E7:4F:C1:3D:64:87:BA:3C:34:8D:D1:D0:81:62:3A:C4:F6:F3
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0242
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/43F3A452F37411EAAF9B8170F8AEA228.roa
Signing time: Thu 10 Sep 2020 14:45:28 +0000
ROA not before: Thu 10 Sep 2020 14:45:20 +0000
ROA not after: Tue 10 Sep 2024 14:45:20 +0000
asID: 327687
IP address blocks: 196.43.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 578 (0x242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 10 14:45:20 2020 GMT
Not After : Sep 10 14:45:20 2024 GMT
Subject: CN=5f5a3c07-48f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:19:c1:df:ed:96:c7:69:c3:78:35:08:2c:6b:
e2:fe:25:82:94:b6:bf:ed:32:9d:fa:9e:06:57:c0:
87:d6:18:3f:27:b2:6e:e2:49:c7:a6:52:9d:99:41:
f5:82:9d:0f:0d:f3:af:e9:9a:61:3d:86:32:95:3f:
61:12:d5:f1:6a:db:e7:c1:17:9c:c6:a8:97:1a:e5:
9b:4c:d8:f0:91:3f:a0:81:ad:07:49:8c:81:9c:01:
c0:8e:12:4f:80:22:3a:11:bc:38:d7:6d:72:0a:e0:
5b:32:89:6a:5f:c6:a5:7d:7b:28:9d:0a:cd:be:af:
46:d2:4e:f2:5f:55:00:1d:25:08:0f:aa:0d:82:cb:
d3:d8:84:c0:0a:83:d9:81:62:c7:9d:e2:db:5f:a8:
b7:9a:6f:24:e9:37:4d:c0:da:72:bd:62:bc:c2:33:
6f:e0:aa:dc:c8:13:ed:16:d9:3c:20:29:98:25:8f:
34:76:6d:bc:27:46:87:1b:e7:4a:72:ab:d5:36:95:
0d:76:47:b1:d6:7b:56:bb:54:7d:b3:25:e4:c4:f8:
2e:4e:67:58:ce:68:4e:4e:ce:e0:35:29:ff:cd:00:
98:f1:e1:4b:3f:07:7b:5a:a4:33:be:16:7d:7c:d7:
6b:d5:3f:e4:04:81:cb:b1:f3:d1:b5:8c:f5:17:cc:
6c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B7:E7:4F:C1:3D:64:87:BA:3C:34:8D:D1:D0:81:62:3A:C4:F6:F3
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/43F3A452F37411EAAF9B8170F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.131.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ad:fc:51:5c:67:09:ee:be:2a:f3:c9:fb:d1:ec:f4:1f:2d:
d1:2a:87:c0:2f:24:c1:6f:1d:fa:87:d3:80:87:20:ab:ff:b9:
fa:9c:81:73:3f:37:70:d6:a6:94:0a:3e:91:bf:aa:cf:a1:25:
41:6a:f3:0e:84:cd:98:54:eb:2d:07:60:a6:69:5c:27:f1:95:
19:ac:b5:dd:bc:94:3a:bf:c9:64:ac:19:3a:ce:43:3a:54:db:
48:70:df:c4:dc:4f:8c:1a:85:d2:67:03:7d:0d:61:50:65:e7:
11:d3:21:14:4c:71:82:00:b1:c8:00:a5:7b:8b:5e:68:92:f1:
f7:b6:db:ab:c2:c1:29:16:0f:42:0f:e9:80:c2:ca:e9:82:2e:
a7:ae:a2:8b:f0:39:2d:73:3e:fe:3c:53:cb:df:80:5c:a1:68:
6d:18:f8:73:ca:04:1c:e1:a0:29:7d:bb:d2:7d:04:6d:e7:0c:
04:b2:70:2c:af:85:71:a0:87:7d:19:bf:ac:d1:9e:f0:79:c1:
c3:e9:c6:5e:6f:36:d6:04:cb:49:cd:08:6f:99:a0:77:53:49:
94:18:52:89:0c:3c:c1:4c:c0:55:8d:bc:dd:ad:21:a3:be:27:
8a:1f:8f:0d:70:ce:f4:b4:cd:cb:d3:c8:28:d9:8b:62:59:0f:
56:b8:48:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:48:43 2024 by rpki-client on console-fra.rpki-client.org