Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/644B8EEE119511EE8078A5594AD9E6FC.roa
File: 644B8EEE119511EE8078A5594AD9E6FC.roa (raw, json)
Hash identifier: T4yFsirEgAPezWcTrE68bYIjgrlh/OJXHCgL+aSku08=
Subject key identifier: F4:D6:EC:71:9D:D1:B3:66:97:4B:B0:19:DF:81:AE:23:DF:A0:C5:0D
Certificate issuer: /CN=F362C1A2AF/serialNumber=D010E9200ED9EDC9DAF2C3F6DD5573D70561208F
Certificate serial: 0C
Authority key identifier: D0:10:E9:20:0E:D9:ED:C9:DA:F2:C3:F6:DD:55:73:D7:05:61:20:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/644B8EEE119511EE8078A5594AD9E6FC.roa
Signing time: Fri 23 Jun 2023 07:13:03 +0000
ROA not before: Fri 23 Jun 2023 07:12:58 +0000
ROA not after: Sun 30 Jun 2024 07:12:58 +0000
asID: 29465
IP address blocks: 196.43.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.mft
rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C1A2AF/serialNumber=D010E9200ED9EDC9DAF2C3F6DD5573D70561208F
Validity
Not Before: Jun 23 07:12:58 2023 GMT
Not After : Jun 30 07:12:58 2024 GMT
Subject: CN=649545fe-365d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:a9:c1:c4:80:6d:c7:bb:b6:fc:7d:9e:c3:
0a:33:ac:52:de:f5:fd:a6:fa:9c:69:b8:f7:16:cc:
11:23:04:27:3f:b9:98:dd:b9:3f:e9:33:30:86:b7:
86:0c:78:cc:61:2d:e2:32:06:45:91:db:d7:84:22:
81:d1:ad:e6:6a:ac:37:89:15:57:60:a1:58:f8:f1:
71:57:47:dd:12:eb:db:a9:ae:bc:aa:0a:f7:e3:65:
6f:1e:92:19:cc:2d:cf:2a:69:a3:b8:49:b8:98:7f:
68:18:d3:b9:f6:43:44:95:20:ab:f0:d8:7e:df:06:
30:ca:74:e1:f9:78:a3:34:aa:30:e9:45:52:64:84:
e7:05:f4:da:74:9e:c1:31:f9:d9:86:26:60:77:86:
da:bb:20:43:58:65:e5:d0:2e:f3:15:c8:cd:26:d1:
59:cc:d0:f3:86:a3:6f:d7:0f:28:f7:df:47:67:ee:
aa:6a:2a:c2:76:42:4e:02:37:00:52:50:63:44:d1:
7f:c6:97:fa:88:fe:61:23:65:8e:32:63:40:3c:36:
3d:8b:0e:86:d1:a1:bf:a2:7a:87:d7:e6:4b:9a:1a:
57:62:db:4e:ce:66:95:7f:65:73:4b:9f:68:22:1e:
47:76:0a:11:c0:40:7c:c7:e6:e1:4e:19:c4:ec:6c:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D6:EC:71:9D:D1:B3:66:97:4B:B0:19:DF:81:AE:23:DF:A0:C5:0D
X509v3 Authority Key Identifier:
keyid:D0:10:E9:20:0E:D9:ED:C9:DA:F2:C3:F6:DD:55:73:D7:05:61:20:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/644B8EEE119511EE8078A5594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.232.0/24
Signature Algorithm: sha256WithRSAEncryption
73:ba:9a:9b:61:d6:a8:22:0d:16:fb:7b:ea:51:2f:7c:cd:08:
63:b6:fb:17:4e:08:b3:ba:fc:1b:91:78:ba:3b:b9:cf:14:c3:
c6:36:66:30:de:01:40:a3:fb:3f:1a:a7:ab:14:7c:88:e6:ea:
f1:6f:6a:a4:74:e2:f9:6e:60:a8:14:a9:c4:2e:63:2b:82:5f:
f7:d4:4c:d3:83:4e:36:54:ab:8b:f2:5a:2b:09:25:49:fb:e4:
37:56:d4:ba:0d:f1:fc:2e:8e:6e:6e:eb:9e:79:77:a1:95:e2:
cd:f5:dc:b9:77:46:ec:ff:01:3f:c2:70:a0:d0:b6:69:9f:5d:
15:47:7f:22:40:7b:20:26:e4:df:78:ee:fc:52:ef:f3:03:70:
c8:da:77:6b:00:e0:92:ea:8a:2b:ba:f0:95:2c:06:77:a9:5d:
90:bd:d5:df:29:06:35:d8:b9:94:da:7c:c7:f7:32:36:90:9d:
9c:6d:6a:e6:30:25:89:aa:21:91:e6:34:01:d4:f1:f1:0e:1a:
7b:e0:83:4b:c1:32:c0:d9:87:a2:e6:0d:c9:86:71:cd:22:f6:
3b:52:11:b6:cc:4a:ca:21:8d:c5:68:09:51:ea:66:67:35:09:
86:55:b0:b8:ef:ad:71:5c:f9:4b:4d:49:8a:65:a0:34:a6:1f:
8b:0c:2c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:12 2024 by rpki-client on console-ams.rpki-client.org