Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4AF9BDF4F44B11EAA8185B4FF8AEA228.roa
File: 4AF9BDF4F44B11EAA8185B4FF8AEA228.roa (raw, json)
Hash identifier: RLfViJfq7BNzEwiwqeZkZe6lAdVM5mFrufSOgKFPKd4=
Subject key identifier: 0A:D9:17:27:AB:20:4C:3C:2A:AA:8D:10:C1:50:B4:EF:62:CF:C8:AE
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0271
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4AF9BDF4F44B11EAA8185B4FF8AEA228.roa
Signing time: Fri 11 Sep 2020 16:24:41 +0000
ROA not before: Fri 11 Sep 2020 16:24:36 +0000
ROA not after: Wed 11 Sep 2030 16:24:36 +0000
asID: 327687
IP address blocks: 196.43.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 625 (0x271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 11 16:24:36 2020 GMT
Not After : Sep 11 16:24:36 2030 GMT
Subject: CN=5f5ba4c9-5d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b2:6a:a7:65:ce:c0:e7:ad:ee:ce:97:76:eb:
99:f8:d2:63:78:97:77:31:fd:7f:9f:0c:18:e8:f3:
8c:a6:29:fd:12:e4:1e:e3:14:a8:2e:5b:59:60:61:
55:21:dc:9b:a6:92:32:31:d9:48:fd:80:1c:02:ca:
6f:14:91:00:4a:44:79:99:2f:77:76:ae:f7:89:cf:
4a:46:9d:45:1a:35:ff:0f:65:9a:6d:1d:23:95:9c:
30:a2:af:c7:d4:23:b2:dd:8f:6e:c1:a6:50:81:9b:
5c:4e:a9:cb:bb:3c:9c:f2:4c:3b:bf:36:49:8f:c0:
bf:b7:41:45:52:91:47:89:17:da:b9:b3:ce:86:6e:
b8:e9:fd:ed:af:f7:c0:1c:cb:e4:10:db:4d:78:51:
b6:65:cb:b2:96:3d:4b:83:62:bd:e7:a3:47:2d:db:
5e:49:8d:7a:db:ce:c5:40:23:ff:f9:c6:86:f0:17:
d9:43:db:f1:dc:50:d8:f6:23:f0:09:f8:41:c4:e2:
25:e4:68:ee:c6:cc:1d:10:5f:e5:9e:96:42:e8:c3:
ac:71:a3:2c:f6:60:63:1b:69:da:c2:b1:3a:ff:81:
60:ae:de:a5:0c:29:dc:00:49:02:be:b6:bd:65:5f:
9f:b6:71:66:1c:55:ff:36:4b:1f:3b:4f:8b:34:f1:
0a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D9:17:27:AB:20:4C:3C:2A:AA:8D:10:C1:50:B4:EF:62:CF:C8:AE
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4AF9BDF4F44B11EAA8185B4FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.162.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d8:52:22:5a:e8:b2:fb:f6:31:7d:a9:fd:3f:27:21:f9:55:
cb:1a:4d:82:0c:ae:79:f8:2a:a6:00:9b:8c:df:0f:94:73:f6:
f4:fa:17:c4:fc:7a:bb:71:12:d2:b1:a5:37:e8:86:2e:48:5f:
2e:d8:e4:67:7b:a6:d8:42:75:51:6e:b6:56:a1:8a:61:7f:47:
e7:ae:3e:ce:64:36:c6:cf:e5:6b:0d:0e:4e:5f:75:dc:d8:19:
a8:53:31:94:dd:67:c2:76:16:ca:8a:88:53:88:fc:f6:dc:de:
17:5b:fa:56:34:bb:dc:e6:b0:ea:a4:bb:f4:51:14:02:ba:6d:
1a:d7:ae:8f:c4:cd:a9:c4:e9:94:86:a8:47:2f:21:07:a6:a3:
95:0f:67:40:a2:cb:92:d5:c4:d3:a0:01:4f:22:41:7b:d9:11:
96:0b:da:5c:24:81:3e:2e:88:10:ea:88:da:e1:20:13:03:90:
a0:0a:a5:07:67:9a:72:55:15:b5:0b:68:16:e8:15:98:6c:e5:
bf:98:e8:6b:24:4b:09:85:20:c3:00:08:1c:94:3b:36:bf:00:
c4:c4:0e:98:9b:ec:fa:e3:14:cb:e2:d6:b0:7a:be:ba:eb:c7:
f9:5f:21:98:fc:bb:ee:fb:c3:78:46:e3:8e:79:28:c2:bc:df:
8a:e4:13:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:52 2024 by rpki-client on console-fra.rpki-client.org