Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/D1FCC5FE59A011EEA880307B4AD9E6FC.roa
File: D1FCC5FE59A011EEA880307B4AD9E6FC.roa (raw, json)
Hash identifier: Q2mhXUzU1pYd8YTyiPmurg7f6XicOP8U3Uc7owMn1Gg=
Subject key identifier: B5:60:1F:86:84:08:99:D2:EC:9F:2E:E1:18:99:7D:70:5F:1D:B1:48
Certificate issuer: /CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Certificate serial: 041E
Authority key identifier: E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/D1FCC5FE59A011EEA880307B4AD9E6FC.roa
Signing time: Fri 22 Sep 2023 23:36:15 +0000
ROA not before: Sat 23 Sep 2023 23:36:11 +0000
ROA not after: Sat 23 Sep 2028 23:36:11 +0000
asID: 37228
IP address blocks: 197.243.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.mft
rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1054 (0x41e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Validity
Not Before: Sep 23 23:36:11 2023 GMT
Not After : Sep 23 23:36:11 2028 GMT
Subject: CN=650e24ef-ab63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:45:fa:52:a4:96:ee:a4:e5:c6:0d:45:92:93:
d6:27:f8:e8:45:17:6b:1f:f4:dc:8f:2a:1a:25:10:
82:56:d1:38:73:cb:88:07:3d:3f:76:42:2d:48:46:
0d:4b:10:39:b9:04:20:cf:e0:45:be:0d:c2:f1:54:
31:3c:9d:af:36:0d:cc:8a:3c:48:52:76:aa:74:04:
8c:f0:3c:2b:e7:6e:fd:02:4c:47:60:30:c3:63:36:
28:ea:9c:af:4b:21:40:0f:f2:1c:cf:ea:46:d4:e2:
20:28:c1:0c:4c:13:39:a1:f0:96:1e:e0:c7:50:6a:
a4:7a:90:c3:98:de:f2:85:55:9a:71:3a:4f:23:75:
68:c4:8a:99:d2:f1:1b:c2:f7:c7:7b:b5:ff:ba:1f:
28:f4:4f:fc:fb:09:35:3e:36:df:01:51:e6:2b:b2:
65:45:d0:49:be:8e:58:08:8f:7f:bd:ab:0a:d4:de:
31:7c:c6:e9:fc:51:5a:63:c8:2d:91:2d:e3:ea:01:
d4:2f:cb:41:32:54:0d:31:03:cf:1d:3e:eb:9c:d0:
c1:9c:5b:03:08:6c:bd:32:a0:6d:7a:a3:1b:be:8a:
d6:b7:5a:d8:cf:c6:9a:f8:e3:ca:99:74:00:da:7f:
62:d0:ed:96:36:db:17:ea:49:a3:8d:cb:69:ce:fe:
9d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:60:1F:86:84:08:99:D2:EC:9F:2E:E1:18:99:7D:70:5F:1D:B1:48
X509v3 Authority Key Identifier:
keyid:E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/D1FCC5FE59A011EEA880307B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.243.55.0/24
Signature Algorithm: sha256WithRSAEncryption
56:31:f4:d3:bf:5c:f1:e3:5f:3d:06:c4:8e:b1:89:8f:4c:d8:
12:13:26:c9:4b:aa:c7:f1:e9:31:bb:84:4a:bc:ae:aa:68:cc:
c7:a3:d5:45:fb:67:bb:79:f7:a0:84:1b:19:79:7b:71:5e:62:
b2:0a:9d:17:bb:b1:8c:28:9f:cb:a3:59:07:ad:7a:be:f1:bc:
28:d9:98:5e:80:2c:3f:3e:73:bd:df:6f:70:39:15:36:5a:9b:
b0:50:94:bb:c5:86:88:11:f9:fc:ea:a9:5d:0f:1c:72:f7:54:
27:7d:7c:2a:76:fa:81:29:6c:0d:76:cc:4f:2a:c1:4a:bb:cd:
8f:ac:43:26:fd:74:f5:7b:d1:fa:19:34:d3:a5:bf:31:d1:20:
eb:7a:ae:ff:96:57:62:6d:37:f1:72:b3:8e:ec:9b:40:1c:0f:
71:82:c8:ca:da:ae:62:3c:40:df:5a:3f:1b:63:a5:ff:e3:29:
db:c6:b8:58:e9:14:f2:dd:50:88:45:7d:72:65:c3:89:3f:2d:
3b:27:c3:c4:29:2b:7c:58:26:ea:46:7c:d8:78:38:49:ec:b2:
fb:0b:f4:c3:47:ec:f1:89:11:51:2a:03:81:e6:d5:dc:ba:68:
5b:0e:31:7b:47:9f:bc:23:66:75:ef:50:3c:eb:2f:d2:e0:dd:
03:b2:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org