Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/1516EA16764311EB901D143DF8AEA228.roa
File: 1516EA16764311EB901D143DF8AEA228.roa (raw, json)
Hash identifier: NKQ3jb8Jf2A8DHKj6MSRen4+1RRngARTbxS7x9DY4og=
Subject key identifier: 28:7E:47:AD:3B:E8:41:87:38:96:C5:9A:F0:7B:D8:4D:E4:4D:49:AB
Certificate issuer: /CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Certificate serial: 14
Authority key identifier: A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/1516EA16764311EB901D143DF8AEA228.roa
Signing time: Wed 24 Feb 2021 01:53:26 +0000
ROA not before: Wed 24 Feb 2021 01:53:20 +0000
ROA not after: Sun 24 Feb 2030 01:53:20 +0000
asID: 205897
IP address blocks: 154.70.200.0/24 maxlen: 24
154.70.202.0/24 maxlen: 24
154.70.203.0/24 maxlen: 24
154.70.204.0/24 maxlen: 24
154.70.205.0/24 maxlen: 24
154.70.206.0/24 maxlen: 24
154.70.207.0/24 maxlen: 24
2c0f:5400::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.mft
rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Validity
Not Before: Feb 24 01:53:20 2021 GMT
Not After : Feb 24 01:53:20 2030 GMT
Subject: CN=6035b195-fc26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:31:86:5e:39:88:95:b0:10:ae:ce:6f:b9:62:
8c:38:7b:30:bb:35:de:a1:96:fc:57:fb:0e:41:15:
33:85:ed:b6:b4:8c:49:26:48:67:c5:56:41:3f:ad:
3a:d3:d2:56:3a:fd:9f:35:6e:7e:6e:60:b9:5f:63:
b5:50:56:72:a2:38:df:da:99:da:d0:2e:75:dd:9d:
0f:8d:b0:5d:4c:a1:39:9d:3e:50:22:3f:2c:89:04:
34:d5:38:5d:01:dc:84:6f:84:48:1b:82:79:fe:be:
25:e3:3e:40:6d:d2:ff:8a:54:f1:42:28:df:58:92:
c6:0d:64:ae:5c:02:e4:17:42:6e:83:06:91:d6:c5:
81:af:b6:e6:a3:a7:3c:65:21:01:ca:0b:e5:cb:68:
27:11:9c:fa:79:41:be:bc:4c:03:23:02:1a:98:eb:
70:73:d6:50:97:83:43:d8:e0:32:84:d1:91:ff:63:
df:78:51:d9:3c:bd:11:b4:6d:1e:50:f7:02:b9:5e:
7f:4e:b4:d6:d7:02:b9:27:02:67:b6:f4:d9:6a:69:
82:52:41:e4:ff:bc:c3:17:73:c8:23:34:b1:bf:ea:
68:ed:e1:66:e7:aa:46:54:d3:df:5e:36:be:4a:4b:
41:17:e0:36:52:a1:50:6d:0f:38:30:11:0a:50:8f:
20:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7E:47:AD:3B:E8:41:87:38:96:C5:9A:F0:7B:D8:4D:E4:4D:49:AB
X509v3 Authority Key Identifier:
keyid:A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/1516EA16764311EB901D143DF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.200.0/24
154.70.202.0-154.70.207.255
IPv6:
2c0f:5400::/32
Signature Algorithm: sha256WithRSAEncryption
64:b2:e4:7b:a9:a9:11:78:01:87:68:fc:49:26:31:97:f0:34:
f5:ef:ed:59:53:31:ef:60:91:f0:47:59:c8:0f:46:b0:e3:90:
0c:a9:d2:00:a6:1e:3f:f0:7a:3d:49:73:e1:78:b3:05:31:8f:
c8:0a:55:7f:60:f6:f0:42:a0:52:57:8a:a9:bc:7c:78:32:d6:
68:6f:b5:74:7c:2b:e7:e5:84:53:88:e8:fb:75:09:e0:4d:0e:
01:a1:02:64:1d:cd:70:57:b2:06:26:26:8a:8e:46:e8:27:41:
c8:f1:fe:d0:55:1d:48:4a:81:68:f0:e1:cc:43:39:01:2f:c5:
26:b9:e4:bb:39:8a:63:e5:4a:5a:5e:31:26:2f:df:76:44:c7:
2f:bc:be:01:45:40:ba:a2:e1:11:04:f5:6f:56:da:9f:3f:28:
9f:d2:ce:ac:b1:85:4e:ca:1b:ff:68:ce:d7:66:5f:db:3a:4c:
58:b5:01:7f:6d:c2:d5:60:c1:aa:c0:04:98:16:45:54:5a:5d:
17:75:91:5a:cb:92:d4:07:05:73:9c:c0:cc:84:7e:75:07:78:
82:59:0a:19:13:e6:6c:c5:35:8a:7e:73:14:4a:25:c5:ee:45:
44:6d:1e:ed:7c:12:2b:a5:f3:97:d5:41:23:47:16:ce:5c:2f:
8c:d6:2b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:53 2024 by rpki-client on console-ams.rpki-client.org