Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
File: A5A4503A93DA11ED8E391690F1222468.roa (raw, json)
Hash identifier: ySjl0UDkIARejGhei4KzMEdBPcVin4Zh1NL5myY+3Kk=
Subject key identifier: A5:7D:F9:AD:7D:8C:82:21:4A:C8:3F:BB:CE:75:04:38:9E:DC:9C:6A
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0C06
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
Signing time: Sat 14 Jan 2023 07:11:21 +0000
ROA not before: Sat 14 Jan 2023 07:11:17 +0000
ROA not after: Thu 31 Jan 2030 07:11:17 +0000
asID: 37177
IP address blocks: 196.216.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3078 (0xc06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Jan 14 07:11:17 2023 GMT
Not After : Jan 31 07:11:17 2030 GMT
Subject: CN=63c25599-32e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:80:41:ac:1f:62:50:6d:23:3e:f1:df:48:e4:
c5:40:54:6d:c8:1b:ab:e4:3e:09:30:7d:c6:4a:a7:
a3:69:de:41:4c:fb:36:55:be:40:69:7a:e5:97:42:
1f:53:15:89:f8:72:02:57:d4:22:82:8f:03:f6:91:
70:be:28:69:5d:b0:a4:21:dd:a8:4c:82:c4:1a:d7:
43:2d:fb:c0:23:83:60:95:ac:0b:1c:76:8b:f4:24:
cc:39:21:df:57:53:b7:f9:15:0c:05:fa:6e:49:62:
4f:85:35:b0:fb:5f:ed:66:a3:5c:3f:77:ce:0f:89:
f0:e7:44:0a:66:e7:2c:db:ea:28:19:8b:4a:fd:ee:
0a:f0:ed:1f:ec:f9:d3:b6:37:ef:a5:47:24:37:99:
e3:7b:38:bb:19:70:97:b7:85:50:aa:20:cd:87:e8:
b6:5e:67:c0:e3:28:80:eb:bd:87:ec:b2:c2:1c:0c:
e7:b1:77:12:f5:75:95:5e:b5:43:32:ea:a0:34:6e:
de:d0:0f:6a:23:2f:ad:60:16:fb:75:7a:19:cc:17:
2b:3a:94:ae:2a:8e:c0:3b:c1:73:a7:37:b0:29:7a:
a4:af:be:d6:d7:19:b7:77:3b:a4:f5:c7:b4:ff:f3:
e2:76:3b:19:78:8a:25:eb:b3:9f:bc:33:ac:25:eb:
74:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7D:F9:AD:7D:8C:82:21:4A:C8:3F:BB:CE:75:04:38:9E:DC:9C:6A
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.168.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:62:82:cd:84:c5:34:21:ab:d9:7e:a6:02:65:3a:bb:e9:57:
6c:38:c0:39:55:2f:23:7d:b6:44:e5:6b:c8:8a:7a:52:94:3a:
bb:53:2c:c5:1d:d4:f9:3c:67:21:25:94:1c:f6:76:04:cc:d6:
4d:13:36:03:94:d0:a2:ad:81:01:05:33:2b:cf:69:7e:06:22:
73:d3:61:55:af:5b:7b:d6:97:6e:4a:9c:c9:af:ec:bc:ff:8c:
af:b9:37:17:c5:8b:b0:7c:27:8e:21:30:f0:30:2a:36:52:7a:
00:da:02:71:10:d9:33:43:ac:ee:07:55:e7:d3:9c:c3:db:aa:
fa:79:e3:60:64:7a:0a:77:21:62:87:5e:99:70:c5:ab:25:ff:
0c:f6:3e:59:2a:5b:f9:ff:38:32:7e:33:37:7a:10:86:86:32:
1f:30:bc:a8:41:eb:1d:84:f9:4d:29:f0:16:f4:79:f5:ff:eb:
47:18:b2:7c:0c:12:fe:47:eb:e0:61:6d:c7:38:3c:4f:17:3e:
0e:47:94:b1:4e:61:7d:5b:9f:c7:14:5b:be:1b:04:0c:bd:d7:
6b:b7:68:2f:05:76:2e:1f:2b:2a:77:07:6b:40:06:33:3c:a9:
4f:29:5a:18:ba:e6:d5:3d:d9:9e:c5:46:bb:bf:bc:89:e7:c9:
41:2d:01:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:27 2024 by rpki-client on console-ams.rpki-client.org