Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/E69B6ACE0C3911EE8C0C93174AD9E6FC.roa
File: E69B6ACE0C3911EE8C0C93174AD9E6FC.roa (raw, json)
Hash identifier: 4W3ghnO+13hUtmc6HJ4HIlRjYwSTbCaXt3cpEokwGEc=
Subject key identifier: 8B:52:F9:FA:2E:30:42:91:4D:D6:A1:D7:52:D3:EF:9E:48:7A:07:B1
Certificate issuer: /CN=F364814FAF/serialNumber=ABF9960C85BCF8938D58337F8CB7C5EB4DC4B3AE
Certificate serial: 044A
Authority key identifier: AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/E69B6ACE0C3911EE8C0C93174AD9E6FC.roa
Signing time: Fri 16 Jun 2023 11:35:32 +0000
ROA not before: Fri 16 Jun 2023 11:35:27 +0000
ROA not after: Sun 16 Jun 2024 11:35:27 +0000
asID: 36940
IP address blocks: 196.49.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.mft
rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1098 (0x44a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364814FAF/serialNumber=ABF9960C85BCF8938D58337F8CB7C5EB4DC4B3AE
Validity
Not Before: Jun 16 11:35:27 2023 GMT
Not After : Jun 16 11:35:27 2024 GMT
Subject: CN=648c4904-5c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:51:b7:bf:c9:4a:58:4f:43:77:33:6b:ff:20:
d2:a7:bb:06:bb:66:87:39:7c:a5:d1:7e:cc:91:4c:
af:b1:26:91:41:9d:81:8a:56:a1:71:e4:37:0d:54:
eb:53:89:a6:13:f1:ab:5f:e2:7f:ec:2d:da:81:94:
fc:65:0d:95:fd:1c:25:90:49:b4:63:63:ef:91:a5:
42:77:62:b4:fa:32:89:c8:1f:c7:35:96:c9:5b:80:
0e:d8:38:23:76:d2:de:cd:7a:a7:ae:e3:49:fd:d9:
1d:54:40:63:19:34:d0:37:ed:b9:bf:f1:20:2a:f2:
3c:1c:74:1f:dc:1a:75:76:62:ef:3d:42:80:02:72:
1c:f2:1d:d2:b8:6c:90:87:26:30:35:a0:dd:fc:8a:
c3:30:7e:4a:2f:8e:c2:6f:05:a6:f8:39:49:13:bd:
6c:2b:a2:5a:05:a4:99:52:53:a7:d2:06:6f:2b:22:
1b:57:39:79:0f:65:4b:24:03:68:39:4e:de:4a:39:
4f:b4:fe:1c:a7:ec:58:f2:28:16:cd:63:e7:bb:44:
cd:c1:57:49:56:56:27:49:82:e0:12:8c:be:0a:5b:
b2:e9:7d:77:d6:98:01:2e:c4:f5:53:de:03:e7:0c:
11:b1:8a:76:65:7f:3a:47:f8:5f:47:62:c2:68:d7:
dc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:52:F9:FA:2E:30:42:91:4D:D6:A1:D7:52:D3:EF:9E:48:7A:07:B1
X509v3 Authority Key Identifier:
keyid:AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/E69B6ACE0C3911EE8C0C93174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.32.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b7:56:9d:35:50:81:04:38:6f:d9:08:8a:5e:f1:62:d6:d1:
6c:1c:8f:d7:54:61:5c:f1:7e:50:97:35:0f:40:97:4d:f7:9b:
85:bd:ff:80:74:d4:48:bb:dc:75:b6:02:94:21:28:b4:58:82:
3a:4e:02:fd:21:7e:73:5b:7e:37:e7:12:f6:ee:53:4b:03:dc:
7d:b3:ad:bd:28:02:4f:ba:52:5f:b9:c6:71:f2:6e:c0:9e:4c:
b7:13:9b:69:60:5c:3a:1f:04:34:8a:90:bd:97:df:85:1f:74:
9a:e1:32:09:da:8d:c3:55:93:b0:05:70:af:5d:21:04:33:1c:
49:c2:83:a7:73:30:0b:c2:da:67:cc:32:28:97:13:56:73:25:
5d:d3:71:62:1d:c3:55:cd:05:48:83:03:7f:28:fb:52:91:8e:
80:65:db:b4:fb:f7:cc:ac:fc:6c:f6:e9:2a:b6:b0:0a:ff:2c:
10:96:0f:db:04:c8:bb:21:d2:78:4d:c5:61:db:65:85:ac:8e:
34:76:bd:d6:93:79:58:e7:cb:c4:1d:14:9a:a0:6b:3b:28:12:
b2:49:6f:48:7e:fc:39:93:b3:15:d7:b0:6b:dd:4d:49:2e:59:
c6:5e:b6:92:5f:57:83:d2:c5:55:52:f4:b2:59:1b:c2:da:51:
e1:34:36:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:00:52 2024 by rpki-client on console-ams.rpki-client.org