Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/70C8BE4AF48611EB8EAD7D3ED8A014CE.roa
File: 70C8BE4AF48611EB8EAD7D3ED8A014CE.roa (raw, json)
Hash identifier: dlLxGUVJX921ER0foyF/dyjsCtgaM8wRZyEnorTfJxA=
Subject key identifier: 44:8F:B8:2B:9C:C2:25:C8:B6:4C:93:04:A0:E5:D0:F5:ED:86:B7:68
Certificate issuer: /CN=F367FE62AF/serialNumber=2D6C6135D9503DAA32D66586A22ED619295C6ABF
Certificate serial: 02
Authority key identifier: 2D:6C:61:35:D9:50:3D:AA:32:D6:65:86:A2:2E:D6:19:29:5C:6A:BF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LWxhNdlQPaoy1mWGoi7WGSlcar8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/70C8BE4AF48611EB8EAD7D3ED8A014CE.roa
Signing time: Tue 03 Aug 2021 18:13:31 +0000
ROA not before: Tue 03 Aug 2021 18:13:27 +0000
ROA not after: Fri 02 Aug 2024 18:13:27 +0000
asID: 328273
IP address blocks: 196.13.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/LWxhNdlQPaoy1mWGoi7WGSlcar8.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/LWxhNdlQPaoy1mWGoi7WGSlcar8.mft
rsync://rpki.afrinic.net/repository/afrinic/LWxhNdlQPaoy1mWGoi7WGSlcar8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FE62AF/serialNumber=2D6C6135D9503DAA32D66586A22ED619295C6ABF
Validity
Not Before: Aug 3 18:13:27 2021 GMT
Not After : Aug 2 18:13:27 2024 GMT
Subject: CN=6109874b-38c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:35:26:0f:f8:1c:cc:18:fc:16:48:ce:dc:
b9:ff:e9:ae:26:25:f5:6a:76:80:df:52:58:38:b7:
5d:0d:53:af:f7:f3:28:ec:6b:a1:ac:2a:4c:59:a8:
14:c5:0e:68:c7:dd:af:b9:82:6d:aa:b4:13:f4:82:
8f:c9:ba:7c:fb:7a:3f:cf:50:1c:ee:79:a1:9c:6f:
bd:88:d2:74:21:5b:80:6a:80:96:7a:ed:1f:18:97:
06:0b:65:b5:6e:68:3b:06:ef:e9:58:08:c8:61:5a:
7e:8b:23:de:3c:41:0c:08:a0:76:c5:21:b7:9c:a5:
e9:47:ba:a5:9f:8e:b5:42:3b:73:7b:ba:39:92:92:
82:52:fa:3b:80:26:96:f7:32:8c:f4:66:c8:f7:6f:
a8:73:ad:21:36:49:48:4f:62:ad:75:b0:2c:ae:b0:
a8:6a:68:73:24:ee:d1:0f:23:e2:5e:8c:03:13:d8:
0f:dc:26:db:70:9e:2b:bf:5d:e9:3d:72:06:d5:76:
28:29:28:8a:e9:c9:e3:1c:49:7e:f8:0a:5f:83:d9:
c5:b1:5b:83:56:f4:01:d0:19:44:0f:02:3d:97:31:
ae:9f:dd:25:53:77:16:34:76:81:02:28:63:5e:e1:
89:19:a1:fa:00:b2:54:7c:30:d8:5d:dd:73:d3:e0:
bb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8F:B8:2B:9C:C2:25:C8:B6:4C:93:04:A0:E5:D0:F5:ED:86:B7:68
X509v3 Authority Key Identifier:
keyid:2D:6C:61:35:D9:50:3D:AA:32:D6:65:86:A2:2E:D6:19:29:5C:6A:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/LWxhNdlQPaoy1mWGoi7WGSlcar8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LWxhNdlQPaoy1mWGoi7WGSlcar8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FE62/FE5A3078F48511EB920AC83DD8A014CE/70C8BE4AF48611EB8EAD7D3ED8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.13.109.0/24
Signature Algorithm: sha256WithRSAEncryption
84:20:63:af:95:ca:ad:91:b0:7d:59:2d:2c:64:a2:80:19:be:
6d:f7:b9:36:b8:a4:ad:9d:12:71:f3:11:60:e2:60:7c:c2:5f:
cc:12:b1:64:41:f1:72:ee:21:8b:b0:5c:e3:3f:7d:4a:8a:42:
9b:ee:7f:c7:f0:90:08:43:d0:9f:63:3d:f7:6f:ab:21:ab:35:
c0:7c:92:1d:1a:13:8a:93:36:c3:ab:92:6b:9c:bd:83:85:7f:
84:ab:3e:52:6b:15:80:3a:da:25:15:0f:ad:f1:09:89:fe:7a:
d6:2e:21:8a:12:f2:a2:c7:33:de:06:a0:49:b4:a6:31:0f:69:
b4:db:1e:d9:41:44:bc:83:00:59:5a:f7:c5:a3:4e:53:37:bd:
6f:7f:b6:1b:62:1c:11:38:38:91:6c:c9:e2:fc:c4:3d:2f:a3:
f1:80:1e:07:86:3f:30:04:2e:26:3c:cd:f4:87:01:10:06:28:
58:e7:7f:15:74:d0:87:d0:f6:df:c4:22:4c:6c:91:bf:56:d2:
ad:55:61:8f:53:45:b8:dd:d7:df:c2:b2:85:53:0e:ee:1d:d6:
74:8a:d7:5e:c1:1f:2d:26:4e:e9:13:49:75:8c:ae:bb:38:58:
cc:b7:69:45:f8:82:90:59:e6:65:1d:13:85:03:80:f3:56:8f:
b2:31:59:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:56:56 2024 by rpki-client on console-fra.rpki-client.org