Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/26AD8020AA6311EA980D3F78F8AEA228.roa
File: 26AD8020AA6311EA980D3F78F8AEA228.roa (raw, json)
Hash identifier: R2I0hzQ1e4OGon8XpJKR9+TlMctYJ1LPf4tv+dTnV58=
Subject key identifier: 80:CE:19:E5:AD:23:96:CC:7B:02:69:37:A4:1A:80:51:EC:6B:8F:B5
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 19
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/26AD8020AA6311EA980D3F78F8AEA228.roa
Signing time: Tue 09 Jun 2020 15:09:02 +0000
ROA not before: Tue 09 Jun 2020 15:08:45 +0000
ROA not after: Tue 31 Dec 2030 15:08:45 +0000
asID: 37061
IP address blocks: 197.248.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 9 15:08:45 2020 GMT
Not After : Dec 31 15:08:45 2030 GMT
Subject: CN=5edfa60e-e80f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1f:6f:70:d4:7c:63:ee:f9:bc:0b:1a:51:78:
aa:43:8a:4c:6d:90:8c:2b:db:8c:05:98:60:9c:95:
97:6c:9d:05:42:6d:1b:46:c3:92:ab:c2:44:41:bb:
c9:0e:3c:ed:53:7e:91:27:73:bd:72:4c:31:ec:de:
79:41:7e:38:62:b9:8b:bd:56:84:91:2b:9b:6c:1c:
23:a0:09:49:19:2a:a7:5e:aa:bc:cb:dc:07:57:de:
b5:68:4c:26:91:96:28:0f:db:e0:2e:3d:ea:55:c7:
9f:d2:ea:9e:97:d9:e1:4c:7c:31:28:ea:40:c3:c4:
50:49:0a:d1:66:83:d4:a3:ee:96:ba:20:41:c3:ee:
4d:86:45:7b:32:5c:cd:b0:d2:4a:d0:9d:c7:34:30:
ba:a1:4b:04:32:dd:e2:a6:5c:19:10:40:da:75:b8:
b7:4d:1a:e4:f3:1a:66:63:e2:a3:23:3f:58:92:6f:
bb:b0:97:3c:8a:84:ce:20:f7:2e:87:67:25:eb:65:
7f:ba:bb:f6:42:8b:ca:88:7b:82:a1:14:9e:f4:e7:
dd:35:e1:9f:c8:4e:a2:21:e0:95:dd:3a:8a:c0:9c:
a1:40:e9:1e:42:42:58:38:c5:45:5f:93:78:8e:e3:
43:ec:9d:d6:08:be:bf:a5:fc:8b:6f:5e:04:8f:4d:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CE:19:E5:AD:23:96:CC:7B:02:69:37:A4:1A:80:51:EC:6B:8F:B5
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/26AD8020AA6311EA980D3F78F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:52:a4:01:b2:04:67:f1:3c:07:20:61:38:d1:1d:cc:76:c1:
aa:84:45:5c:83:50:29:e8:45:e3:01:65:4b:aa:6d:76:98:6c:
40:13:0f:b9:a9:91:03:53:3d:b6:9f:24:bc:84:cd:1d:65:cb:
ab:48:23:3d:b6:ac:0a:be:21:20:50:e9:de:bc:3c:d6:59:2e:
75:64:77:6e:0c:61:49:2e:dd:ea:38:4e:ac:18:20:a6:e9:dc:
78:f2:a1:3d:40:f8:39:fa:02:2a:83:3a:e0:fc:3d:75:d0:a1:
bf:be:d7:f2:54:ed:27:82:81:97:13:f1:55:99:57:20:34:9c:
20:1e:ca:4b:2e:56:74:6e:ce:37:4f:ef:a2:24:f1:7e:97:bb:
72:48:86:d4:a0:de:d2:f3:a5:22:1f:c6:01:67:b1:e2:c3:75:
27:67:39:41:40:2e:d1:90:c3:d2:7c:db:bf:0d:07:38:6f:31:
77:7d:b5:6f:bc:ad:30:98:fd:9d:c5:1e:c2:63:47:f4:81:a9:
69:cb:92:32:0a:50:46:ae:e7:1f:21:e6:b2:0b:6b:30:9c:8a:
f5:80:21:4e:18:85:b8:4e:cb:44:8b:a3:0b:69:51:61:ae:23:
32:aa:9d:9a:50:5a:1d:9f:92:99:84:bf:ff:2f:ba:3d:52:85:
66:63:5e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org