Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A86F73A0947211EE86273D2DD25BE465.roa
File: A86F73A0947211EE86273D2DD25BE465.roa (raw, json)
Hash identifier: 6rFofocBmpNfC5mF/AxBPMkAmHdpdCCji+lhFOesPl4=
Subject key identifier: 06:D3:16:06:16:7C:F1:5B:38:F2:B6:47:00:73:B5:7F:50:5F:B1:07
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0565
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A86F73A0947211EE86273D2DD25BE465.roa
Signing time: Wed 06 Dec 2023 20:04:27 +0000
ROA not before: Wed 06 Dec 2023 20:04:22 +0000
ROA not after: Fri 31 Dec 2049 20:04:22 +0000
asID: 3741
IP address blocks: 196.28.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1381 (0x565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Dec 6 20:04:22 2023 GMT
Not After : Dec 31 20:04:22 2049 GMT
Subject: CN=6570d3cb-0129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:8d:d4:68:cb:f0:6e:cf:1a:a5:71:6e:22:
a8:04:38:f9:6c:de:d1:bd:e8:11:c5:f4:57:c2:65:
55:c3:f2:ef:96:cd:e9:a3:08:7c:5d:67:ce:80:25:
55:df:c5:15:86:5d:4a:af:d3:47:3d:6e:bb:b2:31:
45:d6:48:fc:77:de:a9:15:3f:68:eb:ad:b2:f3:fc:
7b:9b:58:98:97:bc:b4:a0:9a:bf:34:0c:ac:3b:ab:
87:7f:21:39:4b:3e:e3:b1:83:fc:aa:26:b1:28:b3:
54:40:75:46:f5:c8:73:50:e7:45:cf:71:5b:db:1c:
4c:f3:64:bd:e3:98:f0:cc:ac:d1:fd:42:84:16:cc:
cc:2d:d2:08:5a:23:ba:38:15:70:a0:55:e9:88:a3:
b1:9b:95:93:d8:ff:f4:2a:0a:e5:83:68:fc:9c:cc:
01:5a:8b:11:81:d7:90:ce:17:08:64:8b:c6:f7:83:
a9:3a:9b:af:b1:8a:7e:88:c4:a0:12:da:ce:94:4b:
d8:30:30:bc:73:d7:1a:1e:44:c2:57:30:49:76:eb:
1e:e1:31:48:3d:0f:3b:2f:95:6d:55:74:6a:45:ff:
95:82:10:68:7a:cc:69:47:01:49:de:28:c6:23:ae:
e0:ae:cd:d4:e9:5c:81:35:54:16:a6:42:a5:68:5e:
88:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D3:16:06:16:7C:F1:5B:38:F2:B6:47:00:73:B5:7F:50:5F:B1:07
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A86F73A0947211EE86273D2DD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.28.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:94:d2:40:52:8a:ae:78:6c:21:b6:08:af:bd:16:c6:30:af:
e9:6c:fc:c9:d8:78:91:f9:d0:d7:90:21:85:de:80:cc:73:c0:
22:61:6b:e2:15:f6:6a:89:f1:6f:29:cf:c4:73:08:b7:00:18:
69:b0:87:45:8e:0e:d1:f1:44:56:5a:8a:51:39:62:74:9e:57:
2e:2e:0b:c6:8b:3e:21:91:23:7e:d0:af:89:c7:c6:29:11:ae:
7a:8f:17:cb:d3:ab:00:94:ae:d5:ef:52:a4:98:7d:a6:36:9c:
f3:49:9b:da:4d:e8:77:ac:51:6f:fe:92:ae:25:f1:84:77:4f:
85:6c:9c:f4:09:88:e2:8d:17:fe:f5:51:30:16:98:41:2b:e8:
87:32:7b:29:a4:4d:9a:f1:80:15:e9:d6:9f:25:0a:75:27:14:
32:c6:9b:17:69:5c:f9:20:ef:e0:9b:a6:5e:ed:3f:09:71:98:
cd:da:94:6e:93:b5:44:aa:6f:a5:6e:e7:86:c6:c6:01:21:cd:
05:0b:17:9e:06:bd:bf:62:7e:91:2e:9b:84:a9:5c:fe:53:d3:
8d:eb:f4:0d:e3:95:f2:78:72:f3:d5:9c:46:b8:b9:75:cb:86:
01:ee:8f:5c:09:ec:e8:57:04:a7:d2:37:1a:55:0f:74:f9:5d:
37:0c:e8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org