Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C5D9326CBCD111EB8CF83182F8AEA228.roa
File: C5D9326CBCD111EB8CF83182F8AEA228.roa (raw, json)
Hash identifier: jqgGqGPVTXyh0wUXBexsI7dVOSj6mj1oDxfjNCsjkxA=
Subject key identifier: 40:E9:FC:46:0A:1F:56:86:71:2D:DD:2C:DB:AF:D1:53:12:70:BD:69
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 015E
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C5D9326CBCD111EB8CF83182F8AEA228.roa
Signing time: Mon 24 May 2021 20:51:12 +0000
ROA not before: Mon 24 May 2021 20:51:06 +0000
ROA not after: Fri 24 May 2041 20:51:06 +0000
asID: 3741
IP address blocks: 197.81.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350 (0x15e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 24 20:51:06 2021 GMT
Not After : May 24 20:51:06 2041 GMT
Subject: CN=60ac11c0-911a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ff:45:71:06:48:6f:0a:93:84:7d:c1:5f:3b:
70:ce:03:77:3f:f6:7e:c9:74:97:72:7e:4b:1c:7f:
d6:4b:0c:9e:ef:9f:7a:88:57:76:82:26:42:b9:27:
d9:e0:93:0f:80:54:65:76:04:2c:ed:3f:b1:f6:7b:
3d:36:86:09:0f:3c:fe:eb:32:99:4c:42:a0:f1:8f:
d2:da:45:b0:50:19:85:21:2d:61:4b:1e:23:a4:85:
dd:d0:08:ad:ea:cb:03:fa:3c:bf:3b:44:db:eb:41:
44:64:72:28:6b:d9:21:6b:33:68:72:70:e5:e4:49:
56:62:02:9f:c1:73:07:ca:50:b1:a6:72:5b:4a:18:
b0:85:5c:d4:6c:7a:69:83:d4:50:ef:2c:7f:40:fd:
a1:f4:4f:78:d8:17:b3:98:05:e9:ee:18:21:42:93:
c7:a8:76:91:30:53:0a:98:c3:3f:7b:51:32:86:b4:
3a:e5:86:0c:2f:82:6a:61:fe:54:71:cf:22:2c:ef:
8a:dd:44:4e:05:15:58:99:3b:0b:1e:f2:05:74:16:
4b:e6:1b:f8:6b:7e:af:0c:3a:2b:5a:54:e0:16:82:
35:83:cc:77:ad:d0:67:14:77:49:b3:d7:63:f7:03:
9a:f4:5f:e0:68:b7:0b:2e:e5:76:84:2a:3e:2d:d7:
b6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E9:FC:46:0A:1F:56:86:71:2D:DD:2C:DB:AF:D1:53:12:70:BD:69
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/C5D9326CBCD111EB8CF83182F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.81.157.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:b6:a8:52:57:ef:66:c5:d6:4f:34:85:6c:ea:e1:52:5c:ac:
2e:1a:af:79:a1:6a:cb:97:8a:bf:8b:11:e2:99:d8:00:4c:4e:
da:a9:20:a9:9f:7d:d1:d5:8e:54:15:05:df:16:15:ae:71:59:
2c:6b:fd:f3:b8:a4:7b:eb:a5:70:56:f4:6e:e1:6e:ef:32:04:
ab:66:25:c6:01:e3:0e:3a:1b:2e:23:b7:e5:96:b4:3d:bb:94:
f9:92:b8:9b:d6:68:2e:b8:e1:b8:de:13:b5:c2:97:2d:1d:81:
f0:04:72:8e:c3:44:e4:62:f9:09:84:1d:e0:fe:b5:bf:be:3e:
48:8d:42:f7:66:f7:5c:17:95:b5:5e:14:36:d0:d6:ad:47:de:
a0:63:25:49:50:eb:79:07:74:15:53:d1:27:2d:c6:e1:37:1c:
71:a6:91:bd:98:b4:38:a6:c0:0d:a3:1e:4f:13:d5:ff:21:fa:
3b:99:4b:d6:9a:94:dc:69:71:18:c1:67:5b:df:cd:ec:21:08:
65:d3:c8:3f:5a:b2:d7:18:7e:d6:ca:13:5b:71:7c:d4:27:00:
55:f8:ed:5f:c5:db:de:02:35:5a:2a:7e:46:3c:72:24:a2:b2:
fd:17:ec:39:e0:67:5d:b3:41:c3:9a:d2:0f:f2:fb:23:75:9c:
4d:70:aa:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org