Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/C0A9CF84CAC511EBAD8F747DF8AEA228.roa
File: C0A9CF84CAC511EBAD8F747DF8AEA228.roa (raw, json)
Hash identifier: 32bh8lnMpMvqyS9cax+2bQBhBK15D7Xt6pmKKyWGT1I=
Subject key identifier: 2C:1E:F4:4F:7B:99:CB:DC:D6:69:58:EC:9E:52:B7:49:37:AD:D3:41
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 0724
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/C0A9CF84CAC511EBAD8F747DF8AEA228.roa
Signing time: Fri 11 Jun 2021 15:00:26 +0000
ROA not before: Wed 23 Jun 2021 15:00:21 +0000
ROA not after: Wed 25 Jun 2025 15:00:21 +0000
asID: 11845
IP address blocks: 196.22.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1828 (0x724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 23 15:00:21 2021 GMT
Not After : Jun 25 15:00:21 2025 GMT
Subject: CN=60c37a89-bf89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:64:7a:36:9c:d1:8b:cc:4e:ad:f9:2d:12:eb:
ab:bb:2c:b9:46:bc:48:49:f8:b2:4b:e1:00:df:67:
8b:c5:c6:19:87:4e:de:77:17:fd:e0:8a:67:15:d4:
6a:06:bd:f4:ea:1b:dc:50:df:8e:49:58:b5:2d:f9:
8a:55:11:47:42:d8:61:6c:2d:f0:fa:99:e3:3a:a5:
47:c5:04:e2:65:9a:94:31:52:fc:40:5b:20:27:ef:
c8:22:f3:c9:94:7f:fd:0d:fb:62:e4:84:1f:89:02:
19:06:b9:10:f1:4e:c5:10:99:6f:cb:e4:14:21:42:
9a:29:8d:55:4c:fa:59:f5:11:18:34:2d:75:79:3f:
ea:98:d4:58:16:09:85:63:bd:8d:c4:33:df:77:a7:
02:dc:05:d4:59:1d:b1:80:7d:57:c5:99:23:dd:df:
0c:57:c4:2b:a7:8c:c3:c3:ed:2b:a2:d5:af:6c:5e:
38:69:90:16:33:9b:d2:0f:00:b3:45:e8:51:dc:c1:
d7:63:05:80:60:d8:d1:cd:5a:0a:2d:ca:b9:6d:d2:
cc:4f:41:f3:e7:b1:b3:d3:23:e7:c5:c4:62:30:52:
b3:09:2f:5d:47:35:c5:08:79:eb:22:20:e0:29:a4:
e0:80:31:59:14:e2:4d:05:82:ac:d9:39:9a:e9:d9:
2b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1E:F4:4F:7B:99:CB:DC:D6:69:58:EC:9E:52:B7:49:37:AD:D3:41
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/C0A9CF84CAC511EBAD8F747DF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.22.224.0/20
Signature Algorithm: sha256WithRSAEncryption
55:cd:56:d1:e4:3d:eb:e8:34:8e:72:5c:da:5c:af:3a:8d:3a:
7e:70:d1:da:f7:3c:c0:a5:ef:dd:39:63:3b:30:ea:a1:d6:65:
f0:a9:df:59:35:19:1b:5d:79:40:cb:23:7c:2e:7d:71:22:4c:
fc:01:56:2b:d5:6c:5d:c7:5d:79:ea:4e:b0:4f:6a:ad:a3:bc:
c3:f7:aa:09:c6:42:19:9d:ed:70:ca:5b:ac:2c:e9:62:70:f1:
ea:91:c8:46:31:6e:60:f0:9f:99:a9:57:b6:a0:4f:3d:fc:8f:
fb:92:5f:db:84:cc:b8:d2:dc:a2:ed:ee:c8:72:3f:c0:41:9e:
5a:15:44:f5:e3:dd:0d:7f:96:7a:e7:05:db:fe:ed:67:75:f3:
16:40:11:77:62:5c:8e:82:66:a2:07:74:8e:23:00:85:bd:65:
fe:d2:b7:33:ab:3a:e5:17:6d:5c:57:8f:fe:16:30:27:8d:30:
28:32:3a:0e:ed:96:5d:73:a7:c6:c6:d8:53:2c:09:51:11:7b:
7f:da:be:17:0d:ad:27:4e:a9:74:fb:0b:a7:46:3c:fc:94:5c:
72:a2:9b:6d:c6:d8:43:18:dd:32:af:e6:d4:fc:8c:42:fd:73:
a2:3d:7c:91:87:dc:49:ec:c2:6e:d3:bd:e8:dd:6b:0f:ed:97:
ac:9a:0d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org