Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/D30F0BB4F51711EA89454923F8AEA228.roa
File: D30F0BB4F51711EA89454923F8AEA228.roa (raw, json)
Hash identifier: Db+USeV9Dx1SL/TQQUZHaaVixWlleC4xw3ASUtb1MMA=
Subject key identifier: 2F:1C:2F:5A:AE:24:2C:A5:73:64:67:2A:AF:65:5C:13:EC:C3:74:BF
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0278
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/D30F0BB4F51711EA89454923F8AEA228.roa
Signing time: Sat 12 Sep 2020 16:48:48 +0000
ROA not before: Sat 12 Sep 2020 16:48:39 +0000
ROA not after: Thu 12 Sep 2030 16:48:39 +0000
asID: 327687
IP address blocks: 196.43.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 632 (0x278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 12 16:48:39 2020 GMT
Not After : Sep 12 16:48:39 2030 GMT
Subject: CN=5f5cfbef-3533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:f2:26:06:63:e4:fc:a4:e1:eb:05:82:10:
81:e2:f4:97:7a:de:87:25:51:06:2a:a4:e4:df:93:
c9:b8:cc:b4:7c:b0:3a:9e:07:00:68:1e:b4:3b:fb:
64:18:74:a2:d1:60:eb:4a:8a:dd:72:62:eb:33:4c:
d1:6f:73:eb:3c:96:fd:21:f3:19:d9:82:b2:b9:4e:
e1:81:e4:48:4e:02:ce:db:72:8e:3c:8b:b5:88:9d:
58:ee:9f:33:2d:c4:4d:37:e5:82:5f:14:ef:2a:ec:
63:f0:b8:6b:1f:11:ca:04:90:dd:67:b8:c1:cf:64:
a1:59:f5:20:86:84:5a:09:01:79:54:47:3d:18:53:
a0:aa:63:4c:0b:17:c7:f6:7d:38:7f:0e:e0:55:a5:
36:cd:0b:e1:22:00:d8:2d:98:98:c4:18:58:8f:55:
77:a3:f8:8a:5a:40:86:1f:d5:f8:2e:d3:ad:45:29:
e6:a4:b2:42:bf:77:e1:67:87:6d:82:5a:4e:9e:fb:
73:51:b3:57:60:4c:81:16:08:a7:1e:32:f5:ed:bd:
1e:c6:1f:b2:de:cb:94:05:06:9d:1c:d7:60:e6:a6:
92:99:ec:78:03:0a:a1:4e:e5:f2:cf:16:67:7b:c0:
5c:13:d7:9c:ad:7d:5b:aa:85:5f:5d:5f:14:f6:c8:
16:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1C:2F:5A:AE:24:2C:A5:73:64:67:2A:AF:65:5C:13:EC:C3:74:BF
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/D30F0BB4F51711EA89454923F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.161.0/24
Signature Algorithm: sha256WithRSAEncryption
86:e8:a0:1f:7d:f2:40:aa:c5:62:1c:c1:3f:ca:5d:56:85:d8:
4f:2d:f5:bf:53:f0:e5:ac:4c:60:49:15:16:15:f2:bb:0d:9d:
88:57:19:79:7f:24:fe:18:55:d3:75:d2:8d:20:ec:0a:11:dc:
7a:4a:9d:93:dc:32:b1:01:c1:1f:4d:ac:4d:67:04:dc:7a:aa:
be:aa:f5:cc:c1:c8:2d:91:7b:0e:5a:04:9d:a9:9c:16:d8:a1:
02:0a:63:c7:2b:5b:6a:26:bf:c1:0f:a7:5a:9c:86:d5:1b:7a:
44:bc:4b:33:95:70:ab:fe:93:5c:28:d5:30:42:4a:20:81:91:
38:59:b3:1d:53:36:6b:42:6a:7d:a8:a4:8e:01:09:2f:10:c9:
8f:19:aa:f7:72:89:66:de:22:13:ba:15:6f:34:fe:e5:8d:62:
28:85:02:8f:09:65:a6:c1:f8:fc:95:91:9d:4f:73:7d:64:72:
95:9a:aa:b6:51:ff:3d:ef:8e:81:0c:c0:10:66:58:38:38:7f:
3c:7a:a8:69:7c:a8:9b:b9:7f:86:ae:74:7a:fd:37:11:5f:64:
1b:a0:26:ce:47:af:92:cf:33:b9:18:cf:82:cf:02:67:06:d7:
92:54:90:d3:47:cf:57:1a:27:c4:24:04:b8:3d:c0:16:88:cf:
72:12:90:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org