Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/838E6E4016DD11EF8C224431017001B1.roa
File: 838E6E4016DD11EF8C224431017001B1.roa (raw, json)
Hash identifier: 4i6xI1cubBSemhJBlaBtBwI6b07eUK7fG87yUale5fE=
Subject key identifier: 7E:09:D6:E6:5C:5C:B4:34:93:60:E0:8F:1A:CD:2E:04:EE:94:7F:A4
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0637
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/838E6E4016DD11EF8C224431017001B1.roa
Signing time: Mon 20 May 2024 19:16:52 +0000
ROA not before: Mon 20 May 2024 19:16:48 +0000
ROA not after: Wed 31 May 2034 19:16:48 +0000
asID: 20011
IP address blocks: 197.91.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1591 (0x637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 20 19:16:48 2024 GMT
Not After : May 31 19:16:48 2034 GMT
Subject: CN=664ba1a4-d602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:16:95:c5:ec:e2:ea:70:b3:7d:60:e2:e9:97:
3d:d8:cd:10:5e:cb:8f:b4:61:8d:e1:79:83:6f:af:
6b:b7:d9:16:18:9a:dc:64:23:23:b4:c5:7b:1c:ba:
b5:9c:cb:ad:9f:4d:6f:85:66:2c:33:bb:c4:7d:4f:
ec:2e:7d:6e:81:c6:4c:7a:f3:2d:36:6d:e7:da:42:
dc:03:d5:e0:be:f3:c7:e5:39:64:02:48:0b:0c:e8:
e1:25:a4:53:26:b6:b3:98:fb:74:8b:2a:94:2f:78:
01:73:a3:bb:d7:87:6e:be:ac:e0:8a:1e:3f:47:e6:
61:5e:dc:55:1f:21:d9:42:12:d5:80:96:ab:59:7b:
bb:08:07:92:47:39:fb:e7:c3:f7:bf:a8:79:1c:0f:
b9:a6:17:27:d7:32:64:d7:0a:fe:24:f0:36:2f:a3:
a9:eb:9c:de:c0:25:98:a7:d1:6f:ed:c4:b8:a9:58:
84:98:55:e1:ea:33:dc:fa:c5:1d:e0:95:5f:5b:e6:
de:7c:b5:bb:2e:3f:f2:5a:2f:3d:9a:0a:11:52:f7:
85:b6:66:13:91:e1:2d:a0:82:ea:91:d5:60:92:ea:
f5:61:79:92:81:43:8a:da:99:2c:61:6e:7c:ef:f3:
8e:0a:1a:fd:f5:4d:e5:04:a6:37:34:a1:12:8e:9c:
59:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:09:D6:E6:5C:5C:B4:34:93:60:E0:8F:1A:CD:2E:04:EE:94:7F:A4
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/838E6E4016DD11EF8C224431017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.91.64.0/19
Signature Algorithm: sha256WithRSAEncryption
32:0d:14:06:97:7b:ba:76:fe:fb:bb:45:bf:cd:42:80:2e:28:
c5:ed:54:18:7e:ed:cb:25:a9:0f:2b:11:dd:6e:68:00:8d:c3:
08:e6:a8:db:13:9e:10:b9:da:a0:47:54:80:68:d3:7f:8c:f3:
9b:0c:c0:c4:76:4d:e5:53:8a:25:6e:51:f7:a1:17:aa:23:3a:
e5:6b:6f:6f:32:dd:33:a2:e6:a0:0f:ab:63:c0:5d:f2:22:67:
49:88:7b:65:29:05:1b:42:d4:ff:f0:ce:c1:c5:7c:b3:b0:ab:
38:6b:74:c1:10:ef:90:1b:14:4d:4e:34:57:44:05:e2:1e:5c:
f9:4f:e1:54:fb:ac:d5:24:8b:bf:f7:e5:b8:ec:0b:5f:07:a3:
ac:bb:5f:cc:4d:1f:25:e9:af:5e:8a:89:be:46:97:76:bb:28:
05:85:42:e0:ab:55:a7:9b:64:9b:14:8a:bf:64:1c:a5:32:90:
57:0f:5c:a5:aa:2b:6a:38:18:ed:b1:5d:e2:7d:75:e6:97:83:
6e:4a:92:1f:1b:12:60:1b:43:95:7e:06:4f:34:57:89:40:26:
09:5b:9f:fa:3a:e3:3c:e7:a7:43:cf:a5:bd:9f:5d:50:7c:1d:
8b:d4:78:35:42:96:96:ca:c9:8f:d7:7a:df:59:11:0a:fa:e5:
44:36:b3:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org