Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/92BEF36CC1A111EEA5FD37B5775412E6.roa
File: 92BEF36CC1A111EEA5FD37B5775412E6.roa (raw, json)
Hash identifier: LFcAs66ABHhnWwCy38ZhY0nwsKr+q/eN7nRZAUK97W8=
Subject key identifier: 07:A0:80:A8:E4:00:6B:46:0D:87:F2:74:3D:B9:4D:C7:DA:CE:ED:38
Certificate issuer: /CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Certificate serial: 013C
Authority key identifier: C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/92BEF36CC1A111EEA5FD37B5775412E6.roa
Signing time: Fri 02 Feb 2024 08:03:39 +0000
ROA not before: Fri 02 Feb 2024 08:03:36 +0000
ROA not after: Thu 02 Feb 2034 08:03:36 +0000
asID: 327762
IP address blocks: 154.119.96.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.mft
rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316 (0x13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Validity
Not Before: Feb 2 08:03:36 2024 GMT
Not After : Feb 2 08:03:36 2034 GMT
Subject: CN=65bca1db-460a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6e:ff:8e:03:4c:32:2e:d1:e0:21:9f:1a:fc:
25:f6:22:e3:55:d8:79:b3:96:29:27:d0:0c:a0:f8:
71:15:d3:7c:ce:e5:2f:10:cf:59:44:c2:44:77:30:
c3:c5:c8:19:3c:85:90:48:b2:46:c5:43:8b:71:16:
1c:d3:1a:ce:e4:f0:98:7d:54:fc:48:bb:1f:b1:1b:
4d:11:72:b6:9f:2b:52:76:59:1f:5a:fe:56:a3:e0:
8e:39:ff:f1:51:4d:46:a2:24:89:4b:4c:1b:1b:7d:
15:58:15:19:a9:74:aa:76:91:b1:70:e8:61:74:4b:
5f:e0:44:c4:3e:bb:4a:47:3e:2b:ec:55:ae:2e:3c:
6f:6e:e6:72:4c:3f:71:89:3f:27:65:07:a5:43:a9:
8a:ca:90:c3:8a:78:0a:e1:a9:30:40:fb:c3:b5:7e:
08:85:8f:95:ef:e2:8d:2c:09:86:3f:f4:69:b6:ac:
25:f1:c2:2e:0e:01:a5:7e:f7:f2:86:30:48:5c:a2:
a9:d3:ca:b1:d1:eb:8f:54:f3:c8:91:b8:a6:84:6c:
86:f1:5f:3c:a8:e9:86:80:2e:44:cc:af:e7:47:d0:
9e:53:e9:64:91:00:b7:ba:b6:66:50:4c:bb:8d:98:
24:11:93:c1:32:b0:a0:f0:29:0b:c1:09:ca:89:5a:
69:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A0:80:A8:E4:00:6B:46:0D:87:F2:74:3D:B9:4D:C7:DA:CE:ED:38
X509v3 Authority Key Identifier:
keyid:C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/92BEF36CC1A111EEA5FD37B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.119.96.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:63:d4:d6:be:47:dd:70:a8:79:55:7c:46:cd:9d:c7:71:81:
39:9c:08:c7:2a:83:87:68:8f:cd:02:97:58:a6:c4:6e:e1:b7:
aa:ee:86:7b:3f:c5:c7:d6:45:d1:dd:b0:b4:ef:17:03:70:16:
bb:50:cd:56:ec:88:14:7e:22:89:8a:fa:5d:a9:3b:10:38:80:
61:f7:56:0d:c1:f4:9d:ef:7c:41:27:70:2b:7a:5e:36:33:c7:
e6:88:82:9a:8d:0a:94:e5:67:07:ce:7d:01:56:3a:13:53:a3:
e4:62:32:89:08:b6:dd:21:ac:cf:7d:d0:a4:77:82:32:54:f6:
c1:ce:4b:e3:e9:3b:bf:45:cd:d5:05:c6:5b:f4:9a:7c:8e:76:
fa:12:41:9c:d5:85:df:96:c2:28:a2:eb:83:97:4c:c5:3a:56:
f6:6e:ff:68:32:97:2d:f4:0b:bb:e6:4b:6e:f3:b4:44:3f:22:
49:76:1c:80:46:16:f9:92:2d:71:d3:c9:ff:d6:f2:93:4b:cf:
07:ea:88:78:6f:d1:d7:6d:35:c3:05:3c:d5:95:2c:7b:63:55:
0f:c9:a8:15:b4:07:a1:6b:6a:df:94:31:ea:a9:ae:c6:2f:a7:
ca:03:3b:96:b1:ed:e3:ca:a2:02:2d:4d:98:9c:7e:b7:e3:d3:
a2:86:8f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:07 2024 by rpki-client on console-fra.rpki-client.org