Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/4B895D029C4A11ED92DD6391F1222468.roa
File: 4B895D029C4A11ED92DD6391F1222468.roa (raw, json)
Hash identifier: t7DaQaR3enjtRN0uSJY4srO10gjyh31pSvSnSnckrls=
Subject key identifier: D2:57:73:6E:5B:E7:E7:98:AB:4E:8F:54:39:98:B0:94:1B:39:EC:AE
Certificate issuer: /CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Certificate serial: 02
Authority key identifier: B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/4B895D029C4A11ED92DD6391F1222468.roa
Signing time: Wed 25 Jan 2023 00:50:43 +0000
ROA not before: Thu 26 Jan 2023 00:00:37 +0000
ROA not after: Thu 01 Dec 2033 00:00:37 +0000
asID: 328253
IP address blocks: 196.251.156.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.mft
rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Validity
Not Before: Jan 26 00:00:37 2023 GMT
Not After : Dec 1 00:00:37 2033 GMT
Subject: CN=63d07ce3-606d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d8:cd:fc:1f:5e:37:a9:40:fd:2d:d8:80:e7:
54:96:9c:3a:d6:00:44:2a:e2:0f:ed:4c:2a:81:3c:
49:7b:b6:6c:af:26:31:38:27:75:df:c6:29:1c:e9:
fe:af:ea:8a:46:05:20:ca:48:28:5a:1f:02:c1:06:
1f:33:39:91:ba:b1:52:0f:dc:25:be:e0:f0:62:0e:
e0:3d:9f:f5:70:01:02:1d:07:70:7c:d3:53:5b:9a:
7b:04:8b:a4:4c:a9:0e:e5:04:98:df:c4:fe:bd:7f:
fc:33:ff:d6:dd:9f:0f:9e:77:99:68:b1:43:59:c5:
6b:ee:1f:64:49:c2:8f:83:39:bd:60:c6:e8:ed:1b:
e4:24:ce:f8:52:7c:2f:d6:9b:df:a3:70:8d:4c:20:
a6:44:fa:6c:df:d9:e3:c4:37:51:57:2d:ce:49:37:
ea:e8:62:4a:63:f7:22:4b:44:fc:3b:a7:9e:f7:ee:
a9:b8:a0:d2:ed:7a:9c:95:c6:12:3c:b0:30:83:b3:
e6:b0:19:a8:03:02:de:6f:35:25:ee:ba:5f:21:ba:
dc:86:1f:81:34:6b:bf:64:7b:4d:29:e1:de:b2:66:
9b:18:0b:b2:fa:74:cf:a6:0e:03:3b:ad:b9:08:d0:
d8:d8:8a:84:44:8b:fe:37:19:90:9c:34:66:6f:4b:
e2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:57:73:6E:5B:E7:E7:98:AB:4E:8F:54:39:98:B0:94:1B:39:EC:AE
X509v3 Authority Key Identifier:
keyid:B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/4B895D029C4A11ED92DD6391F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.156.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:53:62:92:40:38:a6:18:25:15:7b:0d:e5:71:3b:2f:1c:b9:
be:61:bd:83:07:d8:b3:1e:46:37:5f:3b:a8:08:41:e9:61:67:
eb:65:ac:76:a9:56:ef:14:ea:02:11:28:a7:d6:7b:8e:12:e6:
bc:c9:11:86:d5:ff:65:6c:52:0d:f7:d9:28:e4:94:9c:6f:76:
3b:bc:8c:19:28:c3:fd:04:7b:80:9b:65:03:92:7a:64:20:02:
28:39:67:f6:1e:5e:a0:b7:59:1b:de:6c:fa:75:e5:57:67:32:
57:7b:0b:39:f8:b0:d0:e8:49:3a:f0:92:f0:11:65:08:c9:1d:
ce:c9:06:c4:cd:e1:e4:79:e2:f4:89:f6:22:a7:db:a8:36:e7:
f3:3c:25:29:8d:8c:e2:88:95:2d:96:c0:bc:43:8e:73:4d:d7:
2e:5a:11:0c:ca:f9:66:c2:45:59:5b:dc:c6:3c:6a:b6:63:71:
a5:2a:a3:4e:9a:9f:de:60:a3:5b:ff:d0:b5:65:c5:12:64:fc:
68:7c:dd:d8:f9:21:a4:ca:ae:96:52:e1:c4:0c:15:1e:95:00:
4a:f6:b7:c1:1c:4f:78:0f:d2:d4:f0:a8:91:a5:71:15:68:7e:
c7:7e:2f:6a:37:32:f1:04:06:07:48:4c:20:b2:0d:b5:86:d1:
c8:04:a4:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 03:12:54 2024 by rpki-client on console-fra.rpki-client.org