Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/4E58D686CAC611EB9365587EF8AEA228.roa
File: 4E58D686CAC611EB9365587EF8AEA228.roa (raw, json)
Hash identifier: 4ThPqE6/bQdWLeN6MKhRWORK90ZVKeZ9eefEc7xOcFU=
Subject key identifier: A8:FB:98:04:AC:3B:55:6B:40:9A:F6:FE:5F:30:EF:02:F8:35:35:1C
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 072A
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/4E58D686CAC611EB9365587EF8AEA228.roa
Signing time: Fri 11 Jun 2021 15:04:23 +0000
ROA not before: Wed 23 Jun 2021 15:04:20 +0000
ROA not after: Wed 25 Jun 2025 15:04:20 +0000
asID: 11845
IP address blocks: 196.3.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1834 (0x72a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 23 15:04:20 2021 GMT
Not After : Jun 25 15:04:20 2025 GMT
Subject: CN=60c37b77-c1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0b:f3:37:a8:1c:24:a7:5f:21:c8:ec:02:9c:
00:66:c2:93:c6:eb:eb:57:54:29:16:e5:41:5d:97:
dd:ea:66:27:82:fd:7c:7b:09:9a:76:8c:4c:f3:2f:
c0:47:7b:08:39:83:ad:c5:89:43:ae:81:e8:84:a7:
7f:66:c5:d2:4a:3a:94:db:70:0b:60:6f:da:76:91:
70:ec:ee:af:68:7d:4d:49:34:7a:aa:c5:e6:50:a4:
36:eb:b7:4c:73:f2:82:60:a1:25:d6:cd:af:6e:79:
8f:a2:31:9c:d6:3e:92:b2:bf:74:99:d8:d9:5e:6e:
bb:f1:a5:99:97:de:05:02:c3:c9:80:ac:58:8a:3a:
59:57:42:9d:0c:38:33:4b:54:34:a4:af:4b:30:b9:
cf:bf:a2:b9:be:75:70:d7:33:82:d9:31:61:7d:e1:
ef:bf:eb:42:60:e9:d4:c4:8d:b5:a2:1e:74:68:48:
ce:23:05:c2:03:d3:e3:36:88:ce:ee:57:66:47:71:
d6:ff:0a:32:9c:0e:13:9c:c9:11:59:f7:ac:98:33:
a6:fe:f8:55:c4:3e:ad:7d:af:eb:cf:8d:23:cc:f9:
1d:b1:a1:3c:00:f8:2b:32:94:8d:6c:e0:9f:55:e4:
b4:4e:22:a2:3b:bd:73:76:90:c5:dc:e1:b8:f6:b9:
e1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FB:98:04:AC:3B:55:6B:40:9A:F6:FE:5F:30:EF:02:F8:35:35:1C
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/4E58D686CAC611EB9365587EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.164.0/22
Signature Algorithm: sha256WithRSAEncryption
34:e6:98:49:85:41:87:bb:e2:5b:ce:aa:88:5e:97:de:84:cc:
3b:2c:b2:9f:cc:8d:5f:4a:58:80:d4:b9:d7:e5:11:d7:82:63:
a9:2b:e5:0e:34:48:b2:7d:13:bd:cc:a1:af:38:b9:27:69:31:
2c:c9:4c:71:79:31:2e:47:a6:2b:7b:c8:7a:3b:42:d0:63:e5:
57:48:24:f9:03:b7:23:0b:7a:e2:60:56:2a:78:ec:2a:72:c5:
f8:a5:36:6e:e9:08:42:e7:2a:cb:b0:e4:18:5c:72:70:42:13:
fa:ee:75:c2:30:18:bd:7b:8a:03:c0:91:46:e9:15:cd:f5:d5:
da:38:12:b5:9c:c1:f6:93:59:a5:a6:86:9a:ac:53:89:13:f3:
e7:bc:48:d5:1a:53:3d:68:05:ac:46:6b:9b:3c:ff:b2:57:a5:
9f:d6:e5:4c:f1:04:af:7f:97:c4:66:b7:40:42:9c:81:b0:e8:
43:7f:02:17:e5:29:ab:0f:23:32:31:70:ac:c1:ed:5a:0a:19:
a8:26:bb:94:09:ba:35:b3:7f:40:c2:de:10:af:ee:74:58:a4:
69:10:10:c5:12:48:ee:eb:61:05:d3:02:fc:9a:e5:11:07:a8:
76:25:46:36:fc:92:3d:c8:82:55:e1:74:03:83:39:06:3b:04:
97:b4:df:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org