Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7F6415A28C8111EB9AF86F6FF8AEA228.roa
File: 7F6415A28C8111EB9AF86F6FF8AEA228.roa (raw, json)
Hash identifier: vBNBDSFy24NFc6xG23bQ8kc8iB7jZKYIkZSMyeOlZxQ=
Subject key identifier: CE:3B:CB:4D:74:54:29:FD:80:63:F4:6A:EE:A2:1F:BF:88:AE:ED:C3
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 9C
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7F6415A28C8111EB9AF86F6FF8AEA228.roa
Signing time: Wed 24 Mar 2021 09:15:38 +0000
ROA not before: Wed 24 Mar 2021 09:15:33 +0000
ROA not after: Mon 24 Mar 2031 09:15:33 +0000
asID: 12258
IP address blocks: 196.28.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156 (0x9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 09:15:33 2021 GMT
Not After : Mar 24 09:15:33 2031 GMT
Subject: CN=605b033a-8805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:3b:fe:7a:bf:f3:8b:70:94:73:12:9a:9f:
23:30:17:bb:af:eb:22:6e:6b:97:73:c7:62:e3:70:
87:00:61:b7:65:89:1f:fd:fd:ca:68:3f:4b:a5:c5:
ec:8a:ab:79:f2:21:35:c0:a4:a4:ad:07:6e:bb:d6:
f8:8e:86:d9:29:c6:80:8d:39:78:a0:49:f5:39:50:
44:41:55:96:4a:1c:9b:e2:d0:48:b2:73:70:52:c8:
45:f9:0d:18:12:90:e2:30:e9:55:32:bf:76:59:1c:
39:ab:e3:d6:80:47:01:b2:82:15:9f:8d:bb:2e:ae:
ca:b6:35:f7:ff:8a:fb:d4:e1:73:58:7f:c8:ff:c6:
65:53:72:f4:06:d9:f6:4a:bf:28:29:fb:15:f0:35:
e6:07:46:6e:12:32:ef:f1:29:6c:ab:35:cf:e9:fd:
ce:5d:65:78:8b:74:0c:54:8e:f6:81:6a:2c:70:89:
73:c4:8f:9d:a1:f3:94:0f:03:80:48:78:d2:58:a9:
2f:fb:25:0e:58:a3:7d:9a:41:ed:48:d2:c3:8f:e4:
41:e1:60:2b:4d:31:2c:7d:41:d6:c4:cc:87:5a:69:
46:f7:df:b8:db:00:db:2c:70:68:a8:9f:2b:b6:ae:
b6:c0:d2:1f:44:fd:54:6d:6f:83:37:a8:dd:9a:71:
e8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3B:CB:4D:74:54:29:FD:80:63:F4:6A:EE:A2:1F:BF:88:AE:ED:C3
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/7F6415A28C8111EB9AF86F6FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.28.92.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:92:32:86:57:18:5b:18:cf:65:66:54:86:f4:97:f6:0f:0a:
a3:16:78:95:7e:34:d4:08:44:9d:88:c6:52:2e:96:bd:21:46:
b1:60:43:53:9d:94:b1:74:12:76:68:9a:13:93:48:39:99:63:
0b:4e:63:d0:31:d3:36:24:07:6e:33:10:91:1c:01:0f:c2:fd:
d4:2e:44:bf:a0:b9:ae:52:b4:b6:97:19:48:d3:56:27:26:05:
47:19:78:81:9e:c8:5c:96:88:87:25:85:38:65:9e:e0:52:5a:
d8:c2:9b:f5:99:9a:89:3d:73:77:9c:f8:ee:c4:c1:2e:1a:b0:
87:be:6c:4e:e1:b6:3b:4b:c2:55:8b:f4:93:de:ee:d3:6b:e6:
62:0f:91:6d:2f:bb:86:c8:73:5e:0d:c8:80:db:ec:58:da:e6:
67:0b:f0:1a:5c:b1:c7:29:62:31:eb:88:89:6b:da:f6:02:78:
25:13:98:e7:67:a9:9c:d8:29:1c:0d:7c:75:0d:c6:14:c0:74:
6c:bc:16:b3:51:3d:e7:15:7d:55:08:b0:6d:00:c6:65:46:05:
11:71:a7:aa:1a:bc:30:45:95:82:8b:3b:b8:16:e1:be:a9:a7:
e6:f1:c4:44:78:6a:6d:d7:aa:ff:fe:70:66:6c:ee:73:39:e1:
94:21:ba:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org