Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/4CDBAD588D6111EB8AD66B5CF8AEA228.roa
File: 4CDBAD588D6111EB8AD66B5CF8AEA228.roa (raw, json)
Hash identifier: F5VYso7pA+G1oouep92OfhCdD7q/iQXaRdvGXBW0BbU=
Subject key identifier: BA:7B:A0:45:6E:79:18:2C:F2:05:26:7B:97:09:D2:DF:D8:EC:E9:75
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: B0
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/4CDBAD588D6111EB8AD66B5CF8AEA228.roa
Signing time: Thu 25 Mar 2021 11:57:41 +0000
ROA not before: Thu 25 Mar 2021 11:57:35 +0000
ROA not after: Tue 25 Mar 2031 11:57:35 +0000
asID: 10474
IP address blocks: 196.2.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176 (0xb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 25 11:57:35 2021 GMT
Not After : Mar 25 11:57:35 2031 GMT
Subject: CN=605c7ab5-5dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:96:f4:d2:93:77:2d:8b:30:77:c4:c7:78:
a9:3e:ca:6e:70:0d:82:f5:71:a7:b3:69:ff:80:50:
34:8f:61:51:45:83:ab:8f:3b:10:f7:59:e1:6c:c8:
8f:94:f0:a5:4e:03:3f:54:c7:68:44:5d:1f:dc:71:
70:36:71:c5:87:32:a4:76:9f:5e:66:c9:68:d7:0b:
b3:60:f6:1f:39:f1:4d:1b:5b:c7:0e:80:29:89:08:
e4:6b:d9:81:db:d0:ca:ff:01:7e:03:53:44:b8:08:
20:32:24:88:99:19:3b:96:cb:48:7f:5b:19:11:c9:
ca:c7:2f:57:b6:69:28:b5:08:3e:3e:9f:86:e3:26:
f5:8d:aa:f9:1d:7e:b4:cb:ac:76:b5:23:3b:aa:60:
c9:10:b0:a3:17:00:69:70:f4:de:28:07:16:86:9e:
f8:77:29:50:22:93:d8:a1:f2:a2:92:bb:a3:df:4c:
6f:aa:d5:ed:6d:e6:08:72:21:c7:9e:2d:ee:f4:74:
60:d7:64:b3:79:34:4c:c2:68:9b:82:46:62:7f:87:
0a:81:8a:b7:df:42:e0:70:db:ef:4f:e4:87:6c:0c:
5d:ec:03:5e:aa:4c:6a:91:1a:67:e6:6c:13:ea:5c:
e3:33:c3:c0:73:cf:ae:07:25:a2:37:78:3f:d9:8b:
59:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7B:A0:45:6E:79:18:2C:F2:05:26:7B:97:09:D2:DF:D8:EC:E9:75
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/4CDBAD588D6111EB8AD66B5CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.32.0/22
Signature Algorithm: sha256WithRSAEncryption
76:a0:c8:0e:00:9b:60:b2:f4:26:71:8c:d0:c6:bd:79:81:d6:
73:8c:95:ca:81:9b:96:0e:bd:9a:65:3a:96:c1:d9:f4:0c:1c:
0b:77:9d:43:bb:04:f7:13:9c:8c:fa:d3:58:f0:8b:f7:24:d7:
87:80:9b:dd:06:1f:1f:14:fd:82:e5:60:41:55:1a:96:7e:d1:
fa:c3:40:29:30:e7:e2:45:f0:af:4c:27:5e:e7:6c:7b:70:f6:
83:6b:62:e4:13:54:82:52:2e:fd:43:1d:02:d8:f3:67:38:79:
a9:c0:20:b1:15:64:9e:10:f6:63:a8:72:20:e6:41:8d:45:ae:
39:ea:19:4b:ee:82:a3:f3:06:7f:3a:f7:ae:6d:6c:f5:43:bf:
6d:2e:20:e6:1c:48:3b:cc:2d:00:58:31:5e:a7:57:3d:a7:c8:
c8:20:db:5b:f2:a0:0a:20:97:04:7d:5e:6b:84:6a:3b:68:a5:
96:4d:d6:a1:9f:14:24:17:59:4d:42:18:45:18:df:7c:af:3d:
a0:09:99:9c:15:72:ab:a8:f6:05:ab:42:a8:09:5f:92:b0:29:
a9:fa:3c:c6:f1:79:f8:8e:94:26:78:2f:9e:94:69:95:88:5b:
50:46:79:13:90:17:50:f6:50:94:04:0a:e3:e9:dc:34:1f:fa:
22:44:a4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 02:10:23 2024 by rpki-client on console-ams.rpki-client.org