Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/10C8FFEEE29F11EBAA580947F8AEA228.roa
File: 10C8FFEEE29F11EBAA580947F8AEA228.roa (raw, json)
Hash identifier: 387HhPDysnyOhc8pmgAp8wGABIBNWQ6h4D9Qi4Iokv0=
Subject key identifier: 54:C1:C5:27:59:E4:57:E6:15:F1:97:10:CD:9D:45:8F:07:14:C3:A6
Certificate issuer: /CN=F3632CFEAF/serialNumber=8017647005B9191420C991B1AE0798B5ACA14D0C
Certificate serial: 9D
Authority key identifier: 80:17:64:70:05:B9:19:14:20:C9:91:B1:AE:07:98:B5:AC:A1:4D:0C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gBdkcAW5GRQgyZGxrgeYtayhTQw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/10C8FFEEE29F11EBAA580947F8AEA228.roa
Signing time: Sun 11 Jul 2021 23:23:58 +0000
ROA not before: Mon 12 Jul 2021 23:23:52 +0000
ROA not after: Wed 31 Dec 2031 23:23:52 +0000
asID: 37025
IP address blocks: 196.6.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/gBdkcAW5GRQgyZGxrgeYtayhTQw.crl
rsync://rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/gBdkcAW5GRQgyZGxrgeYtayhTQw.mft
rsync://rpki.afrinic.net/repository/afrinic/gBdkcAW5GRQgyZGxrgeYtayhTQw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157 (0x9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3632CFEAF/serialNumber=8017647005B9191420C991B1AE0798B5ACA14D0C
Validity
Not Before: Jul 12 23:23:52 2021 GMT
Not After : Dec 31 23:23:52 2031 GMT
Subject: CN=60eb7d8d-0f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4c:5b:1f:2f:fd:be:80:b4:3d:4c:55:2a:aa:
21:c3:22:06:f5:f0:be:43:4c:5a:5b:3a:55:d0:03:
d3:7a:0f:1b:8d:21:ce:9e:fe:e6:db:77:42:2d:2e:
02:45:83:bc:f0:bf:dd:c8:fb:82:b4:91:c1:65:72:
20:7a:d8:37:3f:2a:ad:96:26:04:55:59:ef:68:ee:
4e:f1:2b:27:e0:7d:b3:26:d8:46:98:fb:a3:de:22:
63:68:46:dd:70:eb:ca:8a:a8:91:36:9d:91:b5:f4:
22:97:48:cb:07:b4:56:f4:27:ae:dc:c8:f4:88:5a:
87:98:56:1b:74:ad:43:33:1c:97:eb:9a:9f:1b:e9:
32:44:1c:ba:96:1c:da:bc:7e:fb:ad:dc:a0:f3:22:
69:9f:89:9d:2f:70:cf:e1:b9:40:30:0e:ee:85:ea:
1a:a7:2b:44:74:bc:9f:a7:ce:ca:20:2e:41:1a:44:
29:8e:38:dc:d6:7d:3b:6b:e4:cb:31:d0:a9:48:97:
a1:cd:96:01:18:26:48:8d:5a:c1:ee:db:42:38:28:
d9:0e:48:71:38:97:3b:72:a8:41:d5:e3:c3:74:ef:
d1:73:de:00:bc:ec:12:41:91:dd:c0:d6:f8:3a:7e:
b9:96:71:b3:a4:32:ff:89:0b:bf:b5:2e:17:46:1c:
9e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C1:C5:27:59:E4:57:E6:15:F1:97:10:CD:9D:45:8F:07:14:C3:A6
X509v3 Authority Key Identifier:
keyid:80:17:64:70:05:B9:19:14:20:C9:91:B1:AE:07:98:B5:AC:A1:4D:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/gBdkcAW5GRQgyZGxrgeYtayhTQw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gBdkcAW5GRQgyZGxrgeYtayhTQw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3632CFE/500B2990828511EB80C7EF79F8AEA228/10C8FFEEE29F11EBAA580947F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.6.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b0:ed:fe:de:d0:b4:71:0b:57:b5:57:3b:7c:a1:30:d2:57:
50:5b:dc:9e:fd:8d:d3:e1:62:c0:c7:17:41:90:49:93:5b:9e:
a8:bc:87:32:81:fc:ee:fc:57:fc:23:5e:a0:71:f6:58:84:2e:
15:a3:3f:58:78:39:7a:2b:ee:01:be:d2:53:f9:8c:93:01:4d:
e1:61:6e:d4:65:21:0c:bc:2f:66:35:01:05:8e:36:a6:02:3f:
4b:14:b1:a8:47:30:81:18:58:30:64:a6:fc:2a:51:a9:74:fc:
fb:3a:dd:9d:18:6d:4f:b6:ad:88:e5:98:f8:44:2f:f0:43:4c:
b0:e0:9d:55:8d:07:db:b2:14:10:97:e8:b2:30:8d:3f:d0:9e:
56:d9:8c:04:e4:eb:d9:3b:1d:60:63:25:f8:b4:6c:b1:a3:4a:
53:c8:ba:6f:91:d8:52:9b:11:1e:c8:93:57:2e:3d:8f:5d:d8:
fa:9b:f0:cf:f5:f5:d9:a8:df:d9:64:e2:f5:6e:e9:63:ce:59:
15:15:1a:64:2d:68:24:86:75:7b:2e:11:6f:44:57:ed:77:8f:
2d:f6:0c:41:32:18:50:3a:b1:1b:29:4c:7e:46:8c:a9:b3:6c:
b3:e1:97:04:b8:c7:e3:a0:79:59:23:33:76:89:d4:b5:1d:0a:
50:7b:e0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org