Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/20CA2D0E973511ED8822B790F1222468.roa
File: 20CA2D0E973511ED8822B790F1222468.roa (raw, json)
Hash identifier: txSKgkFcglk9HPtC7qrZhRtjvXVVhB6oQD7lSNhLWfI=
Subject key identifier: E9:E1:D6:12:12:C0:60:C6:85:B4:A5:47:8A:EE:B7:E0:28:18:5B:8B
Certificate issuer: /CN=F365F31BAF/serialNumber=3F2E25873F930A3E2F75A5C2C61562B0220DE65B
Certificate serial: 02
Authority key identifier: 3F:2E:25:87:3F:93:0A:3E:2F:75:A5:C2:C6:15:62:B0:22:0D:E6:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Py4lhz-TCj4vdaXCxhVisCIN5ls.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/20CA2D0E973511ED8822B790F1222468.roa
Signing time: Wed 18 Jan 2023 13:36:36 +0000
ROA not before: Wed 18 Jan 2023 13:36:32 +0000
ROA not after: Tue 31 Dec 2024 13:36:32 +0000
asID: 328091
IP address blocks: 196.49.38.0/24 maxlen: 25
2001:43f8:d71::/48 maxlen: 49
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/Py4lhz-TCj4vdaXCxhVisCIN5ls.crl
rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/Py4lhz-TCj4vdaXCxhVisCIN5ls.mft
rsync://rpki.afrinic.net/repository/afrinic/Py4lhz-TCj4vdaXCxhVisCIN5ls.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 17 May 2024 00:05:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365F31BAF/serialNumber=3F2E25873F930A3E2F75A5C2C61562B0220DE65B
Validity
Not Before: Jan 18 13:36:32 2023 GMT
Not After : Dec 31 13:36:32 2024 GMT
Subject: CN=63c7f5e4-8d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:03:a8:51:86:17:ea:27:97:ff:30:d3:57:4d:
60:0f:52:73:35:a3:13:ab:6f:01:b8:f7:4f:49:e7:
48:38:03:7d:ca:55:89:43:60:f7:c2:1f:98:58:6d:
93:c7:58:0e:57:1b:88:66:3a:f8:5a:7a:7d:18:9d:
7b:eb:e3:64:f7:fb:ac:0a:31:0d:fc:b1:2d:c4:2e:
62:93:3f:80:87:19:05:42:5d:fa:58:34:e8:c9:c4:
bb:43:f9:a2:3b:46:de:53:30:45:9b:01:1f:40:77:
e5:ef:e4:8a:09:a7:dd:65:06:a1:b2:75:ab:dc:85:
17:0f:ae:33:67:b9:7d:c7:bc:09:a3:62:b9:9c:be:
60:e4:2f:9f:bf:45:e4:b1:f4:19:85:17:ca:59:f7:
db:b7:ea:4d:e8:da:52:29:2a:b0:9b:4c:a0:d8:8d:
0b:00:21:06:40:fe:d5:96:72:ab:a8:83:5d:ac:ab:
3c:e6:b9:fe:8f:39:d1:57:a2:53:3c:51:66:1a:b8:
30:89:18:c5:09:eb:96:4e:3c:5a:41:a6:6e:6d:4e:
eb:7e:8e:91:1b:62:58:6e:89:64:03:ee:4f:41:a6:
20:99:10:50:94:c7:f4:43:3d:73:45:ae:70:93:d9:
cb:40:93:b5:86:7d:55:4a:94:4f:ac:d3:13:0e:0a:
e7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E1:D6:12:12:C0:60:C6:85:B4:A5:47:8A:EE:B7:E0:28:18:5B:8B
X509v3 Authority Key Identifier:
keyid:3F:2E:25:87:3F:93:0A:3E:2F:75:A5:C2:C6:15:62:B0:22:0D:E6:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/Py4lhz-TCj4vdaXCxhVisCIN5ls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Py4lhz-TCj4vdaXCxhVisCIN5ls.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F31B/D52C184A973311EDB423448DF1222468/20CA2D0E973511ED8822B790F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.38.0/24
IPv6:
2001:43f8:d71::/48
Signature Algorithm: sha256WithRSAEncryption
5e:ae:4e:01:eb:62:bd:ce:d9:47:c5:c8:1a:57:22:b6:9e:08:
ea:14:80:c2:8b:c4:ae:08:4c:ed:b9:ae:c1:39:dd:e7:01:72:
5d:8e:fc:5a:36:21:83:4c:0e:a2:e3:9c:26:18:81:ca:4a:5d:
79:0e:26:4c:aa:ff:ef:d0:d0:e0:b3:06:43:f4:a8:51:d9:b9:
03:4e:e7:3b:f7:5f:bb:bb:cd:f8:91:fe:94:3d:64:14:ed:8d:
e4:56:bd:88:3c:77:11:1d:8e:16:d2:03:e8:0d:8a:df:25:d5:
cb:10:4a:49:94:cd:11:e6:9e:59:bc:72:cc:4e:a0:45:4a:bf:
48:f2:b9:45:bd:d7:e8:eb:3e:ce:a8:12:e6:65:d7:cd:22:89:
4d:4f:8b:2b:67:cf:bd:61:d8:73:ef:0a:fd:68:1b:2f:21:f0:
11:ff:fe:96:aa:fc:1c:fe:25:82:50:9b:98:34:ae:87:a4:d3:
74:c9:27:c7:fe:9e:8d:01:e6:f2:6f:11:f1:96:9c:9f:9c:06:
7f:fb:ac:73:e4:83:da:b9:9b:0f:ff:43:bc:e0:03:d9:18:67:
35:2e:0d:15:20:dc:6d:93:69:e8:c6:47:a6:e5:a5:07:35:ff:
9f:00:47:01:45:7d:c6:99:20:33:9e:42:08:c6:3d:62:2a:58:
63:13:95:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 05:28:48 2024 by rpki-client on console-ams.rpki-client.org