Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/599396801A5B11EE8DD825714AD9E6FC.roa
File: 599396801A5B11EE8DD825714AD9E6FC.roa (raw, json)
Hash identifier: YM6FGM+mXzOSME7WORSbiiB2Lqa3cKGraE4k2lh4Weg=
Subject key identifier: 95:3A:64:8F:6A:98:FE:4F:82:F8:C6:BA:37:A5:90:1A:3E:9B:2C:EB
Certificate issuer: /CN=F364814FAF/serialNumber=ABF9960C85BCF8938D58337F8CB7C5EB4DC4B3AE
Certificate serial: 0462
Authority key identifier: AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/599396801A5B11EE8DD825714AD9E6FC.roa
Signing time: Tue 04 Jul 2023 11:10:14 +0000
ROA not before: Tue 04 Jul 2023 11:10:11 +0000
ROA not after: Fri 03 Jul 2026 11:10:11 +0000
asID: 36940
IP address blocks: 196.49.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.mft
rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1122 (0x462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364814FAF/serialNumber=ABF9960C85BCF8938D58337F8CB7C5EB4DC4B3AE
Validity
Not Before: Jul 4 11:10:11 2023 GMT
Not After : Jul 3 11:10:11 2026 GMT
Subject: CN=64a3fe16-0755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e7:9e:ab:8b:fe:ef:d2:b6:b3:7d:12:5b:76:
a9:86:07:7c:e2:64:63:13:74:cc:e8:9c:28:3a:13:
54:99:74:c1:2a:c1:b5:65:17:76:a8:1f:a9:e4:81:
68:9d:7d:be:64:1c:00:a2:ab:84:eb:f1:59:fa:4e:
58:7d:31:b5:c5:85:54:c9:25:08:5c:c0:52:5b:d4:
08:20:23:ef:82:3d:d2:44:e6:28:1d:5f:0e:1f:71:
14:71:ba:c5:71:79:cb:32:04:7a:18:74:eb:ef:8d:
6f:98:ba:5b:2f:9b:35:00:f6:b3:a0:89:e5:e1:bc:
b4:21:db:97:f0:57:b5:ba:50:5f:32:b1:7f:67:5c:
41:92:a5:27:3c:1a:20:68:fb:26:79:19:cd:c9:cc:
bc:b2:a4:7a:bd:50:05:4e:2b:60:8c:db:57:70:8c:
a1:b9:34:d0:2e:0d:67:d5:bb:36:ea:31:88:a7:91:
97:1e:e2:01:99:f0:94:da:0b:15:f1:ec:16:a7:3e:
f6:16:b8:95:d5:4a:d5:35:63:52:2b:57:23:7e:ff:
a9:15:32:35:17:73:63:13:dd:e2:4d:f7:59:5a:6b:
e0:85:56:07:34:dc:b2:1c:11:cb:35:b5:29:78:8c:
46:81:b0:53:9e:59:c2:c4:b9:c7:25:a0:4a:1e:b8:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3A:64:8F:6A:98:FE:4F:82:F8:C6:BA:37:A5:90:1A:3E:9B:2C:EB
X509v3 Authority Key Identifier:
keyid:AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/599396801A5B11EE8DD825714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.28.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d4:88:3f:09:f7:57:47:5e:f2:be:86:29:10:6d:aa:0e:30:
e9:36:34:88:9b:d3:23:ee:27:ce:85:df:02:7c:1a:c2:84:f0:
54:3d:3c:40:30:d6:5d:29:d6:d4:3d:11:f5:3a:ba:08:89:9a:
df:bd:31:a3:b8:07:78:8b:d3:09:ce:94:6a:d2:75:f5:37:90:
aa:93:70:31:3a:d7:cf:06:6c:85:25:4e:81:0d:bd:cf:c8:62:
52:3c:08:1c:1f:60:80:e6:a3:c6:1e:b8:93:e0:01:a9:b6:a2:
50:e1:74:84:b2:4c:10:a4:9a:e6:99:2d:42:71:bf:37:7f:8d:
74:f0:75:56:c5:28:98:2a:a4:fd:ad:23:a8:0d:50:4e:71:f4:
1f:1f:cf:37:8a:ce:73:ab:86:62:eb:bb:0e:cf:ba:43:60:d4:
c3:50:50:4c:fb:44:bb:13:77:c1:36:4e:44:28:02:30:39:83:
67:cd:e2:d6:09:06:2f:d6:ad:40:b0:cf:f9:1d:9a:e4:8c:21:
ad:08:35:46:24:f0:8a:10:0f:29:15:7a:92:4b:c7:c1:22:31:
dd:0a:55:2d:d1:e8:f5:4b:cc:98:e9:b9:ed:af:77:7e:a4:df:
29:74:7f:b6:09:e8:24:4a:12:3b:f0:0c:e6:be:e7:1f:0d:60:
c9:f0:22:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:00:52 2024 by rpki-client on console-ams.rpki-client.org