Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/3FB889F6523111EE9D88B94B4AD9E6FC.roa
File: 3FB889F6523111EE9D88B94B4AD9E6FC.roa (raw, json)
Hash identifier: JYL2vX1c3Cvv4GASXdb1VdC5NQE7//oA4A99bkozmcU=
Subject key identifier: 57:9F:84:CE:C6:25:8D:33:55:89:4A:0D:84:9B:31:4B:0D:0E:9A:7A
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 04FC
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/3FB889F6523111EE9D88B94B4AD9E6FC.roa
Signing time: Wed 13 Sep 2023 12:29:57 +0000
ROA not before: Wed 13 Sep 2023 12:29:53 +0000
ROA not after: Fri 30 Sep 2033 12:29:53 +0000
asID: 3741
IP address blocks: 196.1.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1276 (0x4fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Sep 13 12:29:53 2023 GMT
Not After : Sep 30 12:29:53 2033 GMT
Subject: CN=6501ab45-6294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:32:dc:cc:76:e9:69:4f:27:10:d2:39:3e:77:
bc:c3:c5:4e:33:53:a3:6b:5a:24:33:d3:8e:dc:c0:
d8:09:f8:7b:30:12:3d:9d:bc:38:a2:ea:40:38:7d:
58:b0:4a:89:a0:24:3e:b2:d8:67:84:32:e0:87:36:
2b:32:9a:2f:26:d4:9f:4b:db:cc:ac:00:19:70:62:
bc:a6:1a:d3:48:73:7e:25:b7:65:0a:ff:86:a2:44:
c8:08:82:29:c2:05:67:24:af:ff:af:5c:b5:a0:cc:
c5:89:40:2e:00:6c:61:52:ed:d6:c0:b9:e0:b4:87:
18:fc:2b:85:41:b7:8b:5c:5f:cc:89:e0:f7:c3:de:
e0:2e:40:12:c8:51:3b:48:3f:73:8b:09:82:2f:3e:
03:fc:db:c2:7d:28:9a:6f:42:80:e9:26:27:20:8e:
9b:0a:fb:95:7f:57:f5:db:a5:18:1d:0b:0a:a0:d8:
fd:59:2f:07:57:80:df:3a:50:95:ed:29:9e:8d:3c:
a6:d3:65:a3:34:39:73:64:78:6a:77:1b:25:9a:8e:
ef:5c:58:2e:5c:1d:ba:fd:93:54:33:ea:c0:9e:c9:
10:3a:93:56:95:22:d8:d2:c8:31:3c:cc:b4:bb:23:
93:7c:0b:a1:c7:81:2f:f9:df:54:c0:ed:54:ff:40:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9F:84:CE:C6:25:8D:33:55:89:4A:0D:84:9B:31:4B:0D:0E:9A:7A
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/3FB889F6523111EE9D88B94B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.81.0/24
Signature Algorithm: sha256WithRSAEncryption
91:82:98:e6:81:9c:6c:92:61:6d:2c:2f:2b:8d:8c:b1:22:f2:
67:55:3d:26:e5:13:59:db:2c:87:40:3c:4c:ae:8c:8f:bc:36:
7f:ae:68:f3:61:da:b7:33:fb:2e:9a:ed:d5:a1:fe:29:6b:8a:
08:13:37:cc:3e:32:f8:68:a6:2e:ca:5c:ee:99:c6:f2:90:f2:
16:d6:7e:d5:c2:a5:00:35:64:3a:91:d9:99:af:43:34:7d:b3:
65:9c:8f:ea:79:00:65:6c:98:77:cf:4e:fc:cd:f8:f6:fc:dc:
b4:5f:eb:d4:70:01:be:b9:71:ca:37:31:df:ab:b3:c1:17:fd:
3a:13:8a:d2:59:53:fc:0e:81:5a:88:cb:cd:1b:aa:3a:61:d7:
2f:44:6c:ad:22:f3:bb:b8:7f:ab:48:6e:a3:21:3d:87:d9:ec:
85:c2:50:73:04:83:6e:c8:7e:11:47:d6:5f:4e:f5:71:8e:2e:
56:60:a2:d1:68:0b:0e:64:95:5a:4b:33:da:ad:31:21:96:36:
5e:bd:c7:02:c0:d7:8b:1c:5e:23:bd:7d:ba:9f:22:bf:a5:24:
3b:9d:12:08:2c:cd:d0:cd:65:59:ca:2e:6a:0c:be:ee:bb:1e:
e7:10:ee:f6:ec:a3:78:70:fa:70:6e:4c:d9:09:a5:48:8d:47:
f3:fe:34:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org