Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/D4594816119511EEA84C325B4AD9E6FC.roa
File: D4594816119511EEA84C325B4AD9E6FC.roa (raw, json)
Hash identifier: BLry35+hsEeVBQZ3OaPE4kFsmkOv+L9Hx1bQevCOfmQ=
Subject key identifier: AD:F8:A9:C4:AA:C3:FB:3F:76:40:C7:D8:D7:19:C4:19:09:AD:84:4A
Certificate issuer: /CN=F362C1A2AF/serialNumber=D010E9200ED9EDC9DAF2C3F6DD5573D70561208F
Certificate serial: 0E
Authority key identifier: D0:10:E9:20:0E:D9:ED:C9:DA:F2:C3:F6:DD:55:73:D7:05:61:20:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/D4594816119511EEA84C325B4AD9E6FC.roa
Signing time: Fri 23 Jun 2023 07:16:11 +0000
ROA not before: Fri 23 Jun 2023 07:16:07 +0000
ROA not after: Sun 30 Jun 2024 07:16:07 +0000
asID: 37088
IP address blocks: 196.43.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.mft
rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C1A2AF/serialNumber=D010E9200ED9EDC9DAF2C3F6DD5573D70561208F
Validity
Not Before: Jun 23 07:16:07 2023 GMT
Not After : Jun 30 07:16:07 2024 GMT
Subject: CN=649546ba-93e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:36:55:b6:a5:b9:74:33:af:d9:ec:b9:00:1a:
e7:2d:07:19:f2:7a:83:f6:08:bd:fc:fa:ce:38:16:
70:d2:9f:98:43:1a:60:ce:dd:fb:66:9a:25:f0:10:
32:ef:7e:a3:9c:98:04:d5:40:78:51:21:6a:a5:bf:
49:f7:09:92:1e:60:85:f9:1a:8c:33:58:76:13:ed:
e9:43:bb:40:3e:28:49:49:67:3b:d8:ec:88:c4:3f:
2a:e4:24:82:ad:4b:f3:87:92:2a:d1:6b:b6:48:2b:
56:19:53:44:c3:20:d2:f9:65:c8:45:57:07:60:98:
35:c2:6b:ba:1a:a1:ad:47:11:cb:6a:24:29:7f:ab:
a8:a5:78:7e:5f:6c:23:aa:b5:35:43:f0:fc:50:b1:
3a:27:9f:3b:49:f5:7a:8b:b4:f7:60:cc:3b:17:be:
6e:95:12:59:27:f8:0d:4e:47:3e:50:db:b2:98:8c:
82:25:37:c6:e9:10:b2:2c:8e:56:4c:ce:58:f6:7d:
ac:06:d6:ed:82:35:85:43:b7:0f:9f:2e:8f:57:c9:
84:c0:34:19:bb:6b:cb:60:03:c2:7c:0c:34:a0:85:
19:01:81:d1:30:56:7b:a6:ab:16:f4:67:a5:2f:43:
84:18:4a:be:6e:58:34:1a:5c:16:5d:92:25:e7:e6:
c3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F8:A9:C4:AA:C3:FB:3F:76:40:C7:D8:D7:19:C4:19:09:AD:84:4A
X509v3 Authority Key Identifier:
keyid:D0:10:E9:20:0E:D9:ED:C9:DA:F2:C3:F6:DD:55:73:D7:05:61:20:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/0BDpIA7Z7cna8sP23VVz1wVhII8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0BDpIA7Z7cna8sP23VVz1wVhII8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C1A2/616DF6760B5A11EEB60E47724AD9E6FC/D4594816119511EEA84C325B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.232.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:7a:9d:dc:e7:b3:c7:c9:d2:be:e2:83:9b:39:95:bd:eb:64:
1d:ad:e7:7c:cb:8a:a8:aa:ee:82:f6:26:fb:df:72:30:3b:18:
49:b0:da:7f:c1:5f:dc:6d:b8:7d:b0:d3:e4:20:74:ea:c7:bf:
56:89:cb:cf:8d:9a:87:0f:e3:fc:60:4e:d7:53:53:7f:ec:ff:
7e:33:57:38:af:3f:ac:fd:7e:00:d7:cc:f9:b6:19:b6:9f:56:
90:bc:c2:85:c9:f8:40:82:5a:1d:70:97:36:c8:60:70:41:82:
3e:92:6e:d1:b2:1c:ca:bd:b8:19:03:c3:38:a1:23:6c:dc:2c:
70:dd:81:72:3b:be:1e:09:a0:87:bb:a6:57:0a:c6:23:90:c0:
1e:38:f2:d4:7f:d6:1d:e8:45:7c:bd:a5:07:5a:b8:d1:f5:87:
48:d8:7e:e1:68:7b:09:28:34:b7:eb:c3:ec:58:61:5e:39:9d:
d1:4d:79:00:4c:ee:f5:bc:73:d5:69:9c:17:dc:3f:37:2b:85:
82:67:b2:ca:ba:31:9c:d3:43:05:a5:a4:3a:9c:81:c2:40:26:
32:34:bb:f4:c8:91:d6:8c:3b:91:b4:1c:8b:a1:43:30:c8:6b:
47:a9:b6:41:ae:99:fd:ad:92:43:9a:86:18:09:fb:3e:6c:98:
49:10:56:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:07:12 2024 by rpki-client on console-ams.rpki-client.org