Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0C8F23AAD00B11EB81D5EE07F8AEA228.roa
File: 0C8F23AAD00B11EB81D5EE07F8AEA228.roa (raw, json)
Hash identifier: jPkO7ExSp17mzBRpa2Il9WdyzpVikW5rrHroeK/bJGI=
Subject key identifier: 33:A2:E0:63:DC:EC:3F:08:EA:E6:98:2E:42:F5:57:CA:14:8F:E1:0F
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 087B
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0C8F23AAD00B11EB81D5EE07F8AEA228.roa
Signing time: Fri 18 Jun 2021 07:59:04 +0000
ROA not before: Fri 18 Jun 2021 07:58:57 +0000
ROA not after: Wed 18 Jun 2025 07:58:57 +0000
asID: 36874
IP address blocks: 196.41.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2171 (0x87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Jun 18 07:58:57 2021 GMT
Not After : Jun 18 07:58:57 2025 GMT
Subject: CN=60cc5248-7ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:69:b2:9f:76:ba:2f:61:de:9c:12:d5:4f:57:
de:40:2b:0b:f1:15:de:26:b7:24:33:7a:13:8e:c9:
c6:99:47:3e:03:3e:c8:d2:55:80:bc:23:c5:67:89:
15:fc:01:45:4e:0d:ee:9e:cb:7a:bf:22:46:42:de:
b6:fb:dd:49:57:af:72:15:9d:f9:fc:fe:e0:9c:e5:
00:5d:42:70:a0:8c:19:c8:35:b8:04:93:71:e7:14:
da:5a:fe:dd:b0:e3:3b:e2:71:d8:0c:0a:9c:9f:da:
a6:7d:15:f1:9a:2b:80:7c:a3:d3:e5:a3:4c:30:82:
d1:48:73:0e:f2:80:20:d9:b4:5d:32:60:ef:34:f2:
ec:cb:9a:c0:16:24:9b:52:36:3d:ba:39:45:5d:44:
4d:6a:d3:dc:c8:a9:ff:be:08:f6:9d:20:14:af:bd:
1d:35:bb:fe:c2:41:fc:d5:22:5b:75:ef:71:02:71:
58:4a:cc:27:40:49:f3:a7:ad:48:65:78:c9:47:54:
8c:1e:17:8d:22:4c:11:68:7d:76:dd:ef:c0:b8:5c:
82:ec:00:b5:49:39:ca:99:4e:c9:c9:84:f8:5b:ce:
cb:b1:51:eb:e7:bd:cf:20:b4:d0:5e:2f:f8:c2:4c:
56:87:c1:aa:12:09:f3:cc:e1:04:e2:36:37:20:44:
ba:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A2:E0:63:DC:EC:3F:08:EA:E6:98:2E:42:F5:57:CA:14:8F:E1:0F
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0C8F23AAD00B11EB81D5EE07F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.41.96.0/19
Signature Algorithm: sha256WithRSAEncryption
35:ff:ed:14:6d:5d:a3:d6:01:b4:6d:e9:de:45:0e:a9:67:ae:
92:d8:02:cd:38:ed:7e:42:eb:7d:e8:63:39:66:ba:63:72:49:
5f:6c:c7:d8:6c:65:49:b5:20:2b:e8:6d:5d:a3:1d:b4:0d:dc:
3a:c2:e6:c5:28:a8:df:cf:b3:14:89:76:b7:66:07:ea:05:72:
69:dd:16:a2:50:bf:24:91:8e:25:6c:34:18:54:0d:2a:54:e0:
26:6e:68:82:51:7a:40:53:35:4f:95:48:ac:e2:ce:2b:94:dc:
a0:43:57:41:ff:a2:c2:a4:4e:ea:67:36:78:84:01:5a:5c:65:
21:79:07:0c:36:df:f3:28:7d:60:75:ea:48:e3:66:7e:44:9e:
cd:5c:5a:c8:b4:3d:57:05:58:1e:c7:76:7e:83:a5:ca:c7:41:
0d:d9:c1:00:19:3c:01:e8:e4:58:c4:fb:4b:f1:3a:f5:0c:13:
ba:db:f3:17:ff:96:17:74:e4:e8:71:3a:59:6d:be:1c:2a:97:
b5:bd:3d:26:10:56:ef:6d:9b:80:5d:6f:44:86:0a:9e:71:eb:
5c:18:6f:8e:1b:80:e9:cf:0a:98:a3:43:27:7b:63:f9:3b:3f:
f2:77:41:1a:41:46:f9:70:1b:ce:29:14:23:9b:e3:b9:4e:74:
46:16:6b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:55:54 2024 by rpki-client on console-ams.rpki-client.org