Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CCC4FDEA8C6611EBB1747552F8AEA228.roa
File: CCC4FDEA8C6611EBB1747552F8AEA228.roa (raw, json)
Hash identifier: ddQtxWVqNOgBrKuzdwRIu7Gbd6RAf6o8i0Y5ggZjXK0=
Subject key identifier: 1A:71:0D:3A:01:58:3D:CC:3D:02:66:FC:10:BE:F5:09:72:9F:17:D4
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 6A
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CCC4FDEA8C6611EBB1747552F8AEA228.roa
Signing time: Wed 24 Mar 2021 06:04:32 +0000
ROA not before: Wed 24 Mar 2021 06:04:22 +0000
ROA not after: Mon 24 Mar 2031 06:04:22 +0000
asID: 10474
IP address blocks: 196.22.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106 (0x6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 06:04:22 2021 GMT
Not After : Mar 24 06:04:22 2031 GMT
Subject: CN=605ad66f-720d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2a:36:5a:60:9c:c7:de:93:20:1e:46:8d:a9:
0e:75:36:27:bb:0c:4a:b8:2a:b6:11:12:27:37:fd:
30:9c:f1:6e:a8:17:b3:72:6b:81:20:be:0f:3b:9f:
94:55:e8:ac:8c:e6:18:59:e5:39:1a:ba:02:b4:85:
31:07:9d:51:b3:61:5e:c8:8c:25:6e:0d:9d:67:76:
54:78:5d:fd:d0:67:75:f8:a6:0f:16:32:df:64:cb:
94:35:61:17:7d:6a:0e:24:32:4d:21:a0:be:a2:96:
3b:fb:1c:0e:fe:26:f3:03:f8:88:cf:0c:48:93:a5:
39:86:5e:1a:82:b3:06:64:28:79:53:be:9c:83:25:
2a:92:d6:ff:87:89:44:36:fa:a2:e8:3f:27:2d:9d:
db:f0:e0:c5:9f:5b:59:05:2b:43:ac:2d:62:e5:28:
6d:60:06:54:ec:dc:0f:35:94:ae:f4:44:f0:19:d1:
57:f6:46:c2:2e:ba:df:d8:b8:6d:14:ac:c0:e2:48:
d6:5c:28:a1:1e:77:54:73:9a:82:aa:18:27:c7:5f:
4e:7d:82:51:73:61:34:25:73:03:78:14:90:18:d6:
d5:c3:d6:d9:b1:39:55:a9:00:33:35:b1:fd:63:f7:
dc:71:88:70:ef:7c:5b:21:63:61:4a:ee:cf:3e:6f:
3f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:71:0D:3A:01:58:3D:CC:3D:02:66:FC:10:BE:F5:09:72:9F:17:D4
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CCC4FDEA8C6611EBB1747552F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.22.160.0/19
Signature Algorithm: sha256WithRSAEncryption
40:68:d7:7f:b8:f3:ae:aa:9b:45:02:66:db:66:80:32:f6:ff:
10:85:70:0e:0f:00:ef:91:b0:b3:9f:18:09:e8:36:da:61:74:
ab:05:3d:ef:fe:e9:ac:b9:dc:40:0a:c2:b3:d1:5d:e5:30:60:
4d:a8:21:86:2a:62:30:28:dc:45:4d:0b:1e:d0:aa:c1:9c:6d:
e8:86:64:b5:4b:d6:53:6d:48:ba:0e:d1:7a:60:b9:85:6f:5e:
38:7a:f1:18:42:80:6b:24:ac:58:ed:a7:7b:fa:fc:22:20:f8:
56:1e:5d:73:d4:0a:d6:b5:76:5e:84:6f:bc:c7:3f:9c:26:b1:
20:c6:54:ab:7b:ae:77:a8:86:8b:c9:37:43:e4:f6:57:17:b5:
4c:7f:b6:b8:c1:2f:66:e0:2f:31:02:72:67:2a:00:9b:47:04:
47:ee:f4:a7:f3:a3:d4:d9:33:6d:ce:d4:d5:1a:ae:37:90:99:
ad:74:82:be:e0:9a:35:f1:03:cc:d1:6e:5e:41:18:f3:5c:82:
f6:ef:44:90:07:2d:98:34:c2:1b:e1:88:95:1d:7e:9b:cc:f1:
a0:b6:de:a7:6e:dc:4c:14:62:48:0e:6f:11:65:ce:0e:99:d5:
17:8b:45:7f:e2:80:12:b7:d9:f0:8e:00:03:73:45:51:6d:92:
f9:eb:52:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org