Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/1F79D66AC78E11ECABC788B3F1222468.roa
File: 1F79D66AC78E11ECABC788B3F1222468.roa (raw, json)
Hash identifier: vZWGV8ZUFCKZGUwAQW1qWneRslh4uLs0giWdpDLXoz4=
Subject key identifier: 65:B6:4B:9B:25:E3:9A:A8:A0:97:33:29:C0:49:FE:3B:D0:93:97:51
Certificate issuer: /CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Certificate serial: 02
Authority key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/1F79D66AC78E11ECABC788B3F1222468.roa
Signing time: Fri 29 Apr 2022 07:29:37 +0000
ROA not before: Fri 29 Apr 2022 07:29:32 +0000
ROA not after: Tue 29 Apr 2025 07:29:32 +0000
asID: 4755
IP address blocks: 196.43.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Validity
Not Before: Apr 29 07:29:32 2022 GMT
Not After : Apr 29 07:29:32 2025 GMT
Subject: CN=626b93e1-6ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:77:d1:de:7d:31:f9:d7:f4:c1:e1:1f:f0:01:
c3:09:87:c7:a2:ca:93:83:53:86:14:4a:79:6f:d8:
61:37:35:fa:85:61:64:7e:0e:86:83:b2:54:e2:8c:
24:86:36:83:67:d6:1b:58:c3:26:e6:cd:a2:28:f5:
c4:7f:2c:54:f7:95:5c:f9:69:91:d6:f1:42:75:26:
25:f7:78:12:1c:88:e2:37:e3:1d:c2:e1:c7:45:c4:
86:ec:43:02:a4:a1:67:b7:c4:c0:a5:e6:cb:4e:e5:
a5:94:41:91:6b:6e:40:fe:67:53:54:11:09:ae:04:
1a:5b:e7:df:bd:a3:e9:ee:5d:a4:a1:88:77:11:ba:
6e:6f:81:63:2b:ae:d9:d5:4f:be:c8:bf:47:c5:e4:
38:47:00:a6:72:2e:04:22:92:48:35:45:cf:6c:05:
90:a1:78:e4:f0:dd:8e:f0:86:1e:62:43:90:bc:2b:
2e:b8:a3:8d:14:ad:fb:ca:0d:c5:1d:62:f2:51:a3:
ee:9f:03:e0:73:80:f4:51:b2:32:10:e6:68:a4:4f:
1f:b6:41:17:bb:5b:8e:c9:31:7e:29:69:7e:38:15:
4f:f3:0b:1d:d0:d6:8b:93:00:83:3e:00:82:b9:0b:
ed:9b:aa:8a:41:3e:3e:90:34:e6:f5:9b:d2:17:f7:
84:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B6:4B:9B:25:E3:9A:A8:A0:97:33:29:C0:49:FE:3B:D0:93:97:51
X509v3 Authority Key Identifier:
keyid:E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/1F79D66AC78E11ECABC788B3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.118.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:22:a4:11:c4:db:9a:53:62:ef:46:45:e2:cd:68:9c:b8:f6:
55:bb:35:89:12:01:50:52:ea:a0:12:ec:5b:a8:07:90:26:e6:
44:2f:00:a3:db:2f:bb:47:e1:80:1b:ae:10:79:eb:9e:43:58:
15:2a:5c:90:94:2f:b7:75:b9:76:80:2a:4a:63:6a:ac:ee:27:
1c:79:95:d7:0b:77:2b:51:dd:2d:59:c6:f5:c5:64:94:d6:fa:
d5:2c:21:76:52:99:c0:81:68:26:25:ac:e6:d4:cb:12:18:cf:
9a:bd:56:21:29:03:e6:be:35:91:97:d9:56:a8:0a:91:d1:68:
60:e8:5f:71:75:b0:ac:5a:e3:a1:f8:b3:60:5a:68:4e:59:43:
fe:d2:e4:53:77:06:3a:b5:2c:42:b0:44:75:ec:48:dc:93:d2:
89:7e:d8:2e:5f:d3:41:de:b8:04:8c:e1:ba:b0:2a:73:62:ac:
33:2c:dd:63:a8:36:a7:b9:c4:21:e3:bd:bd:30:80:9b:f9:c1:
b9:04:25:77:4e:b4:f3:40:9a:52:cb:87:91:33:b3:79:03:da:
a6:24:70:2e:80:e4:96:aa:52:c9:7b:3c:cf:7b:f8:74:d5:86:
6b:31:d4:47:75:69:f4:9c:26:e4:7e:61:a1:1a:5d:df:d6:5a:
59:2c:d7:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:06:26 2024 by rpki-client on console-ams.rpki-client.org