Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/FBA64D00B82411EBA1C53475F8AEA228.roa
File: FBA64D00B82411EBA1C53475F8AEA228.roa (raw, json)
Hash identifier: VpqC/EtbU3JKltheCezfaAQ1e4RjBlsobRD+t2qG+QE=
Subject key identifier: 65:52:8E:6C:35:AA:62:20:AF:86:6A:E7:89:12:4D:65:EE:ED:23:26
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0143
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/FBA64D00B82411EBA1C53475F8AEA228.roa
Signing time: Tue 18 May 2021 22:04:15 +0000
ROA not before: Wed 19 May 2021 22:04:07 +0000
ROA not after: Sun 19 May 2041 22:04:07 +0000
asID: 3741
IP address blocks: 196.2.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323 (0x143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 19 22:04:07 2021 GMT
Not After : May 19 22:04:07 2041 GMT
Subject: CN=60a439de-4542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:71:23:2b:75:89:06:2f:dd:42:3d:c1:4b:3c:
97:de:89:fd:1c:e3:3e:5c:9c:84:e8:a7:77:cf:6d:
dc:c8:0c:7f:b5:9c:ce:e6:f1:ad:32:e4:88:fe:02:
32:9d:23:d9:50:74:22:d2:8d:55:47:86:fd:a7:8f:
cf:e5:58:21:db:9c:50:39:1e:ee:9c:dd:18:94:1e:
3b:bc:3c:de:1e:0a:a4:a8:86:e7:12:b1:c3:27:05:
72:74:c5:5b:85:56:b2:30:51:6d:57:e2:43:40:7c:
ba:33:ee:59:3a:71:1d:7a:ca:1a:8d:c8:8c:02:8d:
77:48:6c:92:b0:ad:39:92:ac:7b:33:5c:a5:e0:0e:
77:c1:94:78:a6:88:26:a2:8b:49:f6:1c:ae:e0:f2:
8d:43:c3:af:58:be:d1:99:de:15:aa:82:c9:12:66:
c7:f6:22:d1:02:fc:cd:f0:4f:27:21:12:fc:23:14:
b3:a3:53:a5:ee:92:67:66:66:ca:5b:35:63:a9:ee:
54:3b:f0:ad:16:12:20:55:2c:ed:79:d0:f7:5f:96:
af:4b:f8:01:f4:2c:95:34:75:4a:f5:2a:a2:59:91:
8b:86:eb:1f:80:63:a9:a8:76:6e:3c:c3:2c:4d:57:
87:08:11:9b:44:78:7a:5a:c5:2c:c3:f6:0c:fa:1e:
4d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:52:8E:6C:35:AA:62:20:AF:86:6A:E7:89:12:4D:65:EE:ED:23:26
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/FBA64D00B82411EBA1C53475F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d3:4c:49:18:09:63:f8:a4:d9:a8:e8:a2:6e:a4:02:a2:ef:
72:88:d2:cf:5d:e5:38:40:50:19:35:d5:72:cf:e6:fc:a3:02:
85:3d:2a:f2:c1:70:76:ed:49:54:37:c9:c3:81:b8:e4:8a:19:
a1:88:5f:b6:20:f3:a1:52:0f:bf:54:ad:38:c3:7b:1e:ca:7a:
92:d8:96:eb:e1:47:30:8d:56:73:5f:06:89:25:27:74:b9:f7:
9a:0f:0c:df:9e:45:c0:e6:26:2b:e4:8a:25:23:ce:f5:b9:8c:
dd:bb:e7:8d:37:8e:c4:66:80:e6:85:c7:d2:87:02:0b:98:4a:
22:d9:3a:01:d3:cb:f5:16:11:d3:bd:70:b1:67:d2:5f:35:82:
de:1d:d1:0f:ca:07:e8:4a:33:42:c0:6d:98:99:fb:6d:04:15:
aa:f5:e3:4b:3b:e6:3e:96:56:2e:2c:ae:d4:f8:23:45:43:fa:
5e:45:e5:2d:e8:68:92:3a:29:7c:e2:5d:78:9c:cf:20:e4:11:
83:b4:27:d9:0c:7e:ac:e5:de:64:0c:b9:23:72:13:8c:8e:2c:
e8:2c:2c:cd:d2:ee:fc:c6:2e:1a:27:d0:55:ac:d3:5a:d0:9a:
37:68:a1:42:28:6d:12:d1:26:93:c2:7f:c9:ed:b7:75:6e:fe:
d8:e4:e2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org