Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/E78772EAAA6011EABE292F76F8AEA228.roa
File: E78772EAAA6011EABE292F76F8AEA228.roa (raw, json)
Hash identifier: RVdCn6tQheyeYPxX1TwMkUOiKylOKn/PBjrul9+GwyY=
Subject key identifier: C4:58:10:E2:C5:E1:4E:95:23:72:5D:D6:AA:33:6A:64:50:BD:8C:41
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 0F
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/E78772EAAA6011EABE292F76F8AEA228.roa
Signing time: Tue 09 Jun 2020 14:52:57 +0000
ROA not before: Tue 09 Jun 2020 14:52:52 +0000
ROA not after: Tue 31 Dec 2030 14:52:52 +0000
asID: 33771
IP address blocks: 196.96.0.0/12 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 9 14:52:52 2020 GMT
Not After : Dec 31 14:52:52 2030 GMT
Subject: CN=5edfa249-2707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1c:da:c5:56:be:fb:93:dc:b8:2b:45:f6:25:
1e:cb:80:c2:f3:9a:2c:78:99:4c:e6:ac:31:66:7e:
92:25:0e:2b:81:73:8e:28:43:14:65:01:26:31:7c:
bb:78:ef:ab:d2:cf:b3:90:c1:1c:18:78:ce:32:d1:
15:2c:27:7d:7b:2b:af:6d:fd:b8:2b:17:c8:32:8b:
58:a4:79:12:f0:68:a2:5a:97:71:c2:f6:a8:22:51:
fa:25:a8:87:da:af:c7:09:39:ae:c9:b3:a0:c3:e4:
99:c6:be:a3:25:b9:48:66:70:cf:b4:4c:61:99:eb:
12:e7:33:97:43:0c:67:1c:d1:5c:06:0a:df:6c:0d:
5f:13:3b:55:a4:d4:0d:d8:a6:38:aa:1d:71:87:ac:
0c:d3:ef:4f:4d:5d:eb:57:47:1f:24:1d:b8:94:48:
df:91:31:b0:f9:23:42:91:6b:ce:9b:fd:7d:83:ca:
04:87:60:a6:7e:c4:c3:38:6d:ef:fd:96:3a:45:1b:
06:8d:b1:ce:de:3d:c2:f1:87:f4:70:80:1f:fb:37:
05:89:aa:39:12:fe:da:96:3e:e2:58:f6:4a:6f:31:
59:8a:ac:6c:31:b0:97:5c:9e:82:16:86:58:ed:45:
3d:83:eb:46:1f:3b:e9:17:f5:8e:03:b3:92:d8:5a:
e4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:58:10:E2:C5:E1:4E:95:23:72:5D:D6:AA:33:6A:64:50:BD:8C:41
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/E78772EAAA6011EABE292F76F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.96.0.0/12
Signature Algorithm: sha256WithRSAEncryption
40:cb:0e:72:f9:e8:aa:50:04:f6:0b:01:79:cf:2b:fc:a9:b2:
b8:b0:99:46:5b:6b:dd:e4:a0:f1:62:48:86:8e:a5:67:8a:ca:
ab:e7:51:98:2e:97:aa:9e:53:ea:7f:c2:8c:db:6a:d6:b1:ce:
49:92:07:0f:99:fd:4f:12:b6:ad:8e:43:55:27:00:7f:43:d0:
c9:70:64:2d:9a:97:88:0f:cb:17:01:cd:b9:43:2c:5b:42:f1:
ee:e9:b4:f0:df:03:99:4c:91:3f:07:f3:85:e4:f2:5f:eb:8f:
a6:09:f1:5f:f4:76:75:f8:58:ed:e9:96:b0:a7:02:f6:93:ab:
93:f2:ac:16:2a:78:dd:16:e7:00:fb:18:d8:05:8d:f6:13:fd:
45:25:71:0c:4d:54:93:26:b0:d3:f5:50:6f:39:3b:dc:49:9a:
a7:38:79:1d:15:ea:68:e9:43:74:84:9a:9c:8e:38:cb:f4:1f:
53:df:90:37:89:f5:3f:c7:53:7c:17:81:9c:ff:28:09:64:a9:
3b:c2:74:d0:8e:2f:b2:6f:34:32:17:d5:e4:ca:3f:26:de:44:
a0:36:9a:83:f4:a8:e8:f0:36:45:51:68:c7:09:79:e8:ec:97:
19:5e:6c:6a:e3:d3:6d:e2:5e:1d:6d:37:d0:3f:17:3d:96:d1:
81:31:94:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org