Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/EE4EDD788C5711EB892A913EF8AEA228.roa
File: EE4EDD788C5711EB892A913EF8AEA228.roa (raw, json)
Hash identifier: JU8lhLQ29aqa16Jis9jzw3xuXHM+hC6MfdV0Wv2LrhA=
Subject key identifier: 57:D0:52:22:06:D9:B8:E2:C1:01:CD:0C:20:FA:1D:06:C8:77:01:FC
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 1B
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/EE4EDD788C5711EB892A913EF8AEA228.roa
Signing time: Wed 24 Mar 2021 04:18:05 +0000
ROA not before: Wed 24 Mar 2021 04:18:00 +0000
ROA not after: Mon 24 Mar 2031 04:18:00 +0000
asID: 3741
IP address blocks: 196.26.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 04:18:00 2021 GMT
Not After : Mar 24 04:18:00 2031 GMT
Subject: CN=605abd7d-a963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cf:40:0b:6e:cd:f4:fa:3c:59:2f:63:b9:98:
37:74:99:78:7e:64:b6:f6:fa:62:1a:bc:c9:f3:c5:
c8:d4:a7:64:16:2c:ac:aa:99:1b:85:16:36:3a:36:
97:60:98:04:b2:ea:3b:26:71:c3:b9:0a:56:ec:8f:
01:27:2b:a7:fa:7c:47:38:26:86:1d:ad:44:12:f8:
83:fc:d8:11:92:47:88:9d:f9:d0:52:e4:91:44:3d:
0a:80:75:cc:41:b1:b9:21:2b:81:24:3e:84:c9:4d:
81:11:dd:fc:49:d3:2b:64:bb:1e:e3:4c:ff:02:85:
5c:79:d6:7f:c8:9b:b8:55:31:66:44:da:d0:2b:d3:
fb:0e:f2:f0:d1:c9:04:1c:70:ff:ff:43:8a:1a:e8:
09:17:84:6f:26:aa:ad:1b:02:c3:86:c0:f3:fc:90:
48:e0:0d:94:2a:31:a5:65:0d:58:5b:d8:a7:9c:5b:
ef:c4:ac:94:d3:ce:96:51:6d:e5:bf:50:4e:ec:11:
63:0d:6d:80:bd:16:b7:e6:6a:cd:59:8b:6f:d2:1b:
16:4e:5f:7a:d7:72:6c:89:28:39:77:e6:fc:82:8e:
69:12:f6:e8:6f:1c:2a:99:8d:95:f3:b4:0b:7e:9d:
75:02:15:0c:99:6e:4d:2c:23:34:db:9a:1d:4b:51:
da:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D0:52:22:06:D9:B8:E2:C1:01:CD:0C:20:FA:1D:06:C8:77:01:FC
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/EE4EDD788C5711EB892A913EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.26.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:54:c4:d1:2b:4a:cb:ea:0e:5b:14:0d:1f:67:2f:fc:ef:35:
1d:a7:30:12:20:e5:78:e5:3a:5b:fb:4c:ea:08:4a:ec:03:be:
45:ff:21:56:46:a7:44:32:64:dc:56:f5:61:49:69:51:4b:7d:
fb:05:84:67:80:9b:03:e9:f3:1d:67:22:09:8a:35:db:7f:df:
4c:97:a1:19:b2:49:3c:39:94:c2:d3:20:c5:eb:a1:af:ee:2c:
d2:b3:c0:1f:f7:2d:e9:31:e7:66:8e:6e:e0:e5:60:8f:67:a3:
03:68:e1:80:35:c2:44:5c:65:d1:42:5b:69:0d:4f:58:8f:98:
01:d6:89:57:6b:05:17:73:1c:1c:00:87:24:c3:c8:6d:a1:95:
0d:74:00:14:8d:c0:8b:0c:a9:03:a9:cc:9e:f8:1f:a0:96:28:
95:15:2d:32:d2:54:df:eb:51:73:51:85:b4:24:a8:50:a8:ad:
4f:b2:04:68:de:83:df:e9:0e:7e:3f:f7:04:a9:0a:cd:30:73:
6c:b8:a4:49:ca:05:d0:9b:da:9e:0a:e7:81:f8:57:6a:b5:ce:
ee:f6:89:e0:f6:ef:1a:7b:c4:e1:30:f1:d0:2d:91:0b:dc:65:
c2:09:ca:a8:22:23:f2:0a:7e:08:6c:8d:bf:16:0d:4b:90:3a:
8b:fb:a1:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org