Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/BC25F7AE378111EF8EB5A05C762E951A.roa
File: BC25F7AE378111EF8EB5A05C762E951A.roa (raw, json)
Hash identifier: WOfV4KQJyBnNrgEw34a9rGwsKdj6HKy5a/DIf4b7BRQ=
Subject key identifier: B9:30:3B:8C:0C:52:43:3D:33:EC:9E:C4:39:32:96:73:BB:95:75:92
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 066D
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/BC25F7AE378111EF8EB5A05C762E951A.roa
Signing time: Mon 01 Jul 2024 08:13:02 +0000
ROA not before: Mon 01 Jul 2024 08:12:58 +0000
ROA not after: Sun 31 Dec 2034 08:12:58 +0000
asID: 20011
IP address blocks: 197.87.200.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1645 (0x66d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Jul 1 08:12:58 2024 GMT
Not After : Dec 31 08:12:58 2034 GMT
Subject: CN=6682650e-0682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7e:60:34:52:b1:6b:b9:4f:5d:f2:4f:40:8f:
73:17:91:7d:7e:e5:92:d7:9d:9c:ae:ca:59:90:47:
41:b2:c5:62:0c:45:56:e9:f3:eb:66:f9:b5:db:65:
5f:61:63:cf:92:ff:d6:fb:fd:bd:55:af:cc:d6:59:
03:66:ed:ed:ef:37:2b:cf:7b:b1:b2:75:05:93:ed:
4f:f8:62:ef:48:e2:b8:69:9e:3d:b7:49:ba:ac:21:
ac:a5:3c:aa:72:ab:ee:ba:a1:27:a2:52:72:2b:9e:
1d:ec:ef:08:2b:47:a8:31:11:d0:ca:f6:a4:ae:31:
9f:aa:ee:37:c5:dd:6c:5f:e3:cd:38:5e:93:8e:f3:
87:e2:0b:48:0a:39:70:1a:bb:21:5d:48:14:f0:7a:
a6:e7:a5:81:ae:95:50:1f:f7:a9:a2:3e:a0:2b:f0:
46:fa:94:2e:74:28:9a:d2:ec:a4:3b:78:de:5f:11:
d7:bf:ac:3b:80:4e:f6:d6:0c:ab:8a:64:34:a1:c4:
10:6a:25:cb:f8:3f:a1:cb:31:01:37:a9:cb:53:a5:
ee:81:ec:73:66:aa:f5:21:15:48:5f:db:0a:c7:33:
c2:54:8c:e6:a9:9e:f2:b7:f3:a0:82:80:22:71:8d:
d1:b2:24:6b:4f:43:73:ed:d6:d4:00:0b:48:2b:6e:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:30:3B:8C:0C:52:43:3D:33:EC:9E:C4:39:32:96:73:BB:95:75:92
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/BC25F7AE378111EF8EB5A05C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.87.200.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:68:c1:64:0f:fe:ec:1b:e6:4e:29:35:c2:69:ba:9e:50:d7:
19:db:93:d6:2e:b5:95:3e:3f:a6:6f:9f:8c:2e:65:a7:91:39:
09:60:7c:a9:44:2b:96:1a:d3:a5:af:72:b8:c6:84:79:08:58:
58:cd:d9:b6:0d:f3:4f:6e:63:5b:45:b2:d8:8e:1e:2f:e7:b7:
ff:5a:f0:04:15:8b:e1:eb:65:b5:a3:a9:b5:5e:ae:ad:7a:44:
ea:86:dc:a9:6b:b4:9a:91:a4:da:09:b2:f5:91:58:af:e3:07:
c2:94:10:ea:bf:09:49:68:73:5d:84:a0:c6:06:e5:ad:28:26:
49:63:1d:a2:44:c1:29:65:81:8c:82:eb:89:5a:f0:9f:87:b5:
c8:cc:dd:82:04:54:41:b3:8c:87:53:60:7b:eb:26:d8:c1:ac:
ac:d8:98:6d:48:f8:8d:5f:e4:ce:43:10:55:90:da:e7:29:4f:
6d:c3:f0:1b:b5:b1:6e:71:b8:c1:30:e1:ff:d0:22:de:b4:a1:
3b:4a:00:09:f4:a8:83:c7:b7:b9:db:93:e4:3f:e7:f8:ae:82:
e7:e3:aa:be:ba:33:78:05:11:a1:13:0f:95:91:cc:7b:6c:9d:
f3:c6:48:72:a9:8e:ee:e8:3b:31:a6:25:e1:8b:bd:59:d9:db:
78:c8:6f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org