Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/0F970AA45DDA11EEA9B9B7884AD9E6FC.roa
File: 0F970AA45DDA11EEA9B9B7884AD9E6FC.roa (raw, json)
Hash identifier: FMUt2MM7DebKkBEnbyLy3J47YqdDugPo2mNzNBuOTcI=
Subject key identifier: 04:0A:15:53:54:EF:42:AE:A5:6B:1A:BF:FB:64:FD:AB:A3:39:06:DE
Certificate issuer: /CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Certificate serial: 0BC8
Authority key identifier: 9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/0F970AA45DDA11EEA9B9B7884AD9E6FC.roa
Signing time: Thu 28 Sep 2023 08:36:04 +0000
ROA not before: Thu 28 Sep 2023 08:36:01 +0000
ROA not after: Wed 01 Dec 2049 08:36:01 +0000
asID: 0
IP address blocks: 196.223.30.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.mft
rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3016 (0xbc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Validity
Not Before: Sep 28 08:36:01 2023 GMT
Not After : Dec 1 08:36:01 2049 GMT
Subject: CN=65153af4-7fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f2:87:e8:66:51:51:60:a3:41:80:50:c5:8e:
7d:c8:a5:13:20:6b:88:33:c0:c8:db:be:a6:83:3b:
b9:8a:71:2b:ba:27:62:50:a5:4e:81:ac:d1:d0:f7:
18:be:7d:4a:05:0a:f6:f0:77:b3:d9:e4:64:22:ef:
c3:19:8b:f9:20:b1:1a:fd:7d:bd:60:dd:58:78:49:
1e:49:d3:4b:64:d3:4a:f8:26:58:d4:32:65:d5:e5:
f5:66:b5:56:8d:4f:42:99:4f:24:53:51:e0:11:51:
a8:a2:1d:a3:f3:ff:81:f6:6d:7a:a6:88:09:d6:22:
48:cd:d5:29:98:ec:2f:2c:f7:9f:39:4d:9a:19:8c:
27:1a:1f:de:a2:8c:b9:58:01:bd:0e:e3:b9:a7:cf:
c2:08:4b:65:44:9f:6f:91:ec:47:6e:32:7a:4e:9d:
f8:02:0a:33:08:0d:6b:ff:fd:b5:84:4a:2c:f2:b2:
a4:b6:a6:7f:20:3d:01:0c:0c:af:a3:e6:79:e8:62:
a6:83:f6:56:d0:f1:02:28:80:fc:1a:9f:e9:e8:b2:
af:43:19:fc:22:3e:aa:77:b6:06:d7:6e:f4:30:1f:
15:43:10:9f:2d:5f:a7:a7:72:3f:47:1b:7d:04:f5:
41:df:eb:cd:3a:93:37:93:b9:ee:d0:68:8e:0e:12:
55:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:0A:15:53:54:EF:42:AE:A5:6B:1A:BF:FB:64:FD:AB:A3:39:06:DE
X509v3 Authority Key Identifier:
keyid:9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/0F970AA45DDA11EEA9B9B7884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.30.0/23
Signature Algorithm: sha256WithRSAEncryption
08:75:7a:30:6c:6d:10:b8:60:ec:8a:94:66:b1:66:fb:8a:82:
24:20:31:22:1f:e6:2d:8f:d1:0a:46:54:24:9f:3e:77:65:8c:
16:9b:6c:bd:e1:8b:30:9d:e2:44:05:28:fb:2b:24:7f:55:e4:
f4:b9:cc:55:ed:45:a5:13:e9:4b:1a:e3:0f:cc:0c:03:c0:ae:
6d:ad:05:d3:c4:8b:7e:35:06:a4:1c:72:1a:42:d7:d6:8d:7f:
a9:7f:08:39:93:71:0e:f0:62:b2:86:a8:43:2c:d8:6a:5e:1f:
0a:84:e7:25:44:6f:2a:40:4f:88:e4:11:f8:07:16:c2:0f:49:
d7:da:c8:c2:58:e6:21:a4:38:fd:5f:97:3d:10:4e:d1:b3:05:
e3:96:8b:99:8e:0d:b3:c0:5f:88:91:54:2d:37:51:e3:f6:43:
aa:50:4a:37:70:c3:b7:65:7c:60:b1:f0:0d:ca:52:ff:d0:0c:
4b:aa:74:b3:06:20:52:be:f8:40:db:88:f2:77:36:0b:45:21:
b7:31:f9:9c:60:1f:e1:63:21:13:7b:b5:86:2e:c0:7f:6e:68:
a1:0b:c3:ec:d8:7e:d5:d2:cb:b3:51:f8:28:5d:25:9f:15:e2:
bb:2f:6a:7b:4e:7e:e5:01:c1:f2:dc:b9:dd:4d:6c:48:d0:9f:
19:66:a9:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:19:40 2024 by rpki-client on console-ams.rpki-client.org