Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/2295CF68523711EEB515D05D4AD9E6FC.roa
File: 2295CF68523711EEB515D05D4AD9E6FC.roa (raw, json)
Hash identifier: KlQWt1tn1KH/CPgIYBRda65+Ao1w8Du+dkLesEZUQIQ=
Subject key identifier: B2:94:86:93:45:C6:9F:29:FD:00:AB:51:2C:D6:13:AF:0C:05:69:E2
Certificate issuer: /CN=F367B216LA/serialNumber=403AD01405E97B388CB83E696D0B9D80BBA0B8B8
Certificate serial: 03F3
Authority key identifier: 40:3A:D0:14:05:E9:7B:38:8C:B8:3E:69:6D:0B:9D:80:BB:A0:B8:B8
Authority info access: rsync://rpki.afrinic.net/repository/lacnic/QDrQFAXpeziMuD5pbQudgLuguLg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/2295CF68523711EEB515D05D4AD9E6FC.roa
Signing time: Wed 13 Sep 2023 13:12:05 +0000
ROA not before: Wed 13 Sep 2023 13:12:01 +0000
ROA not after: Fri 30 Sep 2033 13:12:01 +0000
asID: 3741
IP address blocks: 200.16.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/QDrQFAXpeziMuD5pbQudgLuguLg.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/QDrQFAXpeziMuD5pbQudgLuguLg.mft
rsync://rpki.afrinic.net/repository/lacnic/QDrQFAXpeziMuD5pbQudgLuguLg.cer
rsync://rpki.afrinic.net/repository/lacnic/1b-H2jRmyC2MbY40473YW8050us.crl
rsync://rpki.afrinic.net/repository/lacnic/1b-H2jRmyC2MbY40473YW8050us.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/lacnic-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:25:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1011 (0x3f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216LA/serialNumber=403AD01405E97B388CB83E696D0B9D80BBA0B8B8
Validity
Not Before: Sep 13 13:12:01 2023 GMT
Not After : Sep 30 13:12:01 2033 GMT
Subject: CN=6501b525-d15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:18:67:47:c4:af:20:23:e3:4f:51:2d:13:13:
15:16:90:25:6f:82:9c:72:83:2e:5b:91:fd:a3:ff:
0b:d2:d5:33:72:40:c5:fb:7b:94:58:44:ff:98:71:
f0:f7:0a:e5:a3:46:10:b4:98:14:9d:04:e6:14:41:
bd:12:df:8a:7c:fd:c5:8c:68:1a:00:e7:79:ce:2c:
e3:39:18:18:34:67:dc:57:97:ed:c9:b6:ba:c4:c1:
db:0f:42:1e:51:fc:18:b8:7d:57:3f:bd:0f:8b:89:
5a:16:14:af:6f:2a:bd:a2:c4:6a:1a:7f:3a:a3:c5:
87:59:ab:0f:f2:c8:28:a3:fe:b0:9c:b8:4f:97:4b:
07:6f:36:e0:1a:9d:00:aa:a8:f6:62:c4:17:b2:68:
84:42:66:7c:cf:3e:67:20:2f:37:1d:52:c5:d7:58:
76:09:57:34:a6:d3:8d:15:f2:84:2a:31:ff:5c:56:
1a:19:eb:2e:ee:0b:c2:df:d0:7d:81:f2:d2:69:29:
98:fb:0a:dd:f0:0b:a7:4f:23:de:c8:e7:06:1c:4a:
cf:de:8f:08:b6:8b:d5:98:29:7e:da:2a:36:66:f5:
ad:ce:99:37:4f:18:e5:c1:dc:a9:a8:88:19:75:5f:
64:ff:59:b4:91:5a:e2:4e:4c:86:08:f0:96:63:9b:
13:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:94:86:93:45:C6:9F:29:FD:00:AB:51:2C:D6:13:AF:0C:05:69:E2
X509v3 Authority Key Identifier:
keyid:40:3A:D0:14:05:E9:7B:38:8C:B8:3E:69:6D:0B:9D:80:BB:A0:B8:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/QDrQFAXpeziMuD5pbQudgLuguLg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/lacnic/QDrQFAXpeziMuD5pbQudgLuguLg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/465E48BE87D511EB95554247F8AEA228/2295CF68523711EEB515D05D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
200.16.8.0/21
Signature Algorithm: sha256WithRSAEncryption
48:08:f0:01:fe:24:8d:3f:88:30:53:08:f7:12:43:79:05:51:
8c:70:d0:c7:ce:f9:15:4b:7b:eb:54:6e:5e:8a:d8:d3:fe:0a:
51:1b:35:13:20:27:c8:50:fe:f3:df:21:5d:65:f3:36:66:29:
5f:50:96:aa:dc:6f:27:56:fb:fb:1b:0d:8a:1a:a9:39:b7:b5:
3e:b6:4f:04:15:4d:03:42:1a:2f:03:6c:2b:7c:95:77:61:44:
41:c4:7c:75:d4:f4:54:9c:7f:12:16:c4:25:d1:d7:9a:54:ea:
d6:46:33:0e:62:af:6d:db:c1:5c:a7:95:2e:c5:5a:d2:2d:8a:
36:c2:16:60:28:b2:35:df:21:b6:5f:e3:9a:73:f4:01:86:ef:
d6:00:8b:7a:15:34:f9:7d:4e:4a:85:a3:86:51:77:db:f4:5a:
d1:ed:83:64:d6:f8:69:c4:4e:ec:6b:c0:31:35:73:a0:7b:84:
94:af:e0:4c:b9:b9:48:ae:91:15:75:21:5d:91:7f:6c:00:a7:
70:e1:70:b1:2e:c2:0b:e0:7c:8b:a6:9e:31:ca:c4:3f:ae:f3:
fe:85:e2:65:15:fd:f8:aa:f3:5a:f2:24:fa:51:63:6f:58:61:
25:87:a1:57:8d:fc:9f:6f:31:57:9a:b5:c0:a0:83:ec:ad:c1:
5d:2f:02:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org