Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C4F247B6B81D11EBBC29666BF8AEA228.roa
File: C4F247B6B81D11EBBC29666BF8AEA228.roa (raw, json)
Hash identifier: 6LoXYbOzZMYktt7t4bfOxBVG16ri/o25IhAQMnAlD44=
Subject key identifier: 02:9D:44:B8:7F:B5:2F:D4:F6:A8:88:A0:B4:56:F8:91:D5:EB:C6:4D
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0138
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C4F247B6B81D11EBBC29666BF8AEA228.roa
Signing time: Tue 18 May 2021 21:12:36 +0000
ROA not before: Tue 18 May 2021 21:12:31 +0000
ROA not after: Sat 18 May 2041 21:12:31 +0000
asID: 3741
IP address blocks: 196.2.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312 (0x138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 18 21:12:31 2021 GMT
Not After : May 18 21:12:31 2041 GMT
Subject: CN=60a42dc4-9a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:23:1d:87:49:54:4d:b4:80:0b:15:77:5d:4a:
fd:ee:b7:84:6b:86:64:06:cb:4a:57:21:88:5c:e4:
3b:04:c5:b8:a3:29:7c:6b:4c:d9:34:40:ab:82:fc:
b7:81:d3:b2:14:bf:00:ea:70:27:ff:ee:f5:af:2f:
0e:87:bf:a2:1f:fb:c6:2c:dd:71:63:4d:ad:19:8d:
1c:c4:7b:5e:d0:96:f2:92:d1:48:74:7d:c7:5a:f2:
ac:50:c9:5f:86:2a:4b:2b:51:56:85:45:28:8e:46:
a8:68:b1:20:55:df:1a:9d:96:56:ae:7a:99:1c:41:
71:90:00:01:ba:fb:a5:12:f8:ce:a0:4a:9d:91:7f:
4f:e5:4a:7f:b9:91:8f:02:a5:1a:18:88:ec:a0:1a:
90:71:e0:36:e3:d0:bd:ac:4b:d8:33:30:76:0e:ae:
3d:6f:35:67:32:62:18:ac:b4:82:a0:f2:a7:20:71:
c7:8e:52:07:bd:98:84:fd:4b:7b:5c:3c:74:af:9f:
28:9c:e0:99:78:63:57:12:72:7c:af:4a:b3:58:7a:
35:92:13:ec:50:94:99:e9:45:42:bd:6a:f8:3b:00:
4a:b3:9e:4c:60:56:2d:76:67:03:b9:36:ee:c3:38:
cd:b8:97:ce:bd:03:f2:79:5f:96:0c:aa:c8:1e:c8:
73:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9D:44:B8:7F:B5:2F:D4:F6:A8:88:A0:B4:56:F8:91:D5:EB:C6:4D
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C4F247B6B81D11EBBC29666BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.136.0/22
Signature Algorithm: sha256WithRSAEncryption
75:43:5a:ac:f2:07:cd:1a:0a:75:be:a1:bc:1f:4f:55:05:88:
6f:77:dd:2e:5a:96:5b:f9:ee:95:e1:ec:4e:ea:4f:d2:d7:15:
30:98:0b:ea:86:65:3b:37:bb:3d:75:1a:a1:67:da:2c:e6:1f:
23:c9:96:7e:1c:77:29:7c:61:f0:1b:ce:0f:df:b1:e7:15:1e:
cf:67:57:82:96:85:f0:91:59:79:78:e8:23:ed:a5:59:c9:6c:
29:db:36:b0:85:ed:00:16:a5:c0:1b:3e:a4:a8:cf:94:18:e4:
9d:a3:e3:c2:66:bf:73:81:94:07:7c:b1:ce:3d:a9:dc:3b:72:
9e:98:b3:2c:ea:36:81:1d:f9:f4:61:0f:b8:f4:69:41:b1:eb:
03:4d:14:99:72:bd:a4:b2:33:9e:78:4c:16:08:0b:92:b8:fa:
83:a9:74:fe:32:43:9a:57:45:07:b0:99:ed:51:d9:94:15:09:
8a:f3:83:b5:c5:87:5d:da:f6:1d:99:81:ff:3f:9e:3e:f5:15:
15:47:3a:8d:1b:0f:e1:23:e9:47:68:b9:e4:ab:3f:78:9d:15:
8f:bf:31:bb:e6:36:50:44:18:02:6c:d2:c3:42:fa:f1:b4:ac:
cb:1c:b4:bc:21:f9:72:92:f9:8d:1b:f7:99:5d:25:12:6d:8f:
e1:7c:43:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 02:03:53 2024 by rpki-client on console-fra.rpki-client.org