Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/898A44488D6711EBB111A564F8AEA228.roa
File: 898A44488D6711EBB111A564F8AEA228.roa (raw, json)
Hash identifier: wEAKaLeNqjrJucX/WW/AFL3FuDlyp6ryToRL9mBBrkc=
Subject key identifier: F5:21:5F:0B:54:3A:A2:06:8A:CE:E9:37:89:7A:E6:42:31:2A:0A:70
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: CE
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/898A44488D6711EBB111A564F8AEA228.roa
Signing time: Thu 25 Mar 2021 12:42:19 +0000
ROA not before: Thu 25 Mar 2021 12:42:14 +0000
ROA not after: Tue 25 Mar 2031 12:42:14 +0000
asID: 10474
IP address blocks: 196.2.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 25 12:42:14 2021 GMT
Not After : Mar 25 12:42:14 2031 GMT
Subject: CN=605c852b-e44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:38:63:e4:26:da:fe:fd:96:a6:db:73:e2:03:
6a:2d:b9:e4:c6:9e:66:ec:e6:85:02:7f:a6:e3:4f:
90:08:91:7b:93:d0:1a:a0:dd:37:70:ba:8f:d1:c9:
06:40:22:ff:9a:6d:3f:8e:dd:1f:57:63:b8:bc:e3:
dd:77:71:2f:6d:21:d0:52:27:ea:cd:0b:6a:cc:fc:
82:c8:04:38:49:2f:2f:fb:58:16:ea:79:c6:1a:d0:
33:5b:0c:9b:c6:1f:27:17:54:f8:3c:be:f4:2a:7b:
90:70:d4:82:7d:10:07:9d:f1:d6:e1:ae:13:59:d8:
4e:38:e5:b9:c7:19:6f:6d:8e:e4:d8:5c:55:cb:2b:
a2:e2:77:fa:67:7c:9f:97:3d:cb:9f:56:4f:4f:af:
af:10:ca:b0:10:2c:4d:56:57:28:32:a7:bf:24:42:
15:48:a6:53:24:4b:84:71:bc:1a:d7:1d:0e:8c:a3:
ec:37:fd:6c:6a:5a:61:c8:8b:0f:d2:8a:e4:90:9e:
08:0c:0f:ac:f0:fb:38:cc:2d:05:64:d6:2d:78:6c:
77:2b:0b:d8:46:cc:27:51:70:31:0c:5d:f3:e4:51:
63:c7:57:1b:36:69:32:b1:c4:ce:27:f2:a2:b8:18:
de:f6:d1:f2:8d:e0:c1:a6:56:0c:10:30:02:39:89:
04:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:21:5F:0B:54:3A:A2:06:8A:CE:E9:37:89:7A:E6:42:31:2A:0A:70
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/898A44488D6711EBB111A564F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.140.0/22
Signature Algorithm: sha256WithRSAEncryption
20:e7:bf:a4:1a:46:56:39:2d:ea:c1:5b:a5:45:83:f9:4b:f4:
4e:d7:a9:bd:f4:51:56:3b:60:97:91:14:ec:73:9f:25:d4:bd:
46:a2:fa:d1:4c:2f:b8:df:63:30:bf:5c:50:c4:5e:d9:79:bb:
68:65:13:1f:d9:55:86:34:cc:44:16:c0:e1:e2:27:b1:4d:a8:
e5:81:6c:c2:44:9a:cc:cb:46:bb:77:f2:7f:d5:99:af:99:6f:
30:e2:b0:44:e9:e1:57:24:de:09:49:4d:10:97:0c:a4:b4:27:
ba:db:31:a8:b1:13:71:2a:88:cf:37:d3:00:1f:b5:2a:7f:24:
86:84:c8:12:61:63:bd:56:5d:d9:e2:48:44:5a:49:b6:45:a6:
1f:54:fd:b2:1f:99:20:d0:05:a8:d3:11:ac:59:26:e1:64:58:
59:83:79:89:4b:50:64:9c:8d:12:b8:07:16:d7:30:32:5c:32:
34:72:3e:7e:d8:2a:98:37:84:98:ff:1f:55:fe:74:44:5a:2b:
9c:e4:cb:80:f4:e4:d9:47:c0:2d:0e:32:36:63:1e:7f:cb:e7:
88:3e:bb:54:2c:3c:cd:93:9f:f0:b7:91:7a:1d:e7:bb:bd:3f:
01:89:95:08:0f:b3:39:6f:77:cb:ea:c7:d2:d2:02:67:cb:aa:
ed:71:9f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org