Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/595292628C6311EBB01A654DF8AEA228.roa
File: 595292628C6311EBB01A654DF8AEA228.roa (raw, json)
Hash identifier: OccGfrGYxN+u/AZZxjzmeB900iEHkIOPIsBv+9Z0uhw=
Subject key identifier: 79:C3:61:F8:CD:C0:75:E5:47:7A:2E:F7:19:3A:EC:96:01:19:30:9E
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 4D
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/595292628C6311EBB01A654DF8AEA228.roa
Signing time: Wed 24 Mar 2021 05:39:49 +0000
ROA not before: Wed 24 Mar 2021 05:39:43 +0000
ROA not after: Mon 24 Mar 2031 05:39:43 +0000
asID: 10474
IP address blocks: 196.44.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 05:39:43 2021 GMT
Not After : Mar 24 05:39:43 2031 GMT
Subject: CN=605ad0a5-970d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:fc:c2:87:d1:d3:49:e7:81:66:bb:fa:99:ac:
1e:f8:0d:c5:90:18:31:0d:fd:aa:49:a8:ca:38:36:
74:97:a1:dc:23:4c:1f:9d:5f:3b:20:cf:e5:87:c2:
7f:05:17:c1:93:d3:fb:b0:ef:f4:68:6b:21:41:5e:
f5:96:86:eb:8b:5f:5c:51:2d:e1:e7:e7:4f:3d:66:
d8:89:fc:33:a0:00:67:b0:11:fa:65:2b:83:79:46:
66:77:03:ef:8f:27:11:71:c8:3f:83:45:dc:55:fc:
f9:b0:91:cc:43:da:77:5f:c5:d3:2b:e3:fd:1c:8f:
a1:61:20:30:50:86:17:c3:e5:e4:da:90:83:25:20:
c9:7c:01:ce:ac:68:3d:c8:77:22:9e:65:20:83:38:
b3:d7:06:cd:ee:08:21:4c:8e:7e:a9:34:f3:94:87:
ba:f5:f8:96:b8:d9:33:5f:15:5d:3d:5f:9a:21:b2:
7c:0f:80:55:c6:23:78:97:f3:c2:7e:95:4a:8c:b6:
cb:49:c3:d4:8c:ae:84:8f:15:0a:00:18:0d:e1:5b:
81:1a:26:c9:a5:b4:73:5c:4d:2a:f7:bf:2c:ce:d7:
fc:dd:3b:7b:5a:fd:9b:8f:86:34:46:7c:0e:77:f0:
04:a7:73:c4:9a:51:be:97:62:33:da:5f:c7:15:34:
80:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C3:61:F8:CD:C0:75:E5:47:7A:2E:F7:19:3A:EC:96:01:19:30:9E
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/595292628C6311EBB01A654DF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.192.0/20
Signature Algorithm: sha256WithRSAEncryption
95:95:ce:a5:1e:3e:0e:53:6a:77:d4:36:fb:2c:11:1d:87:75:
4b:98:6f:d7:73:7c:f5:78:9d:bc:f1:c0:19:a8:73:50:d3:9f:
0a:fd:8a:4d:14:e9:3c:61:15:5d:03:c3:50:88:2b:e7:92:63:
96:5d:66:c5:8d:6b:bb:85:eb:f6:57:fd:fc:51:d6:9f:ed:5e:
c7:5e:dd:67:17:e9:86:4a:da:4f:88:52:9a:fa:0f:74:fe:8e:
95:a3:d7:41:00:bf:2b:f6:01:6d:52:97:2d:d3:87:b2:45:e3:
9d:6b:5a:aa:25:53:f2:81:1b:18:9e:86:88:7d:db:8d:da:a6:
8b:de:16:05:77:95:33:dc:eb:7d:98:5c:b8:ec:6b:a7:a6:ff:
cc:d8:6a:c4:21:aa:e0:41:06:a4:b7:8c:34:42:71:d1:3a:9f:
19:e1:a9:c3:36:23:fe:b3:97:91:f0:3b:4b:fb:42:45:ee:0e:
af:96:57:0d:9a:02:c6:12:d6:64:a0:b7:62:90:7f:08:ae:98:
68:f5:3f:12:0f:11:b1:ca:00:a2:43:be:95:ae:87:fc:dc:3c:
39:63:50:63:eb:dc:e7:e2:10:29:93:7e:b1:81:dc:14:6f:68:
e4:70:57:bd:53:97:b6:aa:99:ad:80:0e:60:f1:c3:22:23:d1:
50:1b:ea:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:55 2024 by rpki-client on console-ams.rpki-client.org