Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/9FA6A9F8378011EF9BFB9457762E951A.roa
File: 9FA6A9F8378011EF9BFB9457762E951A.roa (raw, json)
Hash identifier: wj9a4mHGoFgtEohJjZW0cwqxLqU59lqCjzjHeBjLxnY=
Subject key identifier: 4F:9D:FC:8C:0D:96:21:6E:E0:9F:72:44:5E:26:70:14:8B:B9:AE:E4
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0669
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/9FA6A9F8378011EF9BFB9457762E951A.roa
Signing time: Mon 01 Jul 2024 08:05:05 +0000
ROA not before: Mon 01 Jul 2024 08:05:01 +0000
ROA not after: Mon 31 Jul 2034 08:05:01 +0000
asID: 20011
IP address blocks: 197.87.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1641 (0x669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Jul 1 08:05:01 2024 GMT
Not After : Jul 31 08:05:01 2034 GMT
Subject: CN=66826330-1537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:75:36:2d:3c:77:75:2e:3e:30:6d:7c:24:be:
2b:eb:f5:37:cc:26:77:fe:15:0e:6c:ac:6f:74:97:
76:33:9a:ba:54:7a:02:4a:97:fb:43:47:05:95:8b:
79:5b:6e:89:5c:19:68:d8:50:78:e3:41:61:cb:20:
ee:b0:3d:cf:b2:a6:46:ed:bf:ce:7c:1e:57:50:97:
d1:f6:39:78:c6:2c:49:3b:73:f2:3d:49:c0:e6:20:
3a:a1:67:85:31:5d:c0:4d:7f:72:c1:7e:f5:a5:60:
9a:00:17:37:ab:16:3c:31:e1:5b:04:65:cc:95:54:
0d:19:49:73:96:30:fb:9f:39:12:2b:e4:bd:b5:52:
81:37:ca:60:81:a9:91:5b:d1:9e:9b:76:05:0a:80:
78:bc:08:1b:a7:04:d6:49:bd:04:c9:98:d4:09:28:
f8:9e:bc:9f:3e:a8:10:aa:32:f0:f7:e8:10:43:bc:
d6:04:80:95:6a:39:11:b6:92:1a:9f:55:3a:60:16:
51:d0:e4:76:32:b5:7e:3a:06:57:8c:ee:a7:59:0c:
47:cb:f5:eb:36:92:3c:92:02:53:22:f9:54:05:53:
39:98:8b:7a:96:d1:78:59:4f:fb:3b:29:c8:59:25:
63:6e:d9:d4:3e:6a:c3:cb:42:ce:c0:3f:1f:ac:d8:
06:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:9D:FC:8C:0D:96:21:6E:E0:9F:72:44:5E:26:70:14:8B:B9:AE:E4
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/9FA6A9F8378011EF9BFB9457762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.87.112.0/21
Signature Algorithm: sha256WithRSAEncryption
20:26:b2:9b:5f:4b:60:26:ef:8d:0b:3d:38:c9:1e:26:65:14:
6a:70:93:41:aa:a1:47:68:88:98:4b:44:56:8a:40:2a:91:64:
ad:bc:11:33:ea:3d:00:2c:b2:55:98:86:ac:f0:68:59:91:5e:
0f:47:12:d8:30:09:b3:34:7e:4e:d4:18:6c:f8:34:7d:ee:ee:
84:6e:d8:3d:0e:4d:9e:58:9b:7e:60:12:9b:61:5d:c1:23:11:
20:c7:83:95:3e:ca:b1:a8:e1:88:af:10:a1:35:4d:4a:4e:61:
10:bc:06:7b:51:6d:78:9d:06:b7:47:b0:27:7d:5e:4d:41:61:
86:f6:fb:ba:a2:22:3e:fa:42:3b:35:6b:9f:fd:72:72:3e:d1:
5d:0c:be:2b:f2:22:af:2f:c0:fc:a4:80:da:6d:0d:83:90:fa:
57:48:ed:62:9b:76:37:92:10:9e:54:f6:5b:ee:60:21:c3:0f:
59:30:39:db:61:a7:91:fb:51:60:5a:cd:89:19:cb:2e:67:d1:
6a:f1:4b:c6:b4:e8:ae:ea:cc:dd:90:8d:e2:97:3d:67:63:52:
e7:a5:65:c2:0c:c4:85:ad:38:31:fd:cb:b2:b7:50:2b:7b:c1:
32:c0:f8:e6:ad:48:93:d4:88:cb:e7:7d:6f:bb:9f:40:b6:1e:
d9:08:db:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org