Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/55CF14D839F011EFA2BDE34D762E951A.roa
File: 55CF14D839F011EFA2BDE34D762E951A.roa (raw, json)
Hash identifier: XvNk/15ZI5XoIhd9mDgtW/fKoaEh9HLAC2fpHRKD5hY=
Subject key identifier: 47:83:0E:F4:B7:19:97:8D:74:40:8B:A5:29:D8:3C:F7:58:A8:46:41
Certificate issuer: /CN=F36479AFAF/serialNumber=07BAD6177458B648409D07F59A9910A5D3403D0C
Certificate serial: 072A
Authority key identifier: 07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/55CF14D839F011EFA2BDE34D762E951A.roa
Signing time: Thu 04 Jul 2024 10:29:47 +0000
ROA not before: Thu 04 Jul 2024 10:29:43 +0000
ROA not after: Sun 04 Jul 2027 10:29:43 +0000
asID: 37308
IP address blocks: 197.234.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.mft
rsync://rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1834 (0x72a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36479AFAF/serialNumber=07BAD6177458B648409D07F59A9910A5D3403D0C
Validity
Not Before: Jul 4 10:29:43 2024 GMT
Not After : Jul 4 10:29:43 2027 GMT
Subject: CN=6686799b-b966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:57:78:93:24:a2:5c:5f:f8:38:ec:90:6c:d8:
1a:15:85:f1:3b:c2:5f:c8:a7:b4:9a:61:41:22:1f:
a1:88:b2:ab:3e:0f:99:8e:81:1d:2b:19:1b:56:27:
29:9c:9b:e8:a6:ff:28:97:55:b8:24:e6:b8:eb:2f:
5c:2b:2c:d1:71:e5:60:cb:6d:ef:cb:34:5a:7b:65:
cd:f7:11:53:4f:59:2f:e1:74:9b:5d:0d:69:7f:30:
77:9e:14:e3:15:bc:00:a5:2f:10:d0:2a:96:f7:3d:
23:36:ff:7c:31:a7:9f:b8:6d:76:1e:cd:5f:99:0f:
46:5e:58:a0:be:39:97:9a:a9:4a:71:ab:6c:d6:e5:
12:36:47:07:ac:26:59:86:ea:9b:9b:be:8d:07:00:
4b:3a:ca:9b:4d:f6:4b:54:18:f0:09:b7:35:dd:56:
05:04:30:4f:8b:b9:bb:f5:0e:39:76:08:b8:71:32:
fd:3a:b5:2f:3a:c3:43:84:95:47:56:32:f4:73:92:
99:17:0a:ee:79:1d:90:23:29:c9:51:46:12:b6:43:
d6:1c:0f:fd:1d:fe:68:39:01:d9:79:38:0b:d7:c7:
66:15:bc:6a:7c:73:a9:98:3c:1c:3a:91:1b:eb:59:
f0:5d:08:b7:92:5d:88:80:4e:57:31:66:31:69:3a:
e1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:83:0E:F4:B7:19:97:8D:74:40:8B:A5:29:D8:3C:F7:58:A8:46:41
X509v3 Authority Key Identifier:
keyid:07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/55CF14D839F011EFA2BDE34D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:63:cf:8c:a3:78:99:c8:e4:1d:b7:ed:d0:d1:59:a8:56:dd:
0b:d8:64:83:ef:f2:4e:44:e2:c1:49:d6:c5:d0:c4:c2:95:7d:
73:52:20:3f:8f:04:14:d2:38:26:d6:8a:39:13:e2:25:47:f8:
68:cf:1f:03:77:fc:68:c6:f5:e9:a8:91:c5:e5:ec:80:00:ef:
60:a5:5f:8e:2b:d9:5c:b8:11:df:ed:67:96:24:8e:55:59:a9:
e8:f6:a9:43:55:9d:d5:16:b9:1d:67:c6:5a:0e:b3:33:09:6a:
4f:bb:3d:14:b4:9e:b0:d7:b4:48:fd:68:fa:35:53:0a:85:77:
e0:01:bd:e1:a4:fa:58:ee:c4:98:a7:2a:3a:5d:86:be:c2:fd:
44:1f:ce:11:8e:e7:cb:7f:73:01:87:fe:fc:96:49:25:ed:6a:
97:71:38:d7:d6:fb:7f:4a:9a:9d:95:22:b7:c4:24:97:a0:14:
b3:5d:34:71:eb:46:56:9a:af:cd:66:c7:c5:22:14:eb:24:d7:
73:ad:a8:79:cf:a5:0f:42:17:97:b6:60:c4:78:ab:96:dd:c9:
e1:ce:45:01:36:bc:10:d7:11:79:0b:ec:86:b9:8e:0e:8e:af:
52:06:11:7e:f3:c3:02:de:67:fb:8c:b6:6c:10:e1:74:8c:58:
c1:0d:21:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org