Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/560A0F56D6D711EEA670F29F775412E6.roa
File: 560A0F56D6D711EEA670F29F775412E6.roa (raw, json)
Hash identifier: 36vmkMIoXjc7HdY2CXjGyFx4r6ZPV08JJhZLNfDtStY=
Subject key identifier: 9D:AB:9B:A9:F5:11:9D:EA:57:E0:70:F0:12:3F:84:49:70:88:A8:8B
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 05C8
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/560A0F56D6D711EEA670F29F775412E6.roa
Signing time: Thu 29 Feb 2024 07:51:25 +0000
ROA not before: Thu 29 Feb 2024 07:51:20 +0000
ROA not after: Tue 28 Feb 2034 07:51:20 +0000
asID: 20011
IP address blocks: 196.210.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1480 (0x5c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Feb 29 07:51:20 2024 GMT
Not After : Feb 28 07:51:20 2034 GMT
Subject: CN=65e0377d-f1b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:f8:97:0e:4b:02:60:60:87:c4:0f:b6:de:
54:dc:34:0e:49:6a:8a:e5:d9:a1:cb:14:ae:ac:bf:
37:14:1e:03:aa:98:04:5a:f1:06:d5:8c:a7:21:60:
78:d6:27:a1:70:a1:73:14:9a:3d:6e:53:b8:ef:ff:
57:b1:4a:e1:a1:a0:88:b0:59:ab:24:ef:9f:66:a5:
22:88:5c:c0:b1:f9:64:e2:f0:21:4a:da:2b:fa:34:
fd:59:b1:ce:40:3e:8d:ae:30:35:1d:7b:15:c8:d0:
86:ed:35:b7:a9:05:fc:82:b8:cb:96:f1:09:3d:46:
b2:49:14:fe:be:05:6c:ae:24:c9:5e:54:42:1a:a2:
5c:e5:db:30:41:fb:12:11:5d:e2:45:54:5c:a6:e2:
76:b4:f8:b1:22:39:8b:9a:a5:a7:2b:fb:1b:21:f9:
39:b1:7f:74:db:14:94:14:ca:e3:4a:87:2e:5c:e0:
8d:ca:04:38:d3:e8:39:c5:47:f7:47:59:a1:79:eb:
83:26:4b:ae:76:8e:a1:9d:93:27:e6:68:71:9f:fc:
6a:1b:63:1a:9d:85:1c:5b:94:23:8f:e7:3e:e3:c7:
87:07:0e:8a:a5:b2:f5:a0:15:30:18:cd:5c:b0:19:
45:6f:38:7c:4d:b3:93:1e:38:30:48:f4:eb:3e:0d:
f4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AB:9B:A9:F5:11:9D:EA:57:E0:70:F0:12:3F:84:49:70:88:A8:8B
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/560A0F56D6D711EEA670F29F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.210.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6d:68:3a:30:e9:fb:0b:fc:a0:4e:7c:f6:04:e8:3f:3a:a8:36:
47:09:94:51:86:d0:b6:57:d1:43:fd:0d:57:9d:37:16:d7:32:
16:b5:87:b5:56:82:68:1d:39:e0:3d:46:76:e1:45:9c:5c:1a:
1f:76:8c:3d:3f:9d:d3:65:3d:26:7c:ba:c9:67:be:bc:d1:6c:
c2:49:43:49:65:eb:25:e1:3e:81:12:14:4f:82:c8:4e:c1:62:
84:74:b3:5d:ff:6c:88:b9:40:80:34:0d:33:91:3f:94:74:24:
34:b9:d2:92:ec:05:9c:68:15:88:dc:67:c8:0b:04:0a:2a:4d:
f2:e5:0e:4c:34:9d:e5:4c:80:e0:61:11:b2:02:df:2b:a8:a5:
3f:71:ca:61:7c:47:ab:75:b4:b5:4e:48:2f:20:1a:cb:cd:5b:
32:2b:d3:e2:37:a8:9f:b6:5f:54:4d:f4:d3:4a:fc:f7:91:8e:
4f:24:e0:a8:c9:a3:11:9e:ca:37:97:aa:ec:36:6a:d5:ab:23:
d5:d7:37:18:ac:9d:d8:27:7f:a8:08:76:fa:6b:8c:16:ec:2e:
5f:69:c9:0a:23:b8:1a:a8:66:f6:58:fa:79:cf:6e:69:a3:7a:
59:a2:bd:e2:7c:3a:af:e4:55:7e:f8:bf:22:6a:be:0d:c7:f5:
3e:19:ed:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org