Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
File: 9197D976A12811EDAC9FF6E5F1222468.roa (raw, json)
Hash identifier: 8I9I8vbvMsUG+4z3fIfY+KU6Y52YPL2nZp2iOUDsfFg=
Subject key identifier: 6D:CD:0C:B9:9C:72:C5:98:07:6D:9D:D5:50:E0:7E:DE:58:FD:05:BC
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0C2E
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
Signing time: Tue 31 Jan 2023 05:31:53 +0000
ROA not before: Tue 31 Jan 2023 05:31:50 +0000
ROA not after: Thu 31 Jan 2030 05:31:50 +0000
asID: 37181
IP address blocks: 196.216.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Jun 2024 00:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3118 (0xc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Jan 31 05:31:50 2023 GMT
Not After : Jan 31 05:31:50 2030 GMT
Subject: CN=63d8a7c9-1ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0d:d2:56:f4:40:54:f6:07:c4:79:39:fc:46:
f1:42:a5:8b:55:fd:1a:7b:e2:29:42:de:96:1f:a0:
c1:5d:ee:85:69:62:83:17:55:dc:7a:98:44:d6:65:
4e:e4:05:86:c0:51:91:15:6b:f1:a8:91:bf:0f:d1:
fe:d5:92:84:08:36:2a:5e:94:01:fb:5e:a3:45:37:
59:51:da:b9:4a:90:93:54:df:74:0d:2c:4b:dc:28:
6d:58:f8:73:f9:36:45:b9:99:f9:cf:06:4a:3b:18:
9a:31:46:e1:28:ce:19:f5:9a:47:dd:60:1b:1f:fa:
87:cb:22:8c:bc:d6:1d:2c:e6:a5:9b:c3:fb:b7:3c:
c0:2e:7e:a8:3b:93:2d:93:4a:b0:70:cd:da:4b:2f:
fb:ab:de:2c:b6:79:4f:42:57:9b:93:3b:14:08:52:
2b:e0:93:ae:d3:df:de:a2:03:d5:27:f8:d8:08:dd:
37:52:6b:37:0c:4a:76:09:08:34:be:19:5c:c8:5e:
72:d2:90:96:a5:5b:fa:8f:7b:9b:d0:4d:40:0f:7d:
4d:34:16:3b:36:85:51:54:a6:d6:e8:92:b0:9e:7d:
81:3b:45:b7:7a:c6:a1:8e:f5:78:33:61:2a:32:35:
dd:f5:4e:2c:7f:07:21:a5:74:09:01:21:5f:b1:bf:
16:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CD:0C:B9:9C:72:C5:98:07:6D:9D:D5:50:E0:7E:DE:58:FD:05:BC
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.169.0/24
Signature Algorithm: sha256WithRSAEncryption
82:5b:7e:36:73:12:0d:b9:44:10:70:4d:3e:58:3d:54:58:fd:
aa:63:51:ad:df:e4:84:39:b0:05:1e:76:c4:23:81:5f:53:1c:
d9:9f:a1:8a:0f:5b:e7:4f:c6:80:77:15:0a:b2:d7:d4:d5:97:
cc:d5:d1:72:9d:f2:19:62:62:7f:d4:c4:ca:e0:52:97:15:e1:
e4:7c:32:4e:eb:1e:8a:3f:6c:27:fa:fb:f9:01:11:a1:b3:4e:
cb:da:63:df:7b:6f:a5:ab:48:f8:3d:15:40:34:42:86:9c:fd:
55:15:ec:ae:9a:e4:ba:52:9b:8a:2f:b0:c7:cd:cc:d7:61:d5:
b4:91:18:b0:d1:0a:46:4f:b1:b7:50:d9:7a:3f:0f:2b:39:c2:
ed:24:33:3f:b8:5d:6a:4f:22:1b:7d:c0:d6:e2:dd:cd:6d:7d:
98:e4:2e:e5:54:cf:a3:64:ea:0f:b7:c2:d3:3c:b5:ef:9b:ac:
58:8a:34:57:9d:c0:de:99:3f:c3:f6:4f:ac:48:99:06:34:b7:
eb:8b:d1:7c:66:dc:a8:33:d8:b0:99:d3:9c:9a:37:e1:81:bc:
73:33:44:5c:09:b3:90:53:c1:d3:b1:e5:04:5f:10:36:4a:3b:
83:3d:e6:48:a8:92:eb:67:4a:ca:ef:4e:59:1c:64:9f:c6:b8:
d2:08:c1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:45:18 2024 by rpki-client on console-fra.rpki-client.org