Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/E44337C869BA11EE88CB094C4AD9E6FC.roa
File: E44337C869BA11EE88CB094C4AD9E6FC.roa (raw, json)
Hash identifier: 1d8FtYAZsHDPTXDngJ49htpRva8POmc7nirQyWgiDXo=
Subject key identifier: 02:7C:1A:AA:71:2E:9F:AF:B6:F2:06:E0:CE:DD:64:FE:13:41:53:9C
Certificate issuer: /CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Certificate serial: 10
Authority key identifier: 2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/E44337C869BA11EE88CB094C4AD9E6FC.roa
Signing time: Fri 13 Oct 2023 11:23:11 +0000
ROA not before: Fri 13 Oct 2023 11:23:08 +0000
ROA not after: Wed 13 Oct 2027 11:23:08 +0000
asID: 37513
IP address blocks: 196.216.166.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.mft
rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Validity
Not Before: Oct 13 11:23:08 2023 GMT
Not After : Oct 13 11:23:08 2027 GMT
Subject: CN=6529289f-fc9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:60:78:c6:87:1f:56:2b:3d:70:58:97:4c:70:
ee:9b:4a:a5:86:f9:8f:32:5d:e1:d5:49:ae:59:db:
42:c1:06:d5:41:f5:84:ba:5e:20:74:db:21:3d:5d:
e7:6d:dd:be:fb:28:34:14:03:ca:fa:b3:f2:62:bf:
4e:ea:5d:bd:d9:f4:19:84:63:d3:37:e3:91:bc:53:
d0:2d:66:a4:10:d2:26:ca:4e:73:83:b5:d8:46:ab:
45:74:fb:b3:15:60:05:f4:c7:27:cb:a3:49:b7:5b:
98:4a:f3:31:80:b3:57:6b:c7:e3:ec:ac:c6:44:84:
f7:31:ea:9a:2f:a3:b5:87:e2:75:f1:dd:36:e4:4b:
0c:55:81:f1:26:b2:72:d3:27:6d:ce:34:42:44:10:
e0:7a:75:9d:21:ba:57:97:75:f5:74:80:bf:35:a0:
f9:07:ae:fd:1b:d2:5c:89:d1:14:77:af:78:7c:95:
9d:13:31:b1:52:17:1b:6c:58:59:86:89:30:77:51:
3f:b6:c3:46:79:e3:2f:ca:8f:91:76:3d:3e:2b:25:
89:42:8d:8e:f9:09:ca:15:f7:9f:3a:2e:a5:2f:b3:
77:3c:93:9a:fa:72:bd:76:d5:a4:b2:cf:6b:e8:a0:
d7:b6:3b:7c:ce:e5:8f:12:bc:ad:d0:25:2e:2c:cc:
ad:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7C:1A:AA:71:2E:9F:AF:B6:F2:06:E0:CE:DD:64:FE:13:41:53:9C
X509v3 Authority Key Identifier:
keyid:2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/E44337C869BA11EE88CB094C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.166.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:ba:c8:36:11:bd:0e:57:3a:12:2e:95:18:87:7d:d2:ac:32:
7c:78:97:c0:f5:d3:0a:64:90:16:3a:8a:86:23:c7:d7:35:d3:
c2:98:18:80:fd:cd:d9:fa:cc:fa:4a:6c:95:cd:38:c0:6f:8f:
db:28:d5:98:a1:b8:03:b1:07:ea:eb:1c:c9:97:79:d9:c0:98:
14:5e:77:2f:ec:b1:02:46:36:b8:41:2e:f6:9a:29:e9:80:29:
f6:7e:34:87:c3:e8:82:8e:25:5f:03:0e:b3:bb:1a:0e:a8:5d:
c3:35:0c:1c:e4:53:30:79:77:d8:e6:b8:b4:61:24:56:80:db:
7a:d4:46:6c:8b:c6:ab:fc:46:09:3f:0e:42:38:0e:14:08:35:
0f:66:04:ce:02:84:ad:f2:c9:43:2c:ee:52:dd:0c:5d:ee:b1:
7a:27:bc:f6:1a:cc:ae:81:1a:12:0a:15:16:49:80:4a:0b:6e:
e9:0e:b2:15:03:e9:22:f8:0c:c8:bb:ec:5c:33:61:e9:49:ef:
6c:1e:9c:e6:92:16:b4:3a:dd:89:b2:4a:b1:66:0b:db:ce:d2:
ce:c5:a1:85:e1:3c:e7:37:0e:f1:64:7a:cb:1d:78:db:df:93:
11:84:7d:f8:f9:27:45:03:4c:95:25:55:e7:9f:31:50:83:e2:
1e:cf:ea:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org