Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/7454200CCAC611EB8443867EF8AEA228.roa
File: 7454200CCAC611EB8443867EF8AEA228.roa (raw, json)
Hash identifier: hzz/vJ+aqnVoQNL7Q9fjlul0hrPt6hbCLM46iL+BL7I=
Subject key identifier: C3:60:60:4A:1A:F4:5B:CF:0C:A7:87:31:F6:6B:FC:5A:6F:7E:ED:53
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 072C
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/7454200CCAC611EB8443867EF8AEA228.roa
Signing time: Fri 11 Jun 2021 15:05:27 +0000
ROA not before: Wed 23 Jun 2021 15:05:22 +0000
ROA not after: Wed 25 Jun 2025 15:05:22 +0000
asID: 11845
IP address blocks: 196.3.168.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1836 (0x72c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 23 15:05:22 2021 GMT
Not After : Jun 25 15:05:22 2025 GMT
Subject: CN=60c37bb7-9140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:e7:87:0f:d2:b0:3e:a7:7f:18:7b:54:6a:
49:2b:d7:72:b9:83:de:73:ee:87:9a:25:16:72:be:
92:d2:bb:37:ca:e4:55:fd:b3:97:e8:3d:d7:3c:0e:
3f:ae:49:3d:9f:cf:d6:2b:be:fd:5b:39:23:5b:ea:
f8:95:66:1f:19:1a:3c:35:78:14:30:43:d4:df:de:
d5:99:35:c1:aa:9d:01:10:c7:9f:68:cf:9d:cb:cc:
49:c2:68:06:17:4b:4a:15:c1:15:17:0a:09:3c:81:
29:20:6a:e7:04:eb:bc:66:25:15:5d:e2:3c:67:cf:
22:1f:27:67:56:ca:98:ba:19:6b:92:c7:86:d8:99:
7a:21:e8:d0:9b:a6:10:eb:9b:f9:08:17:c3:bb:bb:
2b:d0:28:89:07:6c:bf:11:3f:70:a4:e7:63:e3:33:
15:8e:c6:13:35:0e:00:24:3a:53:fa:95:b8:e3:e8:
1b:f8:15:78:a3:72:be:63:ec:f4:0b:18:5d:a8:83:
e1:ef:d1:bb:19:88:e3:83:90:21:e0:9a:1b:a7:cb:
61:c2:c5:dc:60:a4:52:a5:e6:0a:77:6e:2d:75:09:
b7:49:69:28:2e:d8:a1:6b:f4:a0:ac:d8:0d:93:11:
8b:37:13:a5:61:1e:08:0c:cf:2c:dc:59:22:3e:f3:
09:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:60:60:4A:1A:F4:5B:CF:0C:A7:87:31:F6:6B:FC:5A:6F:7E:ED:53
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/7454200CCAC611EB8443867EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.168.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:a2:25:7d:ea:b7:cb:ac:df:dd:70:ba:3b:32:33:79:ac:e9:
e5:9f:43:53:0e:2e:75:13:d6:11:01:a3:bc:e4:8c:cc:cf:15:
d6:8a:01:fc:3b:9e:69:b6:3d:19:dd:15:65:f4:63:a0:f1:9d:
fb:14:b0:5d:67:e3:91:63:8a:a6:a3:87:19:65:44:c8:68:8d:
f7:63:82:bd:85:e0:9a:da:1c:cb:b7:73:8a:05:1a:dd:f4:d6:
3c:3e:da:16:e3:18:4f:77:5e:8b:9f:df:ec:99:f5:13:0d:ae:
9a:14:60:1e:88:cb:c7:af:b4:6c:c3:b2:6e:2c:b4:69:66:6e:
b2:4d:79:ab:3a:e2:b0:fa:1d:6c:ef:1b:83:2c:33:23:f6:de:
a2:0d:50:8b:74:63:71:34:45:ec:b3:09:c0:6a:f9:19:bc:dc:
fc:75:ad:cc:3c:40:5d:b1:a1:06:50:f1:e1:be:cc:a6:2b:07:
95:c8:79:dd:12:35:fa:16:60:d3:88:52:2d:49:d1:8a:1a:dd:
62:3b:c8:3f:d0:88:31:df:a0:45:2c:e2:07:4a:a3:cb:98:be:
bb:6c:8a:92:01:d3:78:6d:d1:77:19:ff:8d:7d:c2:bc:b7:b6:
54:33:70:b6:ee:ba:d1:27:d4:98:b2:2b:f3:09:14:2b:d8:97:
1a:a1:50:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:48:14 2024 by rpki-client on console-fra.rpki-client.org