Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/B8B5DACA69BA11EEBD303C4B4AD9E6FC.roa
File: B8B5DACA69BA11EEBD303C4B4AD9E6FC.roa (raw, json)
Hash identifier: uoqftiTs2TQ3rEVnLUYDWPuBL54Tw5Qh6vFz0fe7JV4=
Subject key identifier: 29:15:C0:9D:87:B7:50:6E:90:BE:99:6C:00:15:AE:AB:37:64:2D:26
Certificate issuer: /CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Certificate serial: 0E
Authority key identifier: 2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/B8B5DACA69BA11EEBD303C4B4AD9E6FC.roa
Signing time: Fri 13 Oct 2023 11:21:58 +0000
ROA not before: Fri 13 Oct 2023 11:21:55 +0000
ROA not after: Wed 13 Oct 2027 11:21:55 +0000
asID: 37513
IP address blocks: 196.216.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.mft
rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Validity
Not Before: Oct 13 11:21:55 2023 GMT
Not After : Oct 13 11:21:55 2027 GMT
Subject: CN=65292856-388f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e9:42:87:f6:fc:b0:b4:11:e4:f0:6b:bd:de:
26:3d:38:6f:12:32:ee:24:b2:c1:4a:0b:4c:1f:0a:
7d:b4:42:64:a0:62:b7:b8:68:99:e6:9c:67:58:fb:
94:46:d3:52:6b:a5:47:25:ed:97:99:91:35:19:01:
f2:27:19:7b:5d:fc:88:3b:52:0f:10:13:ac:a3:95:
31:53:23:89:02:88:5e:ad:d7:15:15:b8:b3:34:b2:
8e:c3:f3:e0:66:59:ad:a9:7d:79:8d:34:3b:b5:bd:
1c:06:c7:19:f5:48:df:6b:ad:93:31:8f:6b:bf:49:
b7:0f:48:fa:c8:83:ee:33:e4:d1:18:fe:3b:ae:99:
45:ff:6c:c0:52:cc:5f:90:d4:37:2d:76:cb:e6:2e:
a7:cd:27:96:d9:7a:20:53:15:a0:72:bc:c9:29:09:
82:d2:16:3f:cf:be:ad:a9:94:59:ba:3b:3c:e0:47:
ef:ac:04:94:e5:36:09:50:a0:b0:dc:c3:48:0a:f1:
29:4f:3b:41:fd:9e:5a:b0:5a:b9:8a:c9:a5:46:92:
b7:d3:30:24:e9:88:4d:4d:64:dd:b9:a2:a3:48:e9:
05:74:04:8d:43:bf:d9:c3:63:88:3c:58:b9:6b:6b:
e8:62:29:8a:3a:0f:33:c7:6b:d2:7a:d6:8c:10:80:
e1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:15:C0:9D:87:B7:50:6E:90:BE:99:6C:00:15:AE:AB:37:64:2D:26
X509v3 Authority Key Identifier:
keyid:2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/B8B5DACA69BA11EEBD303C4B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.165.0/24
Signature Algorithm: sha256WithRSAEncryption
55:ac:d4:6a:9f:3d:ee:d3:7b:1f:e6:48:49:f4:7b:84:b3:af:
5d:2d:d6:b4:11:b0:51:bc:cb:bf:a8:8e:af:0d:63:9e:99:0b:
bd:d2:0d:49:97:cf:3d:82:53:e0:20:45:84:4e:c6:38:0a:b9:
6b:7a:4a:bb:31:fe:c1:69:35:34:02:fc:a7:3d:e2:c9:46:48:
29:e6:8b:b8:0e:47:01:4a:0f:99:5a:cd:82:f1:26:70:47:3b:
42:d9:70:ae:2d:84:5f:92:92:af:df:c2:6e:04:fe:23:2d:ec:
ec:af:3b:1a:a3:85:0b:df:9b:34:95:47:6f:22:26:59:dc:36:
9a:a1:7b:e5:f0:3a:96:43:99:29:fa:d3:aa:5a:75:b9:ec:6f:
8b:69:a2:fb:17:90:c4:55:37:4f:58:8b:af:f8:d1:f8:38:bc:
fd:82:87:e3:6b:49:42:3f:94:fc:fe:2e:27:a5:86:76:5d:49:
ac:36:b8:ac:2e:f3:ca:fc:5b:a2:bd:7f:4e:62:60:a6:c2:65:
2c:41:91:38:07:1d:3c:79:b4:5b:bd:67:19:d5:78:56:a5:8b:
c9:6d:fe:88:f7:07:6c:64:e7:e2:c7:98:41:b6:28:ef:7c:0e:
51:58:48:4d:95:db:3c:57:96:4b:50:46:30:cf:6f:f4:67:54:
67:f7:65:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org