Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/72F34FC4BCDB11EB999BD214F8AEA228.roa
File: 72F34FC4BCDB11EB999BD214F8AEA228.roa (raw, json)
Hash identifier: ef90kIhel3aU7TDtsGWE4CCzbc8WZLvCeEjm9Pm4als=
Subject key identifier: E3:C5:C3:D3:66:08:EE:7E:D3:DE:DD:8F:5E:A8:03:DB:7F:A1:C5:2F
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0183
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/72F34FC4BCDB11EB999BD214F8AEA228.roa
Signing time: Mon 24 May 2021 22:00:28 +0000
ROA not before: Mon 24 May 2021 22:00:21 +0000
ROA not after: Fri 24 May 2041 22:00:21 +0000
asID: 3741
IP address blocks: 197.88.0.0/13 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 387 (0x183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 24 22:00:21 2021 GMT
Not After : May 24 22:00:21 2041 GMT
Subject: CN=60ac21fc-2fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:98:cd:81:f4:c0:eb:9a:e8:af:b8:42:f4:88:
a6:5e:27:0b:8d:15:a7:4a:9e:20:12:98:7b:dc:a0:
02:a6:96:45:fb:cc:86:1f:36:24:b1:3c:f0:25:37:
42:46:39:8a:3c:5b:ab:3f:47:f6:65:2d:42:90:b5:
26:66:3c:8e:8b:99:a7:e5:03:00:fe:31:91:c8:0f:
9e:83:84:9c:b3:be:ba:ce:59:e5:03:08:fa:5a:bb:
e0:a9:ad:e8:05:eb:f7:cf:04:e2:08:cd:e0:17:43:
f9:84:f0:06:e3:9f:14:c9:f2:2e:cd:3d:33:8f:36:
dc:f6:9e:ce:40:c9:c1:c9:c2:f3:ec:07:92:2a:1e:
25:98:d2:19:f8:96:c2:67:84:2a:0a:83:54:5f:c8:
9d:aa:fc:1c:fd:34:6e:83:4e:d4:ac:ab:36:9a:35:
93:ef:84:17:3f:98:11:63:53:23:1f:99:65:c5:b3:
c1:e2:27:cd:73:74:98:16:22:7d:dd:8a:88:e7:c7:
5d:d1:ae:7f:ce:f4:a9:4b:b1:8e:f6:92:7d:51:d6:
a2:35:1e:28:44:ba:3b:3c:62:48:f0:74:c4:13:1e:
b3:c6:3f:20:c6:c6:61:86:13:80:f3:c1:73:e4:51:
24:d8:0d:a4:48:b7:1c:f9:5b:23:24:70:28:9a:84:
60:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C5:C3:D3:66:08:EE:7E:D3:DE:DD:8F:5E:A8:03:DB:7F:A1:C5:2F
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/72F34FC4BCDB11EB999BD214F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.88.0.0/13
Signature Algorithm: sha256WithRSAEncryption
39:71:95:1c:0a:11:3f:f5:f5:40:a3:d4:4e:f5:27:1a:1a:a8:
5e:5d:d6:ec:2c:13:e1:69:9e:99:02:8e:ca:d6:0f:ca:7b:1c:
b8:fc:47:9a:73:16:a5:82:fa:9e:b6:b3:ba:ad:df:26:d4:be:
18:04:69:d7:76:8c:2d:4f:41:b4:16:3c:51:31:38:44:1d:ac:
e3:20:af:4c:32:a4:27:f1:d7:c0:2c:21:a9:8b:0a:3b:9b:30:
8b:56:a9:4e:a8:6c:8a:34:26:26:80:e1:ab:72:f1:62:ae:24:
ba:02:e9:de:72:8a:53:b5:f3:96:28:54:8f:1f:de:30:89:29:
34:21:61:97:a5:38:c2:c2:a9:48:f9:fc:f2:35:c7:d4:78:f3:
88:db:67:58:fe:76:68:7b:11:c6:6d:05:90:59:c0:8a:ee:82:
b0:51:f3:d9:98:db:f6:e4:72:4b:9e:25:d1:95:ae:9a:a0:27:
36:7a:52:17:c9:62:56:4a:f2:67:d3:f6:36:d2:9a:96:ae:86:
32:fb:42:52:0e:0f:63:ee:64:38:2d:f4:41:15:8e:ec:26:18:
61:16:a5:bf:c8:f8:62:86:28:b8:22:27:2b:83:bf:2b:16:0b:
37:c6:47:d6:fe:d5:91:2b:9f:e4:d8:13:f9:7c:71:c5:74:06:
a8:5d:7b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org