Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/A988581CAC4611EC954977D35A40D577.roa
File: A988581CAC4611EC954977D35A40D577.roa (raw, json)
Hash identifier: ypZ7dVzTwfIkgRkJOad3H/1qI5xUdLeF6E7RUSNDcCE=
Subject key identifier: 5A:6D:AA:77:AD:CA:18:36:ED:11:B3:33:9C:88:7C:D0:FC:72:4C:05
Certificate issuer: /CN=F3683ABDAF/serialNumber=154FDB0564B137DD228F35DF4AF6E40780EF10D6
Certificate serial: 02D7
Authority key identifier: 15:4F:DB:05:64:B1:37:DD:22:8F:35:DF:4A:F6:E4:07:80:EF:10:D6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FU_bBWSxN90ijzXfSvbkB4DvENY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/A988581CAC4611EC954977D35A40D577.roa
Signing time: Fri 25 Mar 2022 14:20:03 +0000
ROA not before: Fri 25 Mar 2022 14:20:00 +0000
ROA not after: Thu 25 Mar 2032 14:20:00 +0000
asID: 327892
IP address blocks: 196.192.48.0/20 maxlen: 24
2c0f:eb90::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/FU_bBWSxN90ijzXfSvbkB4DvENY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/FU_bBWSxN90ijzXfSvbkB4DvENY.mft
rsync://rpki.afrinic.net/repository/afrinic/FU_bBWSxN90ijzXfSvbkB4DvENY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 727 (0x2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3683ABDAF/serialNumber=154FDB0564B137DD228F35DF4AF6E40780EF10D6
Validity
Not Before: Mar 25 14:20:00 2022 GMT
Not After : Mar 25 14:20:00 2032 GMT
Subject: CN=623dcf93-9fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:51:c6:78:47:51:68:00:56:86:63:78:6b:ec:
a5:93:d4:bb:5d:c4:2e:5e:de:85:99:6b:ca:72:f8:
37:ba:f6:98:df:b3:fe:a9:90:8f:4f:92:fc:b5:a9:
04:20:33:e1:b1:a0:5f:f7:3c:92:a6:39:9a:de:51:
94:8c:41:1c:dc:b9:89:83:d2:3b:36:5a:59:eb:77:
a9:06:56:55:8c:fa:09:08:0c:d5:60:b4:08:74:4c:
96:39:50:10:6f:df:4b:3a:d7:b3:da:6e:fc:9e:37:
21:58:08:03:98:98:11:f8:45:07:d0:ee:3d:9f:47:
f2:99:a7:8e:50:8f:79:54:c7:4f:95:6e:30:e2:94:
2d:09:f5:9c:1d:3a:b1:c2:d4:c6:8a:e7:58:ed:d2:
f7:06:8d:ae:d7:35:21:d7:98:50:c7:e6:67:a7:87:
e7:a0:e3:a2:bb:45:b3:b9:37:e5:79:64:56:02:ac:
6d:2f:9d:ca:c7:26:ec:5a:34:a1:d8:57:26:24:62:
9a:34:39:59:d5:7a:ce:cb:5f:29:ec:40:aa:c6:69:
28:d1:41:b0:32:56:eb:90:de:c7:15:35:62:c5:2a:
1d:b2:f7:ff:53:7d:bd:fd:bc:2e:a8:62:2f:94:2e:
1f:15:d4:ab:11:d0:23:c7:55:26:fb:45:3b:15:7f:
88:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:6D:AA:77:AD:CA:18:36:ED:11:B3:33:9C:88:7C:D0:FC:72:4C:05
X509v3 Authority Key Identifier:
keyid:15:4F:DB:05:64:B1:37:DD:22:8F:35:DF:4A:F6:E4:07:80:EF:10:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/FU_bBWSxN90ijzXfSvbkB4DvENY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FU_bBWSxN90ijzXfSvbkB4DvENY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683ABD/4EE8C7467D4C11EABB20164CF8AEA228/A988581CAC4611EC954977D35A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.192.48.0/20
IPv6:
2c0f:eb90::/32
Signature Algorithm: sha256WithRSAEncryption
27:1d:b3:f9:30:4d:26:1f:c3:47:84:e5:6e:6c:7e:35:d1:95:
54:3e:0d:4c:3d:5f:c8:6f:32:a9:48:ac:35:b9:ac:5a:27:9d:
2d:a2:0d:72:bc:2a:a0:04:1f:57:c1:dc:8f:78:cf:70:13:3b:
6f:47:20:26:52:34:ed:bb:76:a5:2d:3e:52:f1:7c:f3:06:8c:
ef:b1:65:b9:21:f6:a6:9c:a0:59:e5:89:b0:7b:11:89:67:28:
c2:1a:97:ff:35:8b:e5:3d:81:94:ad:51:70:c5:1e:ce:01:0d:
2d:84:86:20:49:e3:a3:a4:ed:29:5a:09:47:8f:1e:72:43:96:
4b:de:9b:b8:8d:27:65:d7:49:63:25:44:10:c8:f4:27:58:e0:
25:5b:5f:59:1b:80:64:50:f4:72:82:05:47:9e:4d:aa:69:f5:
dd:17:bc:39:2f:ce:81:87:cb:d3:e0:10:ed:c0:39:1b:75:c5:
4b:c0:f1:9e:af:24:c8:07:5b:e7:2b:94:1d:e6:75:d6:2c:18:
c4:a4:e8:db:92:3c:00:60:8d:c9:57:5a:1c:b4:c5:54:13:53:
73:f3:6e:af:0f:4f:db:a3:22:e0:c0:6e:99:6f:d5:ba:22:38:
11:8d:86:60:dd:17:bb:97:fc:dd:ac:f3:24:da:6e:66:f5:a8:
17:88:76:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org