Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/F993BD0ABEB511EEBAC6E754775412E6.roa
File: F993BD0ABEB511EEBAC6E754775412E6.roa (raw, json)
Hash identifier: 3JLT8OIUDMXJEuKA30Z0Hs82Xjia4JOYeuiF60Mo7JY=
Subject key identifier: A5:88:31:EC:FB:2F:48:01:EF:25:42:33:E3:45:15:1D:A8:51:8B:74
Certificate issuer: /CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Certificate serial: 04AE
Authority key identifier: E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/F993BD0ABEB511EEBAC6E754775412E6.roa
Signing time: Mon 29 Jan 2024 14:52:08 +0000
ROA not before: Mon 29 Jan 2024 14:52:05 +0000
ROA not after: Tue 29 Jan 2030 14:52:05 +0000
asID: 37228
IP address blocks: 197.243.84.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.mft
rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1198 (0x4ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Validity
Not Before: Jan 29 14:52:05 2024 GMT
Not After : Jan 29 14:52:05 2030 GMT
Subject: CN=65b7bb98-af21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4e:70:5a:2c:9b:cd:92:d7:f4:bf:7d:90:21:
41:0a:a8:43:48:78:31:c2:b1:af:f5:b5:5f:45:36:
d0:e0:20:cd:dc:99:fe:64:d3:31:51:66:1c:56:93:
ca:cc:dd:9a:0d:c7:e3:58:1c:10:1d:21:9f:d0:1e:
48:87:ab:62:d4:76:52:ca:7f:ba:4d:5f:20:45:9f:
e6:83:9d:55:eb:d2:a5:3b:e3:38:cd:8b:99:33:5b:
b0:62:eb:c2:ae:09:b8:6a:1e:4c:ca:56:d8:d7:84:
04:0a:bd:bd:44:38:c0:b6:c6:5c:05:0f:1a:41:79:
ef:d1:64:f9:06:0e:dd:ba:65:35:e7:a3:c9:ab:2d:
be:5f:22:28:15:bc:af:58:53:ec:a8:3b:e8:1c:73:
e2:98:b8:1d:5e:8a:af:8e:64:01:3f:5b:c5:31:88:
b0:f1:27:50:c2:29:20:1d:c4:9c:7e:3c:6c:e3:ea:
01:ef:cb:28:2c:ba:2d:e3:95:ab:b1:6f:4e:cc:e0:
fc:41:50:59:ca:ef:71:9c:96:66:c7:77:7b:cf:0b:
7d:4f:be:62:f9:e9:1f:83:02:92:8c:7d:57:1d:32:
a2:06:b1:b3:a7:e0:3e:99:42:c8:d3:7f:57:f4:a0:
55:43:c9:3a:47:23:6e:1b:bd:03:2f:6d:4f:ba:78:
10:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:88:31:EC:FB:2F:48:01:EF:25:42:33:E3:45:15:1D:A8:51:8B:74
X509v3 Authority Key Identifier:
keyid:E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/F993BD0ABEB511EEBAC6E754775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.243.84.0/22
Signature Algorithm: sha256WithRSAEncryption
63:eb:6c:79:28:1e:c4:40:79:b0:41:6c:c7:a5:05:05:f1:58:
26:55:9d:25:db:bd:c4:8e:c7:22:ca:74:60:55:63:53:8b:08:
ad:b5:14:90:6f:96:30:76:63:66:71:80:6f:e1:d7:44:f9:21:
58:d1:42:cf:ab:55:23:c2:a3:83:8c:62:d4:c9:59:04:c4:45:
61:b6:2e:66:f7:42:78:63:d4:7b:bd:72:8e:a0:78:d4:33:51:
5e:73:d2:ec:9b:12:ec:a2:8e:fa:41:3d:68:13:37:b0:ef:fd:
ca:42:6f:c1:f4:5c:5d:be:15:17:e4:06:a8:80:d0:73:eb:c8:
20:d8:a3:36:bf:b4:b9:2c:06:1e:67:4d:a0:bc:c1:d9:86:8d:
6a:f0:59:1c:a4:48:c4:67:9a:e0:1c:c4:91:84:61:72:e4:f4:
d2:6a:0a:ce:51:6f:90:7c:8e:5c:09:f0:c4:4d:f6:e5:6a:d5:
bd:c3:be:d7:8a:b9:2c:34:0f:24:96:06:cf:2a:c6:5d:dc:a0:
e7:40:fb:7a:47:0a:e6:33:00:6f:b5:7d:12:cc:1c:04:2b:df:
89:46:88:81:c1:c5:0c:f9:c4:df:99:24:0c:5b:ef:4d:d3:28:
59:9f:bc:09:df:68:23:16:2b:7b:f0:74:76:b7:16:ee:1d:38:
a7:cc:dc:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org