Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/88D1072A8B9C11EBB2689179F8AEA228.roa
File: 88D1072A8B9C11EBB2689179F8AEA228.roa (raw, json)
Hash identifier: edTLL60NuFowDIfGeNBNHwoqJK3oAGhgA8A9pQhNKmw=
Subject key identifier: FC:55:19:32:82:8F:2E:F8:2A:FF:A0:EB:05:76:EB:EC:01:DF:D2:C1
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0E
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/88D1072A8B9C11EBB2689179F8AEA228.roa
Signing time: Tue 23 Mar 2021 05:56:39 +0000
ROA not before: Tue 23 Mar 2021 05:56:33 +0000
ROA not after: Sun 23 Mar 2031 05:56:33 +0000
asID: 3741
IP address blocks: 196.6.240.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 23 05:56:33 2021 GMT
Not After : Mar 23 05:56:33 2031 GMT
Subject: CN=60598317-974f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ce:d7:03:17:63:f0:c4:33:c6:f5:a1:fb:5c:
25:90:e4:9b:c9:2e:f9:ac:88:0c:41:6d:f0:77:64:
be:57:a9:af:f9:09:cf:7d:1c:5c:6c:63:4c:13:b2:
37:f0:9c:66:de:87:ff:8e:d0:ce:ed:d7:f5:51:55:
dc:29:9d:33:10:ff:f2:07:d1:15:3d:d1:3e:29:9b:
9e:1d:40:a5:af:f2:47:3c:bc:43:5f:5b:6c:36:17:
5d:9f:4f:ac:92:df:77:47:62:59:83:b0:4e:6c:30:
ed:4a:6f:8d:d8:94:ab:12:77:11:e3:ab:26:59:c3:
68:d4:b7:4f:6a:f5:42:fc:5c:1e:c8:45:e8:f5:c6:
7f:3f:9f:2a:a5:fa:b7:b5:3c:71:fe:09:f5:2a:77:
fb:66:99:1a:4b:e1:a3:3f:f9:60:de:e8:3c:47:63:
a1:16:ae:c8:e6:d6:8d:f4:bf:f8:a3:8f:94:b3:78:
3e:f8:0c:1f:bb:04:c4:18:cc:2a:a5:74:97:52:ed:
c6:10:ee:1c:d3:73:53:17:1d:07:c8:51:87:2d:45:
ff:68:76:a6:0f:cd:ae:37:34:2d:bd:03:6c:ea:e6:
8e:6d:ec:c8:89:b9:97:33:97:8e:72:69:d2:aa:f0:
0b:3b:47:d4:69:29:6a:1b:d7:a0:43:ae:bd:46:67:
e2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:55:19:32:82:8F:2E:F8:2A:FF:A0:EB:05:76:EB:EC:01:DF:D2:C1
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/88D1072A8B9C11EBB2689179F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.6.240.0/23
Signature Algorithm: sha256WithRSAEncryption
68:ec:3f:42:b3:44:6e:ab:15:96:16:92:8d:50:93:bf:9d:cf:
bd:e2:25:08:83:c9:c1:ae:30:22:f9:ae:23:ce:6b:3d:5c:52:
97:87:e0:43:c4:c5:35:b7:d5:82:f8:db:dc:b4:a9:5e:cd:75:
67:d7:7d:74:c1:31:b8:41:b0:1d:bc:38:36:bc:e7:d6:ec:36:
ad:78:6f:9f:ae:13:bd:5a:d8:e1:7a:3f:bd:f8:1b:e0:56:e1:
96:7d:e4:08:22:c8:38:65:05:4b:51:1b:4b:23:78:d3:02:e7:
61:98:70:5a:d6:bd:a9:88:6f:03:52:bb:dc:ae:63:ba:eb:80:
48:e3:a9:df:ce:45:76:de:a2:f1:99:b6:a6:d0:57:6a:7f:e3:
86:30:9d:1e:2b:45:82:86:ff:b2:ff:a1:95:4f:ff:e5:7b:09:
89:76:28:fa:a1:09:52:31:ca:c7:a3:e8:d6:39:7a:74:75:b9:
e2:c5:44:0e:39:35:77:76:41:a5:c7:e0:c0:f9:f6:46:9b:6b:
fc:03:b9:c6:0b:41:89:dd:79:05:36:c6:fa:30:3d:22:e1:ae:
2c:bc:fc:87:af:59:60:be:ec:7f:48:ed:3c:c8:c6:90:8a:ae:
77:45:b0:5d:f5:f2:cd:b8:24:74:09:62:2e:d9:5d:e4:cf:2d:
ab:18:28:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org