Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/EA6262822EB411EEA85FC5794AD9E6FC.roa
File: EA6262822EB411EEA85FC5794AD9E6FC.roa (raw, json)
Hash identifier: k3VP3qw0EwdYjKV3iUtgdfKB+KXoIlF7qnyQ2hPvZY8=
Subject key identifier: 08:33:80:BB:52:4A:E1:28:56:C2:2B:C2:24:83:80:10:A7:ED:29:D2
Certificate issuer: /CN=F367EEA2AF/serialNumber=92D15924230909F29C024B8D5F62D658974A28C6
Certificate serial: 02
Authority key identifier: 92:D1:59:24:23:09:09:F2:9C:02:4B:8D:5F:62:D6:58:97:4A:28:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/EA6262822EB411EEA85FC5794AD9E6FC.roa
Signing time: Sun 30 Jul 2023 08:41:46 +0000
ROA not before: Sun 30 Jul 2023 08:41:36 +0000
ROA not after: Sun 31 Jul 2033 08:41:36 +0000
asID: 37697
IP address blocks: 196.10.148.0/24 maxlen: 24
2c0f:ea68::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.mft
rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367EEA2AF/serialNumber=92D15924230909F29C024B8D5F62D658974A28C6
Validity
Not Before: Jul 30 08:41:36 2023 GMT
Not After : Jul 31 08:41:36 2033 GMT
Subject: CN=64c6224a-e6d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:07:7f:2b:69:3d:16:9e:5a:6c:0f:86:de:00:
5c:0f:7e:69:fb:73:9d:da:96:fe:4b:57:f4:c4:2a:
db:1e:63:cf:16:83:9f:b7:a2:14:d3:4a:5c:86:0a:
45:5b:01:1a:b5:96:8e:33:40:e0:e6:06:e9:df:a5:
83:54:e3:a0:dd:67:88:5f:75:07:4d:32:a7:93:bd:
5d:ad:21:ac:11:79:ea:8f:28:eb:16:bc:34:38:4f:
5c:69:40:51:d6:04:7b:58:32:b8:fc:ad:20:78:c9:
c0:f8:9d:fe:a4:63:af:2c:f8:da:45:5e:c6:e6:8b:
99:05:91:c7:1a:90:e8:37:50:37:39:7c:e8:c2:34:
75:50:77:4f:1c:29:f4:44:85:eb:11:e9:7a:ef:c7:
17:68:ca:bb:80:16:5f:7f:f1:20:59:c5:55:c9:e2:
40:e3:1d:50:5b:44:93:d3:09:18:9d:3f:d6:03:fa:
01:09:52:cd:d4:fc:cb:0b:9e:ca:da:d4:ed:3f:28:
c3:c7:34:c3:c3:b0:22:dd:48:a7:74:5c:fb:29:cd:
e8:38:ec:f7:40:83:8b:f1:00:01:6a:b2:1b:2d:78:
e0:70:6b:ba:fa:61:30:ce:a7:b1:d8:98:40:09:20:
80:68:da:e1:5d:c3:9c:3b:5a:4d:61:4e:1e:d9:28:
3b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:33:80:BB:52:4A:E1:28:56:C2:2B:C2:24:83:80:10:A7:ED:29:D2
X509v3 Authority Key Identifier:
keyid:92:D1:59:24:23:09:09:F2:9C:02:4B:8D:5F:62:D6:58:97:4A:28:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/ktFZJCMJCfKcAkuNX2LWWJdKKMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ktFZJCMJCfKcAkuNX2LWWJdKKMY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/908F26B42EB411EE82869D784AD9E6FC/EA6262822EB411EEA85FC5794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.10.148.0/24
IPv6:
2c0f:ea68::/32
Signature Algorithm: sha256WithRSAEncryption
8b:cf:fd:57:8d:3a:de:c9:8e:38:ac:fd:98:d4:12:46:9a:2e:
12:43:07:d4:72:98:30:ea:6e:1f:78:b5:5a:25:11:7e:81:70:
ba:86:4f:9a:99:07:31:e5:96:b9:b8:ba:77:47:fb:6d:e6:22:
84:e3:33:be:ba:23:76:93:92:de:05:99:31:3b:75:e6:53:83:
05:0d:8e:41:e1:2b:bc:15:b2:9d:86:f6:8c:e1:c8:e2:ec:ea:
3e:c7:67:89:df:14:ad:3f:a5:4d:c8:93:69:77:dd:79:63:d2:
56:ee:62:b1:06:60:b8:fb:11:a6:e4:f8:01:72:9d:99:e3:e0:
d4:21:a8:4c:ad:f5:da:4e:a9:a8:87:8e:77:96:e1:26:6e:ca:
ee:be:f6:99:a3:d7:0b:db:26:4a:1f:2e:d3:60:04:e0:a7:73:
17:f8:9e:ac:ce:dd:39:44:80:48:d8:ab:bb:18:3f:76:e6:a0:
88:6c:16:c6:d2:d2:0e:e3:17:65:09:10:c5:c2:2c:42:30:0b:
61:a2:33:45:b4:88:94:9d:bf:42:19:a4:77:65:b1:1c:b1:74:
db:a7:5f:cb:84:d8:fb:3a:59:7f:5f:25:50:8b:1f:f9:96:1f:
60:42:05:d0:f2:50:f0:bb:0e:0e:da:7e:a6:fb:56:f9:6f:ca:
ca:3b:b2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:45 2024 by rpki-client on console-ams.rpki-client.org