Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/70246ED6F7CF11EEBDBEE324017001B1.roa
File: 70246ED6F7CF11EEBDBEE324017001B1.roa (raw, json)
Hash identifier: e1vFix2SZU+voeEXeL4846G5Zk4nH6jhf40xzuuk0vk=
Subject key identifier: 97:C2:FF:81:76:D0:68:0B:71:D9:C8:EE:00:E9:F9:AC:C0:53:27:C5
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01A0
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/70246ED6F7CF11EEBDBEE324017001B1.roa
Signing time: Thu 11 Apr 2024 06:48:01 +0000
ROA not before: Thu 11 Apr 2024 06:47:57 +0000
ROA not after: Thu 30 Apr 2043 06:47:57 +0000
asID: 30988
IP address blocks: 197.156.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416 (0x1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 11 06:47:57 2024 GMT
Not After : Apr 30 06:47:57 2043 GMT
Subject: CN=661787a1-566b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:6e:1d:a3:bf:b7:db:b2:91:7c:1c:7a:7c:
a0:87:e8:9f:d1:d8:31:c2:1d:45:71:ea:5c:01:97:
6c:64:05:c7:7e:29:5d:b3:15:6b:90:e8:ee:ba:55:
8c:de:1d:0e:a3:df:98:72:73:a4:de:21:c2:94:5c:
22:2d:6d:d7:78:10:d0:8f:7c:b8:3d:8c:5e:17:72:
f2:d3:06:01:19:23:b6:12:cf:98:a6:94:fc:82:15:
91:2a:3c:ba:10:b7:a2:cc:f0:fc:6b:cc:67:ac:0e:
5a:2e:8c:60:69:5e:d5:27:c3:cc:38:37:b0:50:2c:
9a:5b:da:bd:6d:3e:45:67:2a:d1:1f:53:f1:70:e3:
28:c9:b8:b2:bb:5f:fe:22:64:ab:5a:55:ca:ea:38:
5d:41:34:24:11:25:bb:7c:d0:f2:f9:58:83:f1:ec:
19:0e:47:f0:83:c6:6a:3e:f5:13:dc:a2:3e:b4:27:
da:c4:18:86:af:d9:5d:33:de:81:8f:bf:1f:99:c7:
08:28:7a:53:86:7c:af:5b:60:fb:78:e0:d2:82:84:
91:0a:04:df:3b:c8:63:23:f8:c3:4d:97:7d:bb:28:
27:61:c2:1a:c6:ac:45:e7:63:6b:01:3d:5a:62:36:
5e:bd:af:72:bb:5a:6d:26:f9:45:ec:d4:02:0a:58:
d0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C2:FF:81:76:D0:68:0B:71:D9:C8:EE:00:E9:F9:AC:C0:53:27:C5
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/70246ED6F7CF11EEBDBEE324017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.156.192.0/18
Signature Algorithm: sha256WithRSAEncryption
41:d7:7a:df:51:e1:07:c6:9f:b4:3d:99:14:95:8b:e1:82:55:
4a:04:3d:41:fd:77:a7:88:3c:dd:e9:2b:6c:17:ee:1b:5e:2b:
33:49:8c:73:93:80:45:54:5b:e2:93:5f:ce:30:c2:dc:8c:a8:
eb:e2:6b:10:2c:71:12:2b:6a:8b:b5:ce:30:44:96:5f:9f:47:
56:c7:ec:8a:c4:dd:c2:01:ea:23:09:e7:e5:7b:fc:a4:f6:12:
55:62:81:35:29:c0:d0:60:61:e6:24:05:03:c2:cb:ca:f3:10:
04:8b:a2:80:72:86:cb:89:4e:78:c0:ea:77:1d:04:83:4a:75:
58:2f:59:0c:37:d7:6b:78:1b:be:3d:a8:1e:df:6e:9c:27:98:
77:57:07:99:43:23:f0:41:f3:1b:be:9f:bc:54:3d:c6:f6:29:
0a:f8:ad:dd:d3:56:97:f9:07:9c:fb:fb:fa:d1:ed:39:2b:c4:
30:a7:59:38:72:d3:95:81:16:48:e8:ae:7b:88:14:9c:48:d9:
9f:a6:f6:1a:30:27:c5:6d:07:02:41:30:e1:ee:8a:32:4f:4a:
18:c9:0f:00:0f:62:36:24:e1:84:39:c1:29:08:a0:73:38:0e:
dc:c0:08:db:66:18:b2:97:d1:99:68:ca:45:3a:94:9d:bc:e8:
fe:1a:50:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:23 2024 by rpki-client on console-ams.rpki-client.org