Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/32C8A6C66D9411EEBBCFC1144AD9E6FC.roa
File: 32C8A6C66D9411EEBBCFC1144AD9E6FC.roa (raw, json)
Hash identifier: 2OF/T6bI2e1KDH7oQ4Ng7a72JfGOZwUFWH9xARUOcWY=
Subject key identifier: F6:11:04:27:3B:7F:98:29:29:61:0D:B7:DD:92:2C:23:FC:48:7E:41
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: 0100
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/32C8A6C66D9411EEBBCFC1144AD9E6FC.roa
Signing time: Wed 18 Oct 2023 08:56:17 +0000
ROA not before: Wed 18 Oct 2023 08:56:14 +0000
ROA not after: Sat 18 Oct 2025 08:56:14 +0000
asID: 15964
IP address blocks: 197.159.0.0/21 maxlen: 21
197.159.0.0/22 maxlen: 22
197.159.0.0/24 maxlen: 24
197.159.3.0/24 maxlen: 24
197.159.4.0/22 maxlen: 22
197.159.8.0/23 maxlen: 23
197.159.9.0/24 maxlen: 24
197.159.10.0/24 maxlen: 24
197.159.11.0/24 maxlen: 24
197.159.14.0/24 maxlen: 24
197.159.17.0/24 maxlen: 24
197.159.18.0/23 maxlen: 23
197.159.21.0/24 maxlen: 24
197.159.22.0/24 maxlen: 24
197.159.23.0/24 maxlen: 24
197.159.24.0/24 maxlen: 24
197.159.25.0/24 maxlen: 24
197.159.26.0/24 maxlen: 24
197.159.27.0/24 maxlen: 24
197.159.28.0/22 maxlen: 22
197.159.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256 (0x100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Oct 18 08:56:14 2023 GMT
Not After : Oct 18 08:56:14 2025 GMT
Subject: CN=652f9db1-adf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:09:2b:df:8d:0f:2c:88:02:07:7d:3f:a2:45:
86:8d:ee:08:bd:10:2b:d6:7d:da:cf:e5:ef:b0:c5:
b0:a3:ca:63:10:8e:93:bc:55:cf:d9:4d:01:5b:cb:
d7:51:4a:b7:12:b3:0e:43:fb:f8:46:08:14:d1:4b:
d3:ae:0b:f9:f5:c3:c9:a0:9b:fd:ab:32:9d:10:b2:
53:0b:ce:f7:01:ce:07:9e:7f:0e:e6:1c:f0:39:ae:
6a:5f:f3:f2:44:56:4f:b1:08:cf:86:07:0c:57:fc:
90:df:10:b4:80:6f:fa:97:78:d7:1b:40:2e:13:b3:
56:d5:d8:8b:96:d1:7d:bd:4b:e5:78:52:e1:e0:be:
2f:0f:39:7e:ee:33:47:e5:66:8b:04:20:aa:99:73:
da:96:c3:f3:e0:c4:d0:52:d5:5b:52:b7:8a:b4:13:
5d:d1:b6:44:f5:4f:a5:ef:48:2f:62:43:cf:e2:69:
61:34:eb:97:31:17:16:3f:ef:37:73:92:de:8f:47:
75:7c:6c:ba:9b:85:fa:50:5c:a3:7f:35:ec:71:4d:
b4:4f:29:85:51:3f:41:f2:88:0d:67:4f:7d:a7:58:
44:27:1d:f7:43:ad:0f:70:cb:d1:4a:e8:44:4e:ab:
21:5f:3b:a4:7c:bf:47:67:75:a9:3f:8e:b7:bd:ff:
25:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:11:04:27:3B:7F:98:29:29:61:0D:B7:DD:92:2C:23:FC:48:7E:41
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/32C8A6C66D9411EEBBCFC1144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.159.0.0-197.159.11.255
197.159.14.0/24
197.159.17.0-197.159.19.255
197.159.21.0-197.159.31.255
Signature Algorithm: sha256WithRSAEncryption
09:55:19:03:ad:22:3a:fd:0b:3f:c0:a2:ed:96:36:fa:3c:cf:
00:d7:27:48:62:6e:09:d2:a2:84:59:78:f6:b8:8a:32:d3:92:
19:38:37:b9:e7:e4:c4:b2:28:26:ed:f9:82:25:0e:5b:40:2d:
f1:76:ae:da:c3:dd:e3:2c:a4:cd:4a:37:aa:17:b4:0b:e2:5c:
a8:c8:02:0e:4f:c7:43:af:5d:f1:ba:d5:b9:53:35:94:20:05:
1b:a1:79:e5:3e:a9:2a:ed:4d:af:ed:16:25:1c:ce:2e:79:0a:
b7:b9:56:4d:8e:ef:02:14:97:66:4a:bb:0f:45:39:09:b5:dc:
ec:14:96:86:b4:68:6f:af:73:eb:2c:26:22:4c:7f:22:52:b0:
59:1d:5d:ed:df:cd:3d:4d:ee:19:60:4d:ce:7b:c3:ac:7e:93:
75:fe:df:4e:69:c2:59:8c:b9:04:0a:2b:ab:d8:70:60:4c:da:
23:00:d1:cf:26:d7:23:1f:d8:af:b9:21:63:94:84:01:6c:23:
43:0d:ce:1b:b5:01:d0:87:b3:77:b4:83:5a:8f:4e:c2:fa:c7:
6e:d7:33:70:b0:c6:70:57:59:25:52:a5:04:a3:23:2b:f7:bf:
bb:19:19:85:dd:6d:4b:f0:7b:b8:b5:68:b1:e6:6b:b6:3f:71:
32:f8:46:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org