Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/7A8BCDA0AA6311EA87579978F8AEA228.roa
File: 7A8BCDA0AA6311EA87579978F8AEA228.roa (raw, json)
Hash identifier: DUrpypV88Thv9XkaKmM6uSQbHs7esXZAI31rKEisAJU=
Subject key identifier: 0B:D8:93:90:CA:B7:D3:BB:D8:7C:D6:E0:82:10:BD:D6:C6:74:56:C9
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 1B
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/7A8BCDA0AA6311EA87579978F8AEA228.roa
Signing time: Tue 09 Jun 2020 15:11:23 +0000
ROA not before: Tue 09 Jun 2020 15:11:17 +0000
ROA not after: Tue 31 Dec 2030 15:11:17 +0000
asID: 33771
IP address blocks: 197.248.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 9 15:11:17 2020 GMT
Not After : Dec 31 15:11:17 2030 GMT
Subject: CN=5edfa69a-0d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:67:19:81:fc:90:59:dd:cd:57:89:3a:02:cd:
59:34:1c:66:e8:fe:52:68:ce:36:4e:db:29:9e:bc:
0c:1d:bd:26:8b:f4:13:fc:ab:83:45:4d:45:a1:7c:
07:03:b8:39:98:8a:bc:c0:9b:36:d6:b0:75:99:b6:
a3:cd:80:5b:2d:bd:1b:f2:23:79:f0:ca:0c:bc:21:
04:6f:c5:95:7d:68:49:65:47:6c:68:fc:01:17:db:
8f:87:ca:ab:8b:06:80:63:ae:c2:5c:5d:b0:55:f7:
63:7c:17:48:2c:60:40:b9:34:25:2f:eb:35:42:91:
6c:3f:6e:95:1d:fa:18:72:55:c8:f1:a5:f3:7a:18:
fb:e0:a9:19:25:2a:64:6f:88:c0:79:ec:3d:f8:44:
d5:ae:22:8a:e0:48:48:60:b2:9f:b4:1c:56:f5:88:
c3:d6:f6:87:04:a1:aa:ea:14:e6:d8:20:dd:26:67:
cf:cd:17:69:90:49:ae:79:35:eb:0d:07:73:b1:98:
ba:4e:65:bd:23:7b:b9:39:f1:61:7a:f7:9e:b2:82:
e3:20:b6:ec:d4:47:c0:73:e3:d1:f0:98:75:30:41:
ea:f8:29:2c:b5:ae:62:44:8b:4b:50:d1:1f:3b:94:
c7:f1:d1:2d:61:18:f1:eb:3c:20:e2:3f:cf:0a:60:
d1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D8:93:90:CA:B7:D3:BB:D8:7C:D6:E0:82:10:BD:D6:C6:74:56:C9
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/7A8BCDA0AA6311EA87579978F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:b2:13:95:a4:c1:7e:02:fe:b0:e6:b0:c7:0f:7c:ea:a9:77:
76:55:d0:2c:c5:46:ad:6c:d5:08:aa:bf:1f:0c:46:4d:9a:be:
d3:90:07:60:e1:45:9b:98:19:26:9b:11:ec:39:52:e2:85:3f:
71:ba:54:c1:0d:7f:d2:59:91:63:b4:0c:7a:11:c1:43:43:a2:
4d:5e:dd:b5:de:67:ce:b8:70:ff:45:36:85:9b:c5:a7:fc:c1:
91:2e:d3:47:e6:9d:53:78:7d:21:76:35:a6:fc:bb:cd:c7:d3:
fa:50:a4:04:5b:28:f9:a1:17:61:30:f7:0c:24:4d:ef:ca:87:
30:97:df:8e:6e:08:cb:7b:bc:01:0e:67:12:ae:30:14:60:54:
91:72:47:40:fc:be:4f:cc:c8:f3:c2:ab:09:36:7d:ec:e3:c8:
a1:df:b1:2f:74:12:f3:72:b0:8e:40:a0:69:b8:06:d6:8f:a3:
79:73:79:f0:dc:31:df:8b:cd:97:7a:54:a0:88:34:e8:d4:d5:
dd:61:00:8a:1e:82:87:cf:f6:0d:d4:03:60:65:3b:df:26:3d:
c1:0d:d7:75:8f:c0:ea:af:4e:96:81:9d:54:e7:76:20:2f:15:
6f:0b:b1:35:d1:aa:c0:9f:6b:ee:2b:b5:4e:3b:a7:03:bd:c5:
19:01:1f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org