Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/F8A03EA22DD711ED9D0F7E83F1222468.roa
File: F8A03EA22DD711ED9D0F7E83F1222468.roa (raw, json)
Hash identifier: A3D2coJfMGVfkM4t+C0wadunWeeP5Netmzy2NPiOcNE=
Subject key identifier: 7B:39:5B:AC:A8:D4:82:58:FC:68:AD:E9:B7:A5:FF:BD:13:A9:B0:2D
Certificate issuer: /CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Certificate serial: 0A2F
Authority key identifier: 9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/F8A03EA22DD711ED9D0F7E83F1222468.roa
Signing time: Tue 06 Sep 2022 11:35:13 +0000
ROA not before: Tue 06 Sep 2022 11:35:10 +0000
ROA not after: Wed 01 Dec 2049 11:35:10 +0000
asID: 0
IP address blocks: 196.60.96.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.mft
rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:38:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2607 (0xa2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Validity
Not Before: Sep 6 11:35:10 2022 GMT
Not After : Dec 1 11:35:10 2049 GMT
Subject: CN=63173071-918d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:09:1d:1f:51:a1:9f:7e:fc:61:06:40:cd:75:
37:64:c9:ac:69:24:57:05:39:33:dc:16:21:90:70:
b3:03:d4:ac:ab:90:ba:3a:aa:36:84:31:c2:b7:b0:
a6:05:b5:09:70:52:fa:3f:46:2f:f1:76:2f:67:ed:
f8:82:43:71:4c:b9:6a:55:69:2e:ac:22:78:24:20:
ce:08:4f:53:bc:a4:af:d5:dc:4d:ac:02:2a:2e:8d:
da:4b:c8:a8:df:33:08:c0:32:24:51:5e:f2:53:24:
7a:25:d2:45:f7:02:13:b0:da:b8:fe:eb:42:82:a9:
ed:8a:e7:14:7e:04:25:fd:29:1c:e5:cc:0f:a2:65:
6b:22:c0:18:f8:76:df:ff:80:79:e0:e0:8f:7d:ac:
64:56:93:a3:b6:7e:d0:25:35:81:f3:db:b8:e2:ce:
3b:39:3c:64:92:24:18:4c:a4:60:00:9f:7e:52:33:
49:c7:a1:9b:44:72:15:8b:af:23:ce:9a:2c:87:0d:
79:77:d5:34:89:5d:4a:35:7d:47:20:30:91:25:5f:
f8:38:ae:74:06:a7:c1:7a:89:43:de:7b:7f:46:18:
72:14:37:e7:b9:2e:ef:78:25:b3:98:93:b1:66:e4:
3f:a0:44:c8:9b:ad:c9:04:16:10:72:3f:7c:f9:a5:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:39:5B:AC:A8:D4:82:58:FC:68:AD:E9:B7:A5:FF:BD:13:A9:B0:2D
X509v3 Authority Key Identifier:
keyid:9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/F8A03EA22DD711ED9D0F7E83F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.60.96.0/23
Signature Algorithm: sha256WithRSAEncryption
56:57:4e:97:03:19:87:ec:59:6d:ec:bc:cb:24:cb:20:9e:91:
30:34:8b:92:d4:bd:5c:42:0b:54:b2:e7:51:40:f3:95:83:8f:
c8:6b:a4:95:87:02:75:32:fa:d1:9f:b0:29:02:80:b1:c1:e3:
83:0f:31:8e:60:1b:9d:36:95:68:14:a5:97:10:93:88:db:14:
8b:2f:c1:df:b4:f8:23:9a:05:63:26:ab:7f:13:4e:52:fa:fb:
03:e3:75:b0:d7:9a:d9:13:6a:2c:ef:e3:d9:e2:94:0b:1e:a2:
df:67:2b:a1:6a:95:21:13:d2:41:05:dc:03:52:da:ed:52:e1:
51:8f:e5:e3:f3:bc:5e:f6:2d:e9:54:1b:29:f8:1a:99:67:f9:
3d:04:d8:3a:68:eb:cc:67:d6:6c:03:58:5e:7f:f1:0f:a0:d4:
25:16:32:06:16:2c:31:33:fa:ff:47:db:5c:90:bb:77:7a:d4:
fb:3a:b4:90:e5:e1:41:67:7b:94:97:11:3e:66:6c:da:14:fd:
cd:ee:39:6e:88:af:e0:ae:b7:cd:df:e3:78:54:64:05:c7:de:
c7:2e:33:b7:e2:7a:e6:cb:cc:9d:5b:66:68:ab:50:40:93:20:
67:72:29:37:3b:82:c9:5a:95:a3:c0:2f:4d:03:df:ad:8b:ee:
f0:e3:53:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:08 2024 by rpki-client on console-ams.rpki-client.org