Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/0B32AD4A1D5611ECBB40873AD8A014CE.roa
File: 0B32AD4A1D5611ECBB40873AD8A014CE.roa (raw, json)
Hash identifier: 4tBbSju8TJUrXsAaoMtdSxK8ImrTHKlcKaiey6wbers=
Subject key identifier: F5:0C:88:6A:DC:B0:0D:AE:BB:43:11:7A:7D:57:8A:35:34:E5:BA:0A
Certificate issuer: /CN=F3686F75AF/serialNumber=D99770F8F9B62DD036EDE741F2702CDDD640DE1E
Certificate serial: 04
Authority key identifier: D9:97:70:F8:F9:B6:2D:D0:36:ED:E7:41:F2:70:2C:DD:D6:40:DE:1E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2Zdw-Pm2LdA27edB8nAs3dZA3h4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/0B32AD4A1D5611ECBB40873AD8A014CE.roa
Signing time: Fri 24 Sep 2021 16:39:53 +0000
ROA not before: Fri 24 Sep 2021 16:39:50 +0000
ROA not after: Tue 31 Dec 2030 16:39:50 +0000
asID: 327866
IP address blocks: 196.49.13.0/24 maxlen: 24
196.223.41.0/24 maxlen: 24
2001:43f8:a10::/48 maxlen: 48
2001:43f8:a11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/2Zdw-Pm2LdA27edB8nAs3dZA3h4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/2Zdw-Pm2LdA27edB8nAs3dZA3h4.mft
rsync://rpki.afrinic.net/repository/afrinic/2Zdw-Pm2LdA27edB8nAs3dZA3h4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3686F75AF/serialNumber=D99770F8F9B62DD036EDE741F2702CDDD640DE1E
Validity
Not Before: Sep 24 16:39:50 2021 GMT
Not After : Dec 31 16:39:50 2030 GMT
Subject: CN=614dff59-68eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e6:de:95:78:fb:89:fd:8a:41:cd:ed:b5:09:
ff:3d:56:93:31:c1:f3:16:98:ad:e7:72:aa:06:fe:
88:69:10:f4:3f:2c:2f:7e:70:31:cb:7f:01:e1:53:
5f:94:90:7a:68:2a:e7:e0:85:57:b9:9c:26:2d:82:
20:55:9f:60:ac:26:92:8b:b6:9e:d6:0b:fa:a2:7d:
3b:4b:43:60:2e:82:4e:59:98:c3:8e:a2:35:34:e6:
89:49:a3:2d:63:07:4a:5f:0a:82:35:35:12:a0:9e:
69:9f:bc:c3:dd:b2:b4:31:82:c7:30:3e:f3:b8:bc:
d9:f3:89:51:f0:c8:ca:09:cf:76:26:dd:dc:d7:29:
23:b7:76:24:88:b5:85:ff:1d:30:7b:8a:27:da:a9:
0e:17:58:56:1d:9c:89:7a:45:94:72:e2:3c:3d:45:
b6:19:60:af:d2:ff:4e:f7:c3:12:19:10:5f:02:e4:
af:19:84:db:13:33:25:24:4e:75:f9:68:13:37:20:
06:b0:40:60:e7:4a:f9:d4:3d:bf:77:8d:9b:5c:d4:
7f:ec:12:46:28:8b:57:8d:a1:78:e2:d0:01:85:50:
26:3f:03:1f:e0:d5:f7:f8:3a:65:48:e6:06:e8:0d:
ba:20:f6:fc:78:bd:01:a8:a6:3e:c2:33:54:9a:bb:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0C:88:6A:DC:B0:0D:AE:BB:43:11:7A:7D:57:8A:35:34:E5:BA:0A
X509v3 Authority Key Identifier:
keyid:D9:97:70:F8:F9:B6:2D:D0:36:ED:E7:41:F2:70:2C:DD:D6:40:DE:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/2Zdw-Pm2LdA27edB8nAs3dZA3h4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2Zdw-Pm2LdA27edB8nAs3dZA3h4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3686F75/A60780961D3511ECB510340AD8A014CE/0B32AD4A1D5611ECBB40873AD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.13.0/24
196.223.41.0/24
IPv6:
2001:43f8:a10::/47
Signature Algorithm: sha256WithRSAEncryption
7a:2d:5b:bd:0b:a6:fc:b1:7d:30:6e:98:dc:08:63:56:a6:07:
25:90:fc:64:ae:57:e3:75:b8:9b:f7:aa:45:1b:55:9a:10:8d:
6a:e9:49:b7:f7:ea:4c:a2:96:1f:95:f9:87:18:2f:6d:f0:66:
5a:5d:46:d9:cc:7e:53:41:48:dd:e1:25:97:58:d5:d2:e9:59:
32:28:2a:12:de:38:82:df:2f:76:98:a4:d2:12:28:b8:bf:65:
7b:f7:ab:a8:6a:f6:60:47:6f:86:cb:24:4c:fa:1e:4d:dc:1b:
64:56:04:bb:1d:94:a3:4a:99:fd:d7:78:67:71:f1:74:ee:7b:
d2:31:62:9e:e2:8e:cc:fb:81:47:ae:80:ee:0b:3f:b8:7b:ec:
38:18:d0:fa:d0:38:1e:d7:60:f2:c1:2a:db:8d:aa:4d:60:a0:
c4:39:3a:9f:00:df:07:49:b4:4f:57:dd:a1:f1:76:af:3b:17:
20:5e:59:db:a8:02:17:0e:cd:ce:04:3b:e2:ef:6e:7c:1b:72:
52:d6:a1:b1:f2:8b:a6:c3:b8:ee:9a:d9:84:72:d8:4f:9c:88:
15:21:c1:b0:ea:00:e2:77:81:fe:60:14:f0:1c:7f:bc:0f:00:
61:7c:9c:0a:94:df:f5:fa:14:28:c1:80:4e:e2:e8:8a:59:22:
ff:76:4b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:47 2024 by rpki-client on console-ams.rpki-client.org