Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/938ED3E8902411ED9A86A0D1F1222468.roa
File: 938ED3E8902411ED9A86A0D1F1222468.roa (raw, json)
Hash identifier: GgjrB1MRowvieagE2XuEoecTYc9snCOj4iPepN1usqs=
Subject key identifier: 8E:AB:8F:21:E3:59:DA:0E:28:2E:EB:37:B6:BB:1C:A6:A5:6F:06:9D
Certificate issuer: /CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Certificate serial: 10
Authority key identifier: 92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/938ED3E8902411ED9A86A0D1F1222468.roa
Signing time: Mon 09 Jan 2023 13:50:29 +0000
ROA not before: Mon 09 Jan 2023 13:50:25 +0000
ROA not after: Sat 01 Jan 2033 13:50:25 +0000
asID: 24757
IP address blocks: 196.188.0.0/14 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.mft
rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Validity
Not Before: Jan 9 13:50:25 2023 GMT
Not After : Jan 1 13:50:25 2033 GMT
Subject: CN=63bc1ba5-fb37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:ac:c5:2f:5f:bb:4b:8b:fd:f8:cb:59:11:8e:
0a:db:44:5c:93:5f:d2:00:0f:9e:9a:f7:ac:8c:c2:
ae:52:a4:8b:a5:bd:c8:69:72:0a:ca:f3:e4:37:2c:
d4:86:ca:0a:c3:24:a6:6f:83:1f:0a:96:3f:76:3c:
3c:14:12:c2:f4:0d:b4:9a:a0:fc:a5:94:ac:7c:d4:
a3:f2:d8:52:52:52:ec:40:8e:4c:c0:13:66:57:ed:
9c:b8:1f:54:32:5f:51:90:f1:73:a8:f2:a1:8e:ad:
e8:19:1a:8b:f4:b2:3b:b5:12:9f:4f:ca:a6:7a:ea:
d0:c6:c4:f5:b8:76:e0:8c:b1:e6:5a:64:41:55:09:
2f:f6:f1:0a:f3:22:39:8c:0d:2c:9a:6f:c3:6b:3d:
81:77:fa:0f:d5:9e:fc:39:05:25:67:39:f4:c9:2e:
e5:86:f8:6a:a0:38:b2:55:45:1f:d3:52:e6:f8:89:
36:a2:04:1d:94:35:a0:63:59:30:6e:ef:8a:95:7d:
29:2a:93:30:41:a2:5c:32:aa:5c:ff:c7:38:cc:46:
f6:28:b7:e3:f0:0f:ca:22:cb:b4:4e:c8:3c:05:af:
de:10:5b:3e:26:3d:8c:b3:fb:1e:54:e4:27:ad:8c:
24:b4:9d:4f:9b:9e:26:17:0d:95:c4:19:c0:61:ea:
cf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AB:8F:21:E3:59:DA:0E:28:2E:EB:37:B6:BB:1C:A6:A5:6F:06:9D
X509v3 Authority Key Identifier:
keyid:92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/938ED3E8902411ED9A86A0D1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.188.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a4:6e:ac:4c:54:16:39:15:44:fc:cc:27:b7:cc:2a:e8:f8:9e:
f9:da:fc:ae:09:72:25:38:5e:7a:6b:3a:04:a2:82:31:0b:ad:
56:28:37:11:de:06:3d:41:7d:11:ab:30:da:ea:ac:10:ab:ca:
b4:67:9e:47:f1:a5:33:dd:3d:c8:36:f5:53:9e:84:c2:dd:76:
c6:8a:f1:93:76:e7:dd:38:54:65:21:09:8f:66:a9:cb:6a:67:
5f:84:6e:53:4e:32:05:6f:f9:0d:62:d6:9d:08:a5:39:bb:f5:
ea:1d:a2:fc:1c:a8:52:19:c8:1a:e2:e2:c7:9d:d1:ea:f5:c9:
96:1f:01:ea:f6:74:3f:73:fc:ee:b0:a7:2e:10:73:3e:db:fb:
65:f2:bf:d3:f3:9e:77:f9:4a:d5:0f:75:59:98:0c:a3:88:0c:
e7:e4:88:c9:91:29:76:9d:1a:22:01:2f:fd:1c:fa:1d:3f:8f:
37:e7:c6:53:2a:4d:e4:b2:08:39:23:f8:20:e8:f7:95:bc:f4:
c0:18:41:8f:3f:91:9d:12:f1:1e:5a:44:e9:35:d1:de:de:f4:
41:eb:75:3d:39:99:e4:56:7b:2c:b7:1c:34:5e:e3:ba:45:13:
a8:e7:64:07:1d:94:36:0f:7b:31:83:ab:0f:7c:58:fe:20:af:
51:9a:ae:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org