Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7D4774A4523511EEA20099584AD9E6FC.roa
File: 7D4774A4523511EEA20099584AD9E6FC.roa (raw, json)
Hash identifier: aw3bHCzUwQaUHw4kzXWJHT2SgJc4fHqfe0BwQD9ApEc=
Subject key identifier: 56:42:CD:73:7C:5C:E3:22:E4:E9:80:CF:B1:7A:C4:90:FE:1F:BE:23
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0500
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7D4774A4523511EEA20099584AD9E6FC.roa
Signing time: Wed 13 Sep 2023 13:00:18 +0000
ROA not before: Wed 13 Sep 2023 13:00:14 +0000
ROA not after: Fri 30 Sep 2033 13:00:14 +0000
asID: 3741
IP address blocks: 196.1.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1280 (0x500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Sep 13 13:00:14 2023 GMT
Not After : Sep 30 13:00:14 2033 GMT
Subject: CN=6501b262-f5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7e:50:16:41:6b:32:67:6b:7a:ec:d8:05:8a:
dc:4d:28:d8:f3:33:49:5d:a1:8f:db:46:7a:3b:05:
36:03:e2:1b:aa:22:69:1c:da:1d:a6:aa:b5:13:97:
11:0d:a0:8b:b1:d6:48:df:f9:41:60:39:12:ac:1d:
a5:cb:1f:dd:92:ae:60:9a:d7:5c:9b:70:f7:6e:bb:
40:a3:d5:88:41:da:ff:31:77:a1:dc:f3:c8:8a:47:
92:b9:f2:2a:47:0c:74:e3:64:f0:16:c6:d8:34:e5:
88:f1:57:61:19:6d:58:b3:2d:c2:7e:32:8d:32:ad:
5d:4b:30:64:a0:62:88:1a:8e:0c:38:eb:4c:48:8c:
5a:d9:92:d9:3e:8a:29:8a:cf:6b:37:68:99:79:78:
ec:0f:43:c7:cf:c3:02:42:ef:00:c8:f2:bc:0e:d3:
ea:af:86:b3:af:63:22:78:03:09:54:53:cf:42:aa:
0f:b2:50:1e:45:1a:14:b7:be:90:9c:9b:e6:d3:19:
0b:48:d0:3a:69:77:cb:cd:77:46:b5:85:c8:e9:0f:
9d:ce:63:47:d7:72:74:18:95:b1:12:3e:b9:bd:2b:
1c:2b:c2:c0:cb:47:81:ec:ce:d1:cc:3f:a7:96:11:
61:22:eb:61:51:ea:d8:ad:31:69:5b:2a:be:00:a4:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:42:CD:73:7C:5C:E3:22:E4:E9:80:CF:B1:7A:C4:90:FE:1F:BE:23
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7D4774A4523511EEA20099584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.16.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:d1:11:13:5e:f4:bd:f6:b4:7c:27:53:b4:79:59:61:da:5b:
7a:93:61:50:2e:a1:ea:fe:81:e7:8d:5d:4b:8c:7b:1d:0e:e0:
8a:47:ca:d0:76:db:2a:11:f2:49:6f:44:f2:e1:f8:03:1e:11:
1d:00:ff:4d:35:c9:1d:d0:cd:97:9b:a3:ca:85:48:10:74:1c:
78:2c:17:9e:de:86:72:af:45:9e:ae:23:48:a1:12:12:a1:47:
70:b0:ec:bf:64:ad:6a:e6:49:b3:b1:f2:4b:c4:ed:bb:4b:d7:
e5:15:71:d5:fc:89:e2:a7:09:6a:79:e1:62:85:d5:68:c2:78:
3d:83:43:24:39:14:b2:78:83:8a:e8:11:24:69:ad:e4:c7:e0:
62:4e:ad:9d:4c:04:f6:74:af:95:6d:01:1c:95:c3:37:63:d9:
fd:45:78:35:ef:9b:c8:0a:ca:63:1c:dd:2c:67:7c:bc:3c:ec:
b3:85:8a:b8:62:9f:1b:5f:99:d5:0a:d4:f2:eb:b6:3a:4b:60:
e6:55:e9:93:e3:56:6d:35:4d:85:9b:54:16:55:9c:6e:53:07:
0c:37:b7:a4:d7:22:c0:71:0a:7c:38:45:1a:cd:7e:d9:54:53:
3c:2c:6d:9b:aa:22:2f:f0:0f:0d:7e:94:37:39:f9:b9:21:2e:
c5:72:be:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org