Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0192DCE0BCD711EB8973430EF8AEA228.roa
File: 0192DCE0BCD711EB8973430EF8AEA228.roa (raw, json)
Hash identifier: Q4BfOuZl9pCeeqalpxx1tvjtan/Jhq4a81pP9G2C/GA=
Subject key identifier: E9:F6:52:D5:B3:A3:30:02:28:87:13:72:EA:1E:95:EE:2D:BF:C1:09
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 016D
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0192DCE0BCD711EB8973430EF8AEA228.roa
Signing time: Mon 24 May 2021 21:28:40 +0000
ROA not before: Mon 24 May 2021 21:28:33 +0000
ROA not after: Fri 24 May 2041 21:28:33 +0000
asID: 3741
IP address blocks: 196.2.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 31 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365 (0x16d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 24 21:28:33 2021 GMT
Not After : May 24 21:28:33 2041 GMT
Subject: CN=60ac1a88-6bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c1:3a:4c:d4:3c:54:d6:4e:21:ac:db:8a:d5:
a6:f1:30:d1:6f:ec:94:a4:e8:0d:78:50:f4:bc:82:
6b:60:12:1a:8f:e8:ab:c9:04:cc:17:55:3c:a8:fa:
75:69:20:0f:4b:4e:31:9f:7c:96:b3:eb:62:b7:f0:
52:53:c4:e0:7b:5d:0e:66:80:59:e2:1f:83:d5:08:
09:ec:83:89:5a:f3:2b:b2:03:76:9b:bf:16:3d:ba:
42:5a:03:1c:f5:79:2b:e5:c9:76:3e:c2:74:fe:af:
70:f2:9a:da:46:c4:ca:f9:cd:e5:e2:62:2c:c2:b4:
e9:d0:2e:21:74:dc:bb:69:8c:50:79:00:bc:af:85:
dd:95:1c:6f:4e:fc:c3:da:66:0d:47:7f:7c:1a:b7:
8a:0c:54:11:73:77:36:9b:84:7a:99:9a:84:c6:7d:
b2:16:08:51:a7:0e:45:e0:df:52:3f:7a:c9:49:11:
d4:6f:70:13:15:e4:2b:28:29:1c:c9:78:f0:c4:2f:
ac:31:40:4c:63:81:30:4b:06:ff:c1:3c:93:4b:d7:
12:b1:2f:aa:42:04:4a:81:58:75:26:6e:8c:d9:37:
b9:66:66:d8:3c:72:3f:d1:ff:d2:47:59:9e:cb:d7:
17:b6:fd:23:2b:0c:ae:c7:dc:4a:c9:86:13:27:cb:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F6:52:D5:B3:A3:30:02:28:87:13:72:EA:1E:95:EE:2D:BF:C1:09
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0192DCE0BCD711EB8973430EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.16.0/20
Signature Algorithm: sha256WithRSAEncryption
d5:e6:c8:c8:14:21:c2:0d:c1:bd:e8:14:73:1a:c4:5d:61:0f:
9a:5d:53:10:dc:63:af:a7:ea:56:1c:b7:d5:a8:b9:99:1f:6e:
c3:de:aa:07:bb:25:04:29:9d:0b:dc:62:18:97:ed:d5:31:fb:
be:2a:28:39:87:43:c7:83:32:aa:6f:1a:31:d4:0d:31:21:65:
d7:a7:fd:13:b0:c5:aa:8c:96:d4:9e:4a:55:4b:22:f2:be:91:
20:9c:bb:c2:57:27:7a:41:6f:db:22:62:5f:bc:fe:62:0a:fb:
5e:a3:95:a8:3f:63:75:d5:3c:1a:f2:45:d4:e8:82:9c:c5:62:
2a:d9:aa:b9:10:d4:39:03:68:d4:c8:f9:70:99:b6:c9:c8:32:
a3:78:3e:6e:eb:9c:ec:ca:77:16:03:9e:73:0e:a3:6c:1a:aa:
23:b5:36:bc:9d:23:54:e0:62:f6:65:fd:e9:22:e9:ee:2d:0b:
93:b5:73:3b:a7:76:c7:35:5e:87:ef:f4:f3:e6:10:06:76:dc:
fa:39:eb:2c:2c:a2:e0:8c:65:c6:85:ac:72:42:be:45:38:e4:
8b:13:30:3c:f1:43:61:99:be:a8:03:12:9c:31:98:73:45:d8:
58:07:de:b4:72:8d:6a:ff:c2:3b:11:16:9b:b8:22:6c:ec:f2:
c3:fe:9d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 02:49:25 2024 by rpki-client on console-fra.rpki-client.org