Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4EF8CD7C732911EE8290F77A4AD9E6FC.roa
File: 4EF8CD7C732911EE8290F77A4AD9E6FC.roa (raw, json)
Hash identifier: Ab5LW5eZEWzDRhloF/Vfs8/Pj/xw53grKIBtL6INQeg=
Subject key identifier: BC:0A:E1:46:66:FB:C2:CA:80:52:34:82:13:92:A7:BA:C1:F2:9E:EF
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0213
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4EF8CD7C732911EE8290F77A4AD9E6FC.roa
Signing time: Wed 25 Oct 2023 11:26:15 +0000
ROA not before: Wed 25 Oct 2023 11:26:12 +0000
ROA not after: Fri 25 Oct 2030 11:26:12 +0000
asID: 25818
IP address blocks: 196.1.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 531 (0x213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 25 11:26:12 2023 GMT
Not After : Oct 25 11:26:12 2030 GMT
Subject: CN=6538fb57-352d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:30:6f:ff:7d:86:0b:b5:37:50:97:d3:4c:
c3:dc:1c:08:65:26:f6:7f:ff:28:60:5c:70:22:27:
0f:98:33:38:8d:d2:42:58:e3:fa:96:d1:64:97:22:
2a:f6:b1:c8:ee:7c:c2:8d:6f:77:0b:fe:79:7e:56:
d6:0c:10:87:ef:e8:b9:ae:39:32:2f:95:2c:88:76:
8b:13:37:27:b3:be:b5:04:53:8f:7e:62:18:a8:11:
23:a7:cb:8b:da:62:3b:99:58:e6:92:7b:92:fd:71:
78:99:dd:f8:1b:59:c9:c4:61:58:72:0c:61:4e:ae:
1d:37:31:f6:48:07:52:ac:82:74:25:b4:56:74:e9:
0b:0a:66:43:d1:85:b6:0f:c9:84:4a:5a:ae:4c:c0:
70:c0:11:50:ec:40:6a:4d:26:3d:1b:d5:03:34:c8:
1a:05:f9:26:5c:81:d2:62:c3:8b:ba:c9:55:c0:6d:
09:75:f6:aa:65:a4:b2:fe:90:fc:de:97:74:4a:ed:
21:cd:3a:7a:3f:12:b1:49:e8:bd:24:5b:48:e2:64:
4d:da:b9:23:34:7e:1f:63:45:c8:98:c0:cb:4e:20:
7a:97:e5:1e:28:10:90:2a:b4:ce:a3:7b:c2:8e:12:
b2:dd:b5:c3:cb:b1:07:c5:a5:fc:b1:8e:96:36:2d:
e2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0A:E1:46:66:FB:C2:CA:80:52:34:82:13:92:A7:BA:C1:F2:9E:EF
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4EF8CD7C732911EE8290F77A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.144.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:0a:88:ff:00:4e:3a:92:a1:3b:0f:70:8b:85:32:4d:f8:85:
cf:3c:c5:3c:b1:90:f0:42:0b:ac:9b:e5:9f:1d:24:e3:38:6f:
0e:ff:05:aa:7b:fb:ea:ad:e8:4e:23:47:41:de:dd:6d:b1:c0:
50:59:4a:93:1a:ca:8e:4f:72:5a:dd:1f:cc:43:4e:a2:47:82:
12:06:65:ef:9c:55:80:3f:b4:c5:b5:05:23:4b:80:da:a5:c6:
0d:6a:d3:4f:b4:54:40:bb:ff:26:bc:be:ec:bf:52:54:28:ac:
c0:47:05:95:a7:f6:26:94:e4:00:98:18:2d:f7:42:4b:86:a4:
f4:93:49:b8:6e:b1:b1:a7:a9:ed:42:88:25:97:b2:d6:1c:ea:
14:d9:eb:82:87:2b:41:fa:af:f9:fb:d3:c1:b7:b9:67:fd:e9:
db:00:a9:d2:94:5b:88:2b:7a:97:af:d1:98:05:82:89:51:14:
b9:a0:16:c4:7c:44:9e:5d:7f:1e:47:e6:da:a0:91:b2:0c:14:
4c:d9:a4:f7:cc:c4:26:b8:fb:e2:bc:05:9f:79:fd:2c:f4:29:
fd:9b:44:cb:5f:42:be:96:92:5a:64:ba:ba:c4:a4:09:b4:af:
11:30:dd:c5:7e:4b:99:ce:da:89:86:18:f4:78:4a:f1:e1:6a:
da:69:5e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:08 2024 by rpki-client on console-fra.rpki-client.org