Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/B44D08AAF38911EA9D714486F8AEA228.roa
File: B44D08AAF38911EA9D714486F8AEA228.roa (raw, json)
Hash identifier: hZIrtY9P7tb4hMc48tiazjGKLFd+lkm7dTg4VIPJgIQ=
Subject key identifier: CE:60:AA:C2:D6:B3:17:BA:D7:67:73:78:C3:9E:A7:43:DD:46:2A:A1
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0266
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/B44D08AAF38911EA9D714486F8AEA228.roa
Signing time: Thu 10 Sep 2020 17:18:55 +0000
ROA not before: Thu 10 Sep 2020 17:18:51 +0000
ROA not after: Tue 03 Sep 2030 17:18:51 +0000
asID: 327687
IP address blocks: 196.43.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 614 (0x266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 10 17:18:51 2020 GMT
Not After : Sep 3 17:18:51 2030 GMT
Subject: CN=5f5a5fff-47ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bc:1f:47:ba:46:2e:30:cc:84:cd:49:6f:ac:
72:e0:78:de:9a:83:ba:72:16:3f:cb:6f:d7:d7:cb:
b3:25:0d:3f:69:0e:87:dc:37:92:af:f2:c4:0f:37:
9f:4a:4c:a1:1d:cf:6e:24:09:c9:cb:68:bc:50:6b:
78:4f:49:31:ad:39:53:64:64:f7:08:60:97:01:b6:
21:54:16:df:e0:1c:c7:50:d1:f9:f5:a6:83:6d:38:
f0:94:50:d1:e6:df:86:81:f7:16:54:17:61:ba:53:
6f:ac:dc:0e:4e:2b:5e:62:c9:b5:81:96:f5:9b:96:
65:fe:c9:af:e3:d1:16:eb:d5:9a:c8:fb:81:55:06:
0f:07:f9:84:a8:40:fc:73:b0:2c:13:a2:29:f7:43:
ae:19:46:63:5d:44:60:50:72:ab:dd:50:b0:51:4f:
c1:b6:6a:75:fe:15:3d:89:78:48:6e:af:9b:84:ae:
4c:6c:4e:5a:a2:a9:ac:4b:58:cc:fc:c6:80:66:ea:
28:7f:48:3a:de:72:ff:05:4b:ec:dd:fb:41:df:98:
35:46:43:99:f6:e4:00:94:65:78:53:c6:ed:ee:1b:
9c:09:7b:82:50:1b:d2:87:3f:aa:33:14:55:65:6c:
5f:9b:23:45:a1:a4:83:49:01:8a:8f:e0:e6:af:02:
70:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:60:AA:C2:D6:B3:17:BA:D7:67:73:78:C3:9E:A7:43:DD:46:2A:A1
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/B44D08AAF38911EA9D714486F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.156.0/24
Signature Algorithm: sha256WithRSAEncryption
52:98:37:85:f2:52:c4:f0:3b:f8:21:39:24:73:14:0b:f7:1e:
32:16:bc:2f:ec:9e:90:23:2c:5c:e0:c4:52:d3:91:c0:25:f0:
2f:a5:c3:39:74:12:35:8b:ee:bc:86:ea:c7:d7:56:46:23:2c:
57:24:ed:fd:db:da:81:8b:74:ec:cd:bb:5d:98:0e:5f:b6:6c:
8a:db:e3:36:2c:f4:e5:01:ab:ae:79:bd:55:db:01:2e:a3:da:
09:84:e2:e3:f2:be:6b:32:10:90:81:cf:db:96:f4:8a:23:78:
cc:c3:cd:60:8b:3c:e8:bb:6b:ca:1e:f9:2b:9a:b9:aa:19:b3:
3f:24:24:70:55:a4:27:c5:8c:66:0f:a5:05:3d:ab:a7:6f:9f:
d0:23:fb:18:e0:67:65:b0:02:d9:63:35:83:e3:18:77:76:b0:
60:a2:ec:c2:11:27:b0:53:7d:7d:d2:37:85:60:41:04:68:c7:
78:5c:ec:5a:5b:e8:a5:b4:53:da:6e:43:10:6d:8d:85:33:1f:
b5:0a:ca:b1:6d:61:3c:b9:87:42:69:a2:ef:df:a1:90:a4:90:
23:dc:2e:3f:fb:b0:d7:1f:44:47:ed:14:e8:b6:1c:a8:2f:2a:
95:f9:3a:be:7e:10:be:01:bb:61:e3:14:3b:c0:e3:78:b7:d9:
84:f6:f6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org