Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/C91D0582676C11EE817092714AD9E6FC.roa
File: C91D0582676C11EE817092714AD9E6FC.roa (raw, json)
Hash identifier: n7bFFRK6/BBB0upK0yKjNtW7e2v1lvPct030rOjwGHg=
Subject key identifier: 4A:55:E9:7F:A1:C0:8F:00:BF:FF:C9:B6:61:B6:F0:4A:B8:E9:06:70
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: ED
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/C91D0582676C11EE817092714AD9E6FC.roa
Signing time: Tue 10 Oct 2023 12:59:02 +0000
ROA not before: Tue 10 Oct 2023 12:58:59 +0000
ROA not after: Fri 10 Oct 2025 12:58:59 +0000
asID: 15964
IP address blocks: 197.159.0.0/19 maxlen: 19
197.159.8.0/24 maxlen: 24
197.159.12.0/24 maxlen: 24
197.159.20.0/24 maxlen: 24
197.159.28.0/24 maxlen: 24
197.159.29.0/24 maxlen: 24
197.159.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237 (0xed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Oct 10 12:58:59 2023 GMT
Not After : Oct 10 12:58:59 2025 GMT
Subject: CN=65254a96-759b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cd:2e:65:46:24:eb:26:c4:fd:84:4c:81:65:
c4:af:50:45:23:6e:ee:e5:82:87:85:37:46:ec:78:
be:d7:2f:2b:0c:53:43:2a:d8:0d:9b:cc:77:08:92:
b6:e8:eb:f6:29:66:66:07:a2:ce:08:f3:9d:90:bf:
da:ca:e0:71:c4:5d:d2:cf:d3:99:ca:de:01:8b:00:
a2:95:5f:75:cb:01:fa:cc:9d:2a:5b:87:8f:17:60:
b3:84:b9:06:20:d1:1b:c4:36:56:a1:d7:4a:3f:ac:
47:6d:ef:11:8a:0a:76:68:77:20:b2:a1:76:68:14:
36:30:b5:cd:b0:06:e8:06:f4:a9:89:0d:02:ab:63:
72:ec:fa:d1:2d:59:b2:8f:e3:23:7f:73:68:0d:08:
c6:02:6a:e9:45:51:60:69:93:6a:f9:c6:e6:89:51:
83:0e:8f:71:4e:ab:a0:6f:da:08:6f:93:50:4b:5e:
b5:51:40:2a:62:89:26:b6:9a:20:6c:78:f3:65:d3:
b9:37:40:e4:fd:44:8e:4c:d9:c7:2b:20:76:10:50:
53:e5:75:35:21:d0:ac:31:5e:26:ad:91:32:78:f9:
6b:d0:f7:6c:e0:8b:b0:b1:12:d4:39:0e:ad:ab:a6:
8f:cb:ee:a1:1d:7a:0e:0d:83:aa:b5:7c:eb:85:7f:
57:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:55:E9:7F:A1:C0:8F:00:BF:FF:C9:B6:61:B6:F0:4A:B8:E9:06:70
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/C91D0582676C11EE817092714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.159.0.0/19
Signature Algorithm: sha256WithRSAEncryption
11:29:68:30:db:61:b0:aa:66:7f:87:5b:08:15:26:c4:d0:b5:
28:d4:eb:07:b0:4d:1d:29:54:12:9c:49:b0:f1:5a:d3:31:c0:
2c:aa:d4:d3:5a:e6:4d:b0:4f:0d:0b:cb:36:50:8a:b8:00:65:
20:83:36:cf:8b:b0:c9:c8:2e:6c:45:78:f1:4e:21:41:06:34:
da:ac:05:aa:73:2a:1d:f0:63:d4:4d:94:09:8f:cb:99:a4:25:
46:0e:e1:3c:34:31:02:d7:c2:ec:71:ef:c9:47:48:f9:38:ee:
a2:2b:cc:f7:25:ac:04:25:bd:9a:ac:41:19:52:7f:56:a9:ba:
61:38:8a:a6:49:2e:82:fa:71:2b:04:b6:d2:13:91:72:ae:1a:
de:3f:aa:c9:aa:07:ff:cf:03:0d:4a:69:4f:52:23:bd:c7:ab:
f9:5c:3f:b3:01:f6:de:2e:9b:f9:de:2b:56:b5:6d:5e:d4:07:
75:e4:af:4e:36:da:d9:47:af:62:6e:56:78:90:ba:4f:47:49:
e5:05:80:cd:21:cb:6e:17:48:bd:3f:2d:d7:5e:e5:45:be:53:
1d:95:93:9c:7c:7a:52:8d:65:39:d9:52:83:b3:a8:cd:20:10:
09:66:19:b5:db:99:cf:62:28:fe:60:52:2a:42:44:80:62:d7:
a5:82:db:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 03:24:09 2024 by rpki-client on console-fra.rpki-client.org