Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/F998A4B4A68111EF83490D8F762E951A.roa
File: F998A4B4A68111EF83490D8F762E951A.roa (raw, json)
Hash identifier: gRJbn7TUJdVqzLN1VGDb0fJr1Lg413PCOuxRtaJJTFU=
Subject key identifier: EA:31:D1:4B:7B:D7:D4:B3:D8:BC:19:6F:DD:9E:A7:78:E5:B2:06:F2
Certificate issuer: /CN=F3698DD0AF/serialNumber=C03FDD694F51AAE38F051456101617C56FD89C4A
Certificate serial: 0315
Authority key identifier: C0:3F:DD:69:4F:51:AA:E3:8F:05:14:56:10:16:17:C5:6F:D8:9C:4A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wD_daU9RquOPBRRWEBYXxW_YnEo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/F998A4B4A68111EF83490D8F762E951A.roa
Signing time: Tue 19 Nov 2024 14:24:24 +0000
ROA not before: Tue 19 Nov 2024 14:24:20 +0000
ROA not after: Sun 19 Nov 2034 14:24:20 +0000
asID: 37282
IP address blocks: 196.200.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/wD_daU9RquOPBRRWEBYXxW_YnEo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/wD_daU9RquOPBRRWEBYXxW_YnEo.mft
rsync://rpki.afrinic.net/repository/afrinic/wD_daU9RquOPBRRWEBYXxW_YnEo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 789 (0x315)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3698DD0AF/serialNumber=C03FDD694F51AAE38F051456101617C56FD89C4A
Validity
Not Before: Nov 19 14:24:20 2024 GMT
Not After : Nov 19 14:24:20 2034 GMT
Subject: CN=673c9f98-6943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:92:b3:5f:48:10:68:db:b0:35:a0:97:a6:a7:
ed:74:90:14:c3:d4:f1:53:6b:bc:f2:3f:75:91:c0:
c3:8c:c8:d5:1c:5e:4e:69:56:0e:11:a6:97:29:c9:
1e:9a:70:a4:6f:45:93:c3:bc:b5:42:18:a8:f0:f8:
23:9e:04:7f:57:64:39:ac:a2:ce:3b:13:c1:9d:8a:
97:46:b9:3b:92:e1:f8:73:aa:d3:6d:06:ac:ce:f5:
85:1a:2a:72:23:12:70:f0:34:76:b0:9f:85:78:c4:
ad:18:3f:7f:04:e3:85:91:ea:6c:0e:e6:b6:63:73:
c1:22:c0:af:15:27:36:7d:cd:98:bd:16:10:c4:91:
ae:11:01:28:c9:16:ed:e1:66:3b:61:37:39:73:08:
66:01:63:03:6f:26:fd:38:a5:d0:d8:77:56:00:ea:
e1:f2:3b:d9:da:cd:67:63:b8:75:aa:ec:49:07:79:
64:70:76:0a:02:27:9e:80:12:2d:ea:ba:d7:9b:5b:
d0:3b:95:bd:42:7a:df:cc:1b:59:02:45:75:3b:50:
94:b5:8b:da:ce:c2:f8:bc:5a:bd:09:0a:84:ad:c0:
1b:3a:45:c9:8a:6e:1a:c7:1f:88:a1:16:4c:26:ca:
a3:47:11:66:9d:d0:01:58:7a:17:96:62:b4:33:0e:
22:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:31:D1:4B:7B:D7:D4:B3:D8:BC:19:6F:DD:9E:A7:78:E5:B2:06:F2
X509v3 Authority Key Identifier:
keyid:C0:3F:DD:69:4F:51:AA:E3:8F:05:14:56:10:16:17:C5:6F:D8:9C:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/wD_daU9RquOPBRRWEBYXxW_YnEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wD_daU9RquOPBRRWEBYXxW_YnEo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3698DD0/56C8EA4C667711ED967FC0A2F1222468/F998A4B4A68111EF83490D8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:69:88:3d:32:50:e5:99:7d:9e:96:db:03:27:e7:12:ec:39:
fd:8f:07:28:c2:75:21:96:2a:3c:a7:4e:a8:45:51:6d:38:07:
0f:3e:e2:10:8a:7b:1a:3a:ea:75:b1:23:39:e5:2c:a9:27:84:
c8:36:ae:c0:8f:14:79:33:4f:12:93:24:47:ce:22:1b:7c:1e:
33:ee:38:4b:f7:5e:9e:ec:c4:99:4d:fb:31:fe:99:e7:29:28:
40:f7:2e:47:d9:9c:9c:dc:47:14:2d:b1:00:d6:59:dd:eb:d9:
c0:c9:93:8f:82:c4:4c:59:84:e4:12:22:6c:41:04:77:6d:e3:
0d:af:8b:e5:47:bd:8e:ad:a3:c3:51:87:d6:aa:64:be:6a:98:
4d:8a:c0:80:b9:a7:28:37:e7:4e:44:e3:45:e2:a0:2e:c8:47:
2d:ba:d8:fb:d2:18:65:67:ae:5f:99:d8:da:75:59:c2:a5:90:
60:d4:78:ef:34:d9:96:71:8c:a8:c2:c2:ce:ab:88:48:05:ce:
f4:e1:da:52:37:fb:f1:8b:20:21:67:11:35:3a:e1:97:7a:91:
c6:e0:12:ba:8e:4d:f7:2c:38:68:b2:c2:1c:fc:9e:83:14:8d:
c6:6e:9f:67:fd:3b:f8:c2:13:8a:ba:7c:a3:17:10:13:89:79:
44:8e:13:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org