Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/ABB1C3A26E4C11EE87CE9C5F4AD9E6FC.roa
File: ABB1C3A26E4C11EE87CE9C5F4AD9E6FC.roa (raw, json)
Hash identifier: /EdoNz0N4wrSn+Lc0KWb1cYwF/XiRPQMROvRTk9vW00=
Subject key identifier: 3B:71:EA:3F:DE:74:07:7B:4D:AD:FC:66:A1:BD:D1:DD:F4:9A:56:D4
Certificate issuer: /CN=F369591CRI/serialNumber=DCFEA3847722D2FEC7A039E99038F7538259D031
Certificate serial: EE
Authority key identifier: DC:FE:A3:84:77:22:D2:FE:C7:A0:39:E9:90:38:F7:53:82:59:D0:31
Authority info access: rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/ABB1C3A26E4C11EE87CE9C5F4AD9E6FC.roa
Signing time: Thu 19 Oct 2023 06:56:47 +0000
ROA not before: Thu 19 Oct 2023 06:56:44 +0000
ROA not after: Sun 19 Oct 2025 06:56:44 +0000
asID: 15964
IP address blocks: 195.24.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.mft
rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238 (0xee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CRI/serialNumber=DCFEA3847722D2FEC7A039E99038F7538259D031
Validity
Not Before: Oct 19 06:56:44 2023 GMT
Not After : Oct 19 06:56:44 2025 GMT
Subject: CN=6530d32f-1c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:90:7c:15:27:01:c8:d9:52:1b:04:38:fa:55:
40:04:0f:40:72:28:67:26:d8:b0:de:8d:ce:25:84:
c3:95:04:56:b3:74:30:dd:3a:b7:03:3d:33:1b:98:
90:55:3a:45:87:6f:08:29:56:da:6b:56:1a:b5:ea:
03:04:a9:c5:4b:13:ff:33:70:97:97:08:63:cb:c5:
71:47:f9:64:38:e5:e8:82:d3:10:ef:29:8c:50:ca:
2e:a0:d5:76:d8:5c:4f:e8:88:48:61:4b:ef:60:fa:
d7:2a:30:8a:22:18:3e:cc:9e:a8:4c:ab:16:29:98:
e3:d2:ce:05:73:24:a5:7a:05:fd:5b:af:72:b1:fa:
a6:b2:04:25:09:16:6e:7f:5b:78:70:86:38:53:ea:
d4:75:52:a3:44:32:13:17:3c:1e:18:ad:bf:ee:42:
99:7e:f4:a6:40:33:c7:36:b7:f1:11:70:e1:6d:ff:
9e:24:62:7e:8e:7e:8b:cb:dc:e1:4a:f8:ae:21:9b:
b3:1b:b1:41:51:ad:01:a3:34:fc:d7:d1:16:4b:ce:
aa:41:85:72:f7:70:c3:60:e1:f7:cd:33:ae:e6:fe:
1b:b3:55:64:56:bc:83:f4:29:a6:80:7f:e6:be:dc:
9d:9d:8a:d2:2b:8d:5d:b1:6b:fe:0a:f8:d0:20:c0:
fa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:71:EA:3F:DE:74:07:7B:4D:AD:FC:66:A1:BD:D1:DD:F4:9A:56:D4
X509v3 Authority Key Identifier:
keyid:DC:FE:A3:84:77:22:D2:FE:C7:A0:39:E9:90:38:F7:53:82:59:D0:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/ABB1C3A26E4C11EE87CE9C5F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
195.24.208.0/24
Signature Algorithm: sha256WithRSAEncryption
76:8f:36:7f:a8:eb:8a:d8:ec:ac:ac:d2:7e:06:49:59:6c:0d:
f1:84:f0:91:7b:07:e4:50:2f:3e:04:95:3e:60:8f:36:ad:dd:
32:8b:4b:4f:76:18:43:8e:68:f2:f2:86:82:8a:f0:ef:f2:b8:
d2:59:17:79:c4:4f:20:67:79:13:6d:ed:72:d0:eb:65:4f:eb:
0f:ef:00:02:08:38:29:3f:f2:ef:0f:b1:2e:b3:5e:e7:af:5e:
ca:4a:a1:79:cd:ed:90:91:43:ce:bb:92:cb:32:36:ec:2f:5f:
97:0b:94:cc:c4:b9:14:d2:bb:61:1b:15:eb:f1:0d:bd:da:06:
91:f2:db:56:2e:22:bc:51:6e:66:a4:a9:98:ea:e3:ce:b9:98:
bc:1c:d2:0f:12:6c:a2:cf:f8:45:36:9b:be:ba:46:ff:a2:c5:
33:bb:6f:c6:64:26:f6:46:80:93:1c:bc:94:a8:71:b5:05:84:
4e:77:a9:e3:5f:57:f0:3d:27:b9:af:14:00:a4:27:91:f3:9e:
de:ad:f7:37:9e:66:ad:56:26:46:4b:80:98:98:46:9e:97:3a:
21:31:7b:9d:3e:c3:5d:89:f5:95:cd:2d:48:60:ad:6e:f8:37:
d6:f8:e4:b8:7d:b9:90:cc:42:f6:11:94:3a:4e:23:ab:e8:2c:
66:26:ed:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:14 2024 by rpki-client on console-ams.rpki-client.org