Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FBDC85FE280211EFA2470CDD7CDC24C2.roa
File: FBDC85FE280211EFA2470CDD7CDC24C2.roa (raw, json)
Hash identifier: N2LzgJndLmvz3cDIsfFkVtUTemoZkwL0xxlWsp4hwb0=
Subject key identifier: 8A:06:A0:96:B2:52:8A:66:72:81:78:41:ED:F7:5A:46:F7:2D:D9:B9
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 0BAF
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FBDC85FE280211EFA2470CDD7CDC24C2.roa
Signing time: Tue 11 Jun 2024 14:57:55 +0000
ROA not before: Tue 11 Jun 2024 14:57:51 +0000
ROA not after: Tue 30 Jun 2026 14:57:51 +0000
asID: 11845
IP address blocks: 196.3.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2991 (0xbaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 11 14:57:51 2024 GMT
Not After : Jun 30 14:57:51 2026 GMT
Subject: CN=666865f3-a93d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:53:ca:7f:3d:59:2c:70:e6:2d:be:b6:6e:
23:9e:b4:68:0f:e4:3f:b7:82:5f:f4:88:99:b8:09:
24:8b:99:0f:c8:47:90:0e:b2:ef:07:23:91:e5:f3:
a2:bb:2a:b3:b8:52:83:84:6e:aa:78:83:61:90:62:
8d:7b:4e:63:d3:4b:da:90:e3:f1:5d:13:26:c0:76:
5c:81:96:90:d4:89:c2:7b:06:02:1f:85:b6:bd:d5:
3c:26:37:b9:64:66:cc:00:47:43:61:9f:bb:d3:c3:
f6:74:42:9e:62:e8:20:7d:2f:d7:b9:b4:36:48:cb:
3a:d7:82:01:25:55:60:0e:89:3c:34:17:09:d2:1c:
0a:4f:dc:3e:5a:9f:22:2b:f2:f5:3c:cd:cb:05:42:
a7:35:2f:a6:30:26:a2:cb:6e:34:2e:7d:8e:ae:dd:
c1:65:a9:eb:04:03:03:f0:ba:4d:e4:37:03:ad:0d:
f0:87:1b:ba:50:c8:d5:91:0b:7d:eb:dd:c5:64:9f:
a7:68:95:fb:24:b6:9a:35:99:a5:32:15:c8:80:64:
35:a6:fc:43:58:05:a0:78:32:b2:52:62:0e:1e:85:
b7:a0:3f:81:76:dd:80:50:ad:21:97:e8:e5:d8:ac:
c1:37:63:db:79:e0:bd:04:c5:8f:b4:d2:3c:27:0b:
3a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:06:A0:96:B2:52:8A:66:72:81:78:41:ED:F7:5A:46:F7:2D:D9:B9
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FBDC85FE280211EFA2470CDD7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.176.0/22
Signature Algorithm: sha256WithRSAEncryption
46:9c:df:00:d1:a7:66:1f:8f:70:57:65:15:24:a9:94:ae:e8:
e2:34:95:f6:8a:74:ba:13:5c:29:87:c4:83:09:7a:26:b5:1e:
bf:c3:6d:39:8f:80:c0:c7:9b:76:f5:87:7a:bb:ed:86:ed:2c:
93:c9:fe:2c:bd:7f:bb:49:c3:33:da:ca:95:1a:13:80:15:de:
ea:1b:d5:ca:57:be:77:3f:7b:35:4a:c8:c4:a9:dc:60:2a:bb:
90:bb:eb:a8:35:9d:4f:23:05:9e:39:c3:75:1e:f0:f0:42:63:
4f:5c:90:36:93:a9:50:77:14:c6:32:26:8b:cf:3f:43:7e:dc:
b3:4b:77:9c:46:62:8e:79:bc:82:57:5a:8f:fd:f8:ea:e9:85:
5a:f1:82:54:ee:e8:09:36:1c:1f:24:a3:0d:9b:f0:5a:06:37:
46:17:70:a5:94:80:ba:76:1c:3e:d1:f0:f4:68:36:71:19:5d:
6f:be:0e:1b:05:76:8f:2d:fe:4f:d1:5f:77:a2:d0:44:e4:8d:
5a:70:5f:67:fd:74:07:f2:80:0b:bc:47:a4:62:a2:f0:0d:a0:
53:f1:a4:59:32:60:bd:2b:3f:6e:ca:33:f1:9e:ad:cf:d1:e6:
b6:8e:86:9a:31:30:91:22:a1:b7:b0:ff:ae:52:a6:75:21:a7:
10:d6:0b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org