Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/F71AA460B82011EB870DD46FF8AEA228.roa
File: F71AA460B82011EB870DD46FF8AEA228.roa (raw, json)
Hash identifier: O120KTYAuAX3VljgeJRiFXKlypvvjQUUSrk80iV88rU=
Subject key identifier: 94:01:7A:65:8B:C6:C0:B6:E5:70:84:15:A9:C6:90:1F:43:14:CE:93
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 013E
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/F71AA460B82011EB870DD46FF8AEA228.roa
Signing time: Tue 18 May 2021 21:35:29 +0000
ROA not before: Tue 18 May 2021 21:35:23 +0000
ROA not after: Sat 18 May 2041 21:35:23 +0000
asID: 3741
IP address blocks: 196.2.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318 (0x13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 18 21:35:23 2021 GMT
Not After : May 18 21:35:23 2041 GMT
Subject: CN=60a43321-13be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:2b:78:bc:45:63:1b:06:a5:38:03:86:3b:
31:df:4d:b1:11:aa:5a:51:89:58:da:6b:1a:6a:78:
fc:31:b8:67:06:81:5b:be:d6:68:c1:ff:54:49:86:
29:93:dc:b0:a1:c5:08:cf:87:3f:85:8b:c9:e6:22:
34:a4:4b:a0:63:df:3e:77:7a:7f:e7:cd:c3:f7:4d:
cb:b4:71:c6:11:4f:19:be:69:83:d2:15:39:1d:35:
22:50:1a:16:da:30:c2:04:46:c4:f5:07:bd:e8:66:
cd:2c:7c:5c:1b:40:27:24:aa:6d:82:1d:ee:36:06:
18:8e:6d:b2:fb:3d:bd:d8:e3:c4:cd:b3:c8:87:ad:
9c:4d:87:ed:03:6a:90:bc:5b:5d:ae:d4:80:cc:1a:
05:67:dc:90:45:2d:da:ba:fc:9e:e7:ab:c7:1c:4f:
01:41:74:50:51:6c:bd:93:b1:8e:8a:e1:dc:f5:1c:
cf:b5:f1:7a:0d:b1:ec:93:b6:24:6e:67:5f:48:85:
b8:a9:b0:03:17:99:65:70:34:2a:55:53:8a:d8:64:
a8:00:e3:ec:59:a0:41:af:67:61:74:4e:6c:25:12:
fa:8d:27:08:71:e7:b7:30:0f:dc:e4:58:54:15:9c:
6d:0a:99:c8:33:bf:ba:3c:31:97:31:13:28:28:70:
9e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:01:7A:65:8B:C6:C0:B6:E5:70:84:15:A9:C6:90:1F:43:14:CE:93
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/F71AA460B82011EB870DD46FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:f5:6d:91:c4:07:fb:02:8b:d4:d0:ec:43:48:79:5d:0a:13:
54:75:a9:51:42:9f:f0:8f:42:86:13:14:1e:37:fe:32:26:a2:
6c:1f:1a:53:9c:f4:90:ef:6c:82:a3:65:c6:96:dc:dc:89:bb:
6d:7b:88:cc:84:e0:91:ad:6a:79:f2:d8:09:c2:ec:05:be:b6:
2b:4c:b5:c1:8e:46:25:0e:66:3e:78:14:a2:de:21:8b:a4:11:
75:31:ed:fd:30:51:3a:73:2d:56:a2:66:f0:ba:41:e9:34:07:
79:ef:0f:6d:8e:e6:ab:a7:29:52:f4:a8:2a:fa:67:f4:ea:bb:
96:7f:42:93:3c:5f:3b:02:58:d4:b2:de:fb:19:aa:eb:5d:4a:
dd:4a:f1:9d:68:d9:44:3d:9a:99:75:6c:66:e6:fc:cd:ae:d6:
65:fc:a3:f7:23:7e:fb:15:71:8f:4f:65:4c:3a:24:d9:57:4d:
f4:9c:25:bf:28:37:fa:62:6e:c7:32:4e:aa:65:9c:38:91:ea:
ee:d0:e6:32:cb:2a:c6:12:82:29:29:c3:c7:a1:b4:22:03:41:
d5:3c:5a:b0:5b:40:d3:74:ea:e9:c3:ea:8c:31:7e:b0:d7:7e:
20:7b:26:f5:7d:0e:6e:ac:0a:84:eb:7e:97:54:60:ce:8e:32:
72:35:8f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org