Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/54F03C708C6711EB86A14F53F8AEA228.roa
File: 54F03C708C6711EB86A14F53F8AEA228.roa (raw, json)
Hash identifier: Op6acEBND8YUVun0BNWvS61EDhl/c3oCPOYwOCbr4xM=
Subject key identifier: 42:0B:77:09:E0:12:8D:CA:3A:B2:02:3F:B0:CA:C1:14:67:23:CE:67
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 70
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/54F03C708C6711EB86A14F53F8AEA228.roa
Signing time: Wed 24 Mar 2021 06:08:20 +0000
ROA not before: Wed 24 Mar 2021 06:08:14 +0000
ROA not after: Mon 24 Mar 2031 06:08:14 +0000
asID: 10474
IP address blocks: 196.2.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112 (0x70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 06:08:14 2021 GMT
Not After : Mar 24 06:08:14 2031 GMT
Subject: CN=605ad754-44bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:87:53:a5:80:90:cf:81:eb:dc:02:62:69:
d5:79:11:c2:ff:7c:47:be:0a:6f:da:fb:47:80:e8:
ed:b9:f8:2c:b2:9f:f0:15:08:aa:b0:ef:79:db:52:
94:1d:00:46:7c:9b:e6:2b:cc:8d:5a:90:7a:b4:ec:
3e:f5:14:0b:9d:1e:2b:6b:af:46:a3:44:7f:f8:9e:
db:e1:0b:66:55:25:ad:de:ef:fa:da:a2:71:57:bc:
1d:0d:b1:d5:44:fd:b2:f8:a6:6b:92:69:46:22:ea:
9b:b0:0c:17:83:54:a9:7d:c4:32:c5:00:47:ac:aa:
03:d9:2e:a4:c5:08:9f:94:c2:b6:17:21:f3:e7:8f:
60:73:64:31:50:bf:d6:fa:b4:28:3a:00:ff:50:61:
f5:2f:16:e1:80:d1:a5:dc:53:b9:a6:a1:0e:cf:4d:
08:5a:36:14:89:78:9b:c4:39:9f:76:dc:dd:b0:ed:
78:f8:9a:d8:f7:d0:e1:f3:27:7f:5c:8b:71:61:a3:
30:0a:6e:98:9a:bb:be:40:b0:36:e0:9b:28:54:2b:
2c:3d:24:73:7a:df:31:ca:99:34:2d:d0:14:ac:a7:
1a:a2:7b:07:07:45:a0:3e:e5:f2:28:ea:dd:b1:2c:
d7:23:e4:b0:69:3b:bd:f6:0a:bb:bf:c3:9a:cb:79:
06:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0B:77:09:E0:12:8D:CA:3A:B2:02:3F:B0:CA:C1:14:67:23:CE:67
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/54F03C708C6711EB86A14F53F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.16.0/20
Signature Algorithm: sha256WithRSAEncryption
73:50:23:25:40:27:fb:ca:4e:89:6c:ce:4c:04:8b:65:8e:07:
bb:a2:14:50:4c:a6:bc:8a:bb:fd:8d:11:62:17:98:53:4e:48:
6c:bf:03:57:74:8f:8d:31:87:f2:cf:9e:9a:71:b0:40:8e:6b:
b1:df:c0:3b:94:e2:1e:84:aa:ed:56:7e:aa:57:d5:e9:c4:1c:
11:80:ee:e0:f3:6c:08:28:dc:0a:7a:ea:5c:7f:96:d9:72:80:
18:24:b5:70:90:a5:e1:bd:6f:43:51:80:fb:26:32:2e:7f:9f:
04:35:05:28:cd:31:c1:7b:97:06:4e:43:72:6f:d4:97:9a:70:
e4:43:af:4d:82:28:95:d7:58:5b:68:26:41:0e:8b:ad:cc:1e:
6d:38:fb:24:b6:ea:63:4e:b5:54:a3:6f:5d:94:08:91:a1:be:
be:52:5b:45:5a:c4:51:21:e5:16:52:ce:54:5d:05:18:56:33:
5b:38:df:95:d6:8b:04:72:af:c6:61:5b:7f:29:03:31:56:25:
1b:36:94:48:df:8e:05:16:a5:03:8e:8e:04:d7:69:0d:64:41:
4a:63:97:85:d7:15:2d:61:bb:a0:f2:38:3f:b7:e1:4f:a3:e5:
43:6c:e2:76:74:7f:14:ae:14:44:70:90:8c:98:1f:7d:1e:2b:
ec:ce:97:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org