Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DE87CB048C7D11EB9C87FA6AF8AEA228.roa
File: DE87CB048C7D11EB9C87FA6AF8AEA228.roa (raw, json)
Hash identifier: 8VeUgWAX9svdgnD5L1mOq7ztklUXLgTx6f3+t7n98/Y=
Subject key identifier: BA:DA:C8:89:C5:B2:71:BE:B0:C5:7E:5C:67:E4:E5:70:E9:FD:6C:A1
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 89
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DE87CB048C7D11EB9C87FA6AF8AEA228.roa
Signing time: Wed 24 Mar 2021 08:49:40 +0000
ROA not before: Wed 24 Mar 2021 08:49:33 +0000
ROA not after: Mon 24 Mar 2031 08:49:33 +0000
asID: 12258
IP address blocks: 197.81.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137 (0x89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 08:49:33 2021 GMT
Not After : Mar 24 08:49:33 2031 GMT
Subject: CN=605afd24-2b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:23:9c:a7:cd:6f:d2:ef:71:e0:97:e9:9a:2e:
10:80:0f:eb:55:db:93:b5:a9:36:9d:f4:95:18:e8:
95:3f:f8:b4:d7:01:a7:d3:0c:1b:57:01:b2:8e:95:
b3:3f:b6:c2:8e:7d:56:39:16:e5:69:f8:65:97:f4:
49:8d:65:0a:3f:84:6f:9a:39:92:cf:91:09:67:13:
e9:80:d3:54:d8:b4:c0:ba:5c:32:9c:74:c0:ea:da:
16:fe:63:ff:05:87:1b:cd:44:1c:fe:bc:17:76:11:
c7:bf:be:40:aa:04:3e:69:4d:9b:08:32:09:7e:61:
a7:32:3b:6d:73:b3:57:26:4d:ed:31:5c:e8:d0:f3:
60:4c:55:09:c2:2c:3e:ec:00:06:76:2f:8d:0d:26:
53:e7:fc:56:e6:ba:15:c5:a4:b8:57:46:47:f0:10:
ee:1c:2c:51:62:72:a3:90:7b:0d:f0:c3:0a:b3:04:
6b:a9:72:93:36:c7:03:39:c6:3c:dc:5d:cb:96:ed:
d0:b3:7e:c8:44:a7:6b:4d:ff:5b:bc:36:5d:a1:ed:
f1:19:68:33:95:04:5b:67:c1:12:91:4a:32:f3:8d:
2d:63:1b:46:46:b8:62:80:b9:a1:36:9b:4f:1a:b4:
7f:a2:28:7c:5c:23:05:84:69:86:3b:fa:0d:51:74:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DA:C8:89:C5:B2:71:BE:B0:C5:7E:5C:67:E4:E5:70:E9:FD:6C:A1
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DE87CB048C7D11EB9C87FA6AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.81.154.0/24
Signature Algorithm: sha256WithRSAEncryption
70:47:cd:40:6d:d3:ec:49:15:96:ee:3e:3d:fd:09:dd:5e:e1:
6b:23:40:01:84:ed:2d:5d:e9:fb:1c:76:49:ce:09:6d:2b:e9:
a2:c9:72:66:4f:49:7a:ab:cf:6f:9a:78:54:2d:58:27:14:0f:
bf:f3:ab:ed:78:66:c3:3a:f3:51:e8:05:27:01:05:3a:f3:a4:
99:e3:68:3b:3a:23:50:f4:4d:df:61:f5:0b:13:2b:16:60:8a:
04:7b:6e:88:3f:19:43:0d:18:76:51:7a:30:99:a7:9b:3d:8a:
67:87:90:de:7d:f3:f2:43:b2:42:f5:25:18:35:10:ac:56:9f:
7b:d6:8a:f0:bf:39:b9:83:90:88:73:9b:ba:11:01:6b:b5:7a:
90:07:bc:c3:22:6b:ad:9e:af:39:a7:d8:13:eb:2b:4b:6d:5b:
65:36:dd:d9:a2:1f:05:a6:45:d4:95:1c:32:d2:75:95:1f:79:
48:6b:65:ac:27:96:31:a2:cc:ec:5a:96:3f:7e:1c:fc:32:cd:
96:b4:6b:89:94:c4:a1:55:6e:29:78:38:df:8f:da:70:e2:87:
54:9f:4e:79:7b:5c:26:03:39:32:70:59:97:52:2d:5c:d6:74:
ee:ee:15:62:86:0c:ef:ac:34:0e:17:a2:5d:b1:da:cc:73:63:
7f:82:87:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org