Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/12EC9860378011EFAE1A1B53762E951A.roa
File: 12EC9860378011EFAE1A1B53762E951A.roa (raw, json)
Hash identifier: F8WVT69P+8aC7CM8x6GvL01mbffFveq3NWghnvGbhWI=
Subject key identifier: FC:18:EE:C5:80:BC:BE:FB:6C:14:0F:6E:15:D5:10:E9:C2:1B:33:35
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0667
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/12EC9860378011EFAE1A1B53762E951A.roa
Signing time: Mon 01 Jul 2024 08:01:08 +0000
ROA not before: Mon 01 Jul 2024 08:01:05 +0000
ROA not after: Sun 31 Dec 2034 08:01:05 +0000
asID: 20011
IP address blocks: 197.87.96.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1639 (0x667)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Jul 1 08:01:05 2024 GMT
Not After : Dec 31 08:01:05 2034 GMT
Subject: CN=66826244-06ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e9:a2:d8:f7:3f:ac:8a:9f:b4:4b:2d:a5:cc:
73:ce:47:fa:a5:e0:0c:39:36:fd:c7:36:20:c4:c5:
5c:ae:89:75:38:6e:4a:76:04:3e:27:20:03:8f:67:
e4:34:06:dd:91:67:43:48:53:db:8a:11:09:18:0a:
46:50:8c:5e:27:c6:9e:c2:cf:47:77:ca:b5:9a:6b:
0d:21:b7:72:08:64:68:b0:61:fd:14:97:ef:98:54:
4a:d5:de:21:70:0a:75:31:db:87:89:e2:8c:36:c5:
15:8f:89:95:5b:f8:1f:bc:1f:c5:97:7e:ca:67:22:
1f:7a:84:95:33:ed:b2:91:68:05:a2:7b:1c:16:bb:
e2:39:94:af:07:1b:70:26:95:fd:a2:83:b1:7b:bb:
54:63:0a:f0:31:10:b3:95:64:1e:ae:9e:ba:4f:ff:
48:ef:33:27:3e:a1:fb:78:17:80:d2:d3:c1:71:fa:
8b:87:84:6e:06:bd:14:fd:58:8b:fe:5f:70:df:ae:
20:b0:85:c2:16:2e:d1:55:8a:7d:52:a3:24:3b:14:
7e:2e:21:6c:e4:a6:e1:83:d0:ab:a7:a6:d1:56:7a:
36:78:e2:7b:23:6b:98:18:45:5e:7c:9e:91:5e:e3:
d9:c0:b8:d6:91:4d:3e:97:60:6d:f7:33:f1:fc:02:
80:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:18:EE:C5:80:BC:BE:FB:6C:14:0F:6E:15:D5:10:E9:C2:1B:33:35
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/12EC9860378011EFAE1A1B53762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.87.96.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:00:b1:d7:e3:fe:14:1d:b2:9c:56:b5:6b:30:ec:1c:b1:cb:
bb:7b:16:f9:18:1c:6f:a4:3d:f9:d3:23:f7:0e:ca:f5:38:ad:
3f:0b:c0:7f:77:b8:e9:02:28:62:fe:dc:91:a5:0a:27:ac:50:
2e:fa:6e:38:86:72:54:05:76:bb:36:cd:e2:2b:6e:a1:30:72:
89:04:e9:4e:6d:dd:21:c7:f6:a4:b4:37:1c:59:81:75:a9:20:
44:b1:c1:e6:9b:91:d7:3e:3a:9a:65:c0:bd:bb:0f:1a:69:b2:
cf:20:95:4a:57:00:ff:21:4a:61:c6:ac:85:e8:ab:58:92:98:
38:d0:c4:19:a7:26:f9:49:4c:54:d3:0a:e5:ca:7e:36:fb:c4:
ad:52:3c:7f:a2:1f:20:07:62:04:42:b4:a0:6a:f2:dd:1c:9c:
20:36:a3:fc:87:75:d9:8f:f4:81:7d:a1:6a:4a:5e:f2:2d:67:
72:f0:a8:21:09:e2:67:f5:19:e8:ab:10:df:15:04:0d:06:1a:
f1:4f:b0:14:1b:d9:b4:2a:4b:78:ac:ce:97:82:9a:a3:43:73:
d4:29:49:ca:d0:f0:e6:4f:b0:df:5d:e9:62:9b:91:02:9f:b3:
ef:60:81:23:b0:46:b0:38:1f:bf:cf:52:7d:a5:70:3b:7f:e3:
92:d9:4c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org