Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/20752E50271A11EFB295582D7DDC24C2.roa
File: 20752E50271A11EFB295582D7DDC24C2.roa (raw, json)
Hash identifier: vJwAgE4GViNLt6DStSXnSiz5VQ5wiyhctReG5qMVaz0=
Subject key identifier: D4:00:CD:BE:56:F8:18:F4:D2:CE:85:3C:F7:D4:47:21:CA:F4:96:31
Certificate issuer: /CN=F3639B67AF/serialNumber=214E53FD6015DBBEF0453DEF440772FFB014DD8A
Certificate serial: 017E
Authority key identifier: 21:4E:53:FD:60:15:DB:BE:F0:45:3D:EF:44:07:72:FF:B0:14:DD:8A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/IU5T_WAV277wRT3vRAdy_7AU3Yo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/20752E50271A11EFB295582D7DDC24C2.roa
Signing time: Mon 10 Jun 2024 11:11:04 +0000
ROA not before: Mon 10 Jun 2024 11:11:01 +0000
ROA not after: Tue 31 Dec 2030 11:11:01 +0000
asID: 327935
IP address blocks: 196.216.96.0/19 maxlen: 24
2c0f:f500::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/IU5T_WAV277wRT3vRAdy_7AU3Yo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/IU5T_WAV277wRT3vRAdy_7AU3Yo.mft
rsync://rpki.afrinic.net/repository/afrinic/IU5T_WAV277wRT3vRAdy_7AU3Yo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382 (0x17e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3639B67AF/serialNumber=214E53FD6015DBBEF0453DEF440772FFB014DD8A
Validity
Not Before: Jun 10 11:11:01 2024 GMT
Not After : Dec 31 11:11:01 2030 GMT
Subject: CN=6666df48-be87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:59:4d:8e:61:03:83:2a:9d:51:6a:19:31:4d:
1f:fd:9e:e0:15:1b:e2:c4:a8:53:a1:8b:d9:3a:b9:
87:24:de:2b:c0:82:56:81:1b:7c:36:87:c9:9a:8b:
a8:4e:16:83:27:60:1d:a8:8e:62:19:20:4c:3a:b8:
b0:53:28:fb:49:c1:83:a7:8a:55:26:80:ac:68:bf:
34:d7:fc:9b:e2:47:e2:67:9d:bb:5d:b3:c5:8d:19:
30:f5:34:90:a1:7b:2e:2c:6f:fb:2f:b7:64:e7:58:
6d:9d:be:24:39:b9:0f:6b:ff:32:91:9f:05:1d:f7:
8d:d3:e4:6e:1e:ba:8e:3b:03:05:ed:04:c9:c2:8e:
ec:21:db:a2:24:6a:8c:a4:57:3f:6f:c7:53:f3:70:
11:ff:a3:b5:fa:bd:11:43:59:21:c6:85:4b:a8:89:
c9:c1:4d:c6:29:c9:ed:1d:60:35:b1:7a:35:0c:54:
50:62:b4:d2:fb:40:48:8d:24:34:43:ea:0f:36:2e:
f5:15:2f:f2:11:19:33:71:6c:6c:4d:8c:7a:f4:e8:
a0:61:a0:ee:dd:85:e9:76:11:ca:20:63:6b:b0:e0:
ce:d3:24:00:ee:b2:b7:d4:30:11:ee:fa:83:21:63:
9e:46:2c:c8:6a:cb:82:2c:ad:3f:42:18:a0:cb:41:
17:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:00:CD:BE:56:F8:18:F4:D2:CE:85:3C:F7:D4:47:21:CA:F4:96:31
X509v3 Authority Key Identifier:
keyid:21:4E:53:FD:60:15:DB:BE:F0:45:3D:EF:44:07:72:FF:B0:14:DD:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/IU5T_WAV277wRT3vRAdy_7AU3Yo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/IU5T_WAV277wRT3vRAdy_7AU3Yo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3639B67/79267BC0095D11EEAEC04B594AD9E6FC/20752E50271A11EFB295582D7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.96.0/19
IPv6:
2c0f:f500::/32
Signature Algorithm: sha256WithRSAEncryption
35:26:1b:ee:6e:76:1c:76:2f:03:1f:2a:b9:b6:a3:98:c7:f3:
53:f5:9f:f7:dd:35:27:d2:25:2d:49:51:6b:e3:44:d1:fc:8e:
80:d1:ba:76:cc:af:19:62:7f:54:4a:7a:1b:1c:8e:44:f0:5e:
18:2c:8c:80:2f:3e:2b:db:8c:96:69:6e:88:1f:ba:02:89:75:
a6:99:ae:9c:5b:1b:0a:be:f4:11:c4:66:7a:a8:ab:58:a7:a3:
7f:89:35:df:d7:9e:5e:a4:00:ec:b5:83:3f:99:cd:d2:a4:15:
cf:69:35:bf:31:8e:d8:91:bf:9e:77:87:04:02:1d:9d:64:14:
f2:46:d9:41:41:45:d0:8d:2c:cc:72:9e:9b:1b:68:a0:5a:9d:
3e:02:b9:ef:57:2c:86:96:fb:b7:54:06:85:c2:d4:08:f9:8a:
3b:91:83:01:28:21:51:18:ec:da:42:27:48:91:04:75:33:18:
96:50:6b:d9:5a:ff:67:8b:d2:26:ea:d8:25:aa:54:30:52:33:
85:80:0c:23:cd:53:39:b8:06:a1:c7:a5:34:92:ed:0a:d1:b9:
87:53:68:09:af:de:35:f4:8f:fa:96:af:95:db:14:e5:63:7b:
0c:a8:56:b4:65:0e:f5:55:d7:89:07:4f:5d:5d:92:49:c0:25:
38:c8:0f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org