Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/B4757670902411EDA810FAD1F1222468.roa
File: B4757670902411EDA810FAD1F1222468.roa (raw, json)
Hash identifier: LcXk9bYeZ53prK+LBi8a4OcZBsCqMeTNkhzE/nnjIPs=
Subject key identifier: 36:C9:50:63:FB:AA:F0:05:FE:E5:B3:5E:9E:07:F5:9A:14:B1:04:04
Certificate issuer: /CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Certificate serial: 12
Authority key identifier: 92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/B4757670902411EDA810FAD1F1222468.roa
Signing time: Mon 09 Jan 2023 13:51:24 +0000
ROA not before: Mon 09 Jan 2023 13:51:20 +0000
ROA not after: Sat 01 Jan 2033 13:51:20 +0000
asID: 24757
IP address blocks: 197.156.64.0/18 maxlen: 24
2c0f:f348::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.mft
rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Validity
Not Before: Jan 9 13:51:20 2023 GMT
Not After : Jan 1 13:51:20 2033 GMT
Subject: CN=63bc1bdc-07b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:94:68:36:99:12:f5:61:85:21:51:9e:f3:
4d:43:90:37:40:09:41:88:9a:07:3d:af:00:a9:45:
8f:3d:f4:d9:2c:d7:a2:18:f9:f4:43:8a:be:0c:2d:
c2:91:16:85:d8:8c:74:a3:62:29:29:49:9c:6e:b1:
dc:c5:b7:d9:35:73:c1:da:46:bd:76:fc:b0:1e:0f:
67:8d:98:1f:a8:0d:6e:10:6c:52:0f:46:87:61:42:
bc:42:21:87:4e:16:bf:09:b2:c2:3c:31:e1:82:45:
43:e7:75:bc:58:d8:76:ac:c3:41:2b:44:2d:88:32:
3d:6d:f9:60:b7:84:2a:eb:22:20:62:25:0f:c1:2c:
b0:61:e3:38:96:40:39:66:8b:22:6d:ce:21:ed:2f:
94:00:db:62:1f:8d:34:99:ee:bd:49:70:75:d3:30:
58:f9:41:1b:ed:3b:ee:1d:3d:2c:28:73:4f:54:2c:
d0:2f:d3:df:5d:7a:c9:4e:5a:08:ee:96:ff:70:f4:
78:44:01:f9:b2:b9:af:7c:ba:f8:89:14:45:08:47:
94:3d:c0:63:2a:a4:15:f4:81:19:c0:a5:e8:4d:2f:
75:52:f3:7c:dc:ba:06:b9:99:1d:f8:4f:4f:f9:14:
4f:d6:65:4a:29:16:51:bf:7d:1e:2a:89:67:55:d9:
23:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C9:50:63:FB:AA:F0:05:FE:E5:B3:5E:9E:07:F5:9A:14:B1:04:04
X509v3 Authority Key Identifier:
keyid:92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/B4757670902411EDA810FAD1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.156.64.0/18
IPv6:
2c0f:f348::/32
Signature Algorithm: sha256WithRSAEncryption
78:84:0d:0a:3a:58:a1:bf:04:93:60:59:4a:84:79:98:2c:8c:
9d:5d:23:9b:2f:23:5f:36:7a:c5:76:69:fe:e7:35:90:49:97:
2b:20:e5:1a:b4:bd:27:59:44:7c:3b:67:5c:45:1c:74:bc:fd:
f1:fe:6e:ce:c1:74:c9:fe:c0:3f:db:93:51:15:c4:a3:49:83:
2f:62:99:69:f0:e0:b9:8e:9a:ec:a4:f6:c3:56:17:d1:bb:6e:
e9:b6:ff:fe:93:2c:70:7b:06:e7:56:0b:97:7f:0f:85:02:17:
6d:0f:a2:a8:ff:e1:80:a2:29:a6:74:e5:ff:a7:1d:bb:32:03:
cb:b2:67:9d:b0:68:66:81:2c:ce:c0:6e:28:82:98:83:b3:75:
c0:ba:9d:26:6b:c8:a9:7e:57:ca:f8:1d:3e:63:a1:36:14:a7:
3c:c5:64:8d:ad:ef:55:bf:8f:b5:f4:98:f5:f9:10:9c:1c:a7:
28:6d:1a:f8:e4:0b:cc:a0:46:04:0a:8b:14:7b:6d:b0:42:9e:
87:31:6d:0b:73:4f:e4:14:92:85:33:2e:ba:3e:98:83:0a:4b:
65:94:38:55:c4:87:da:3b:4b:0b:51:b0:d1:73:55:1f:0b:03:
8a:27:52:bb:5c:32:fe:4b:ff:f3:fd:6e:fc:72:89:8d:47:23:
fb:fb:48:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org