Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/DAF813C003B411EF9A180C1B017001B1.roa
File: DAF813C003B411EF9A180C1B017001B1.roa (raw, json)
Hash identifier: rxENEqWWigTNJviQ+rAe/KPkUQD8qHgTCh4hs/xATo8=
Subject key identifier: 84:80:7A:D7:DA:53:23:A1:1C:FB:FE:2F:77:E6:41:D1:31:91:C6:F6
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01D7
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/DAF813C003B411EF9A180C1B017001B1.roa
Signing time: Fri 26 Apr 2024 10:07:58 +0000
ROA not before: Fri 26 Apr 2024 10:07:54 +0000
ROA not after: Thu 30 Apr 2043 10:07:54 +0000
asID: 30988
IP address blocks: 196.200.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471 (0x1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:07:54 2024 GMT
Not After : Apr 30 10:07:54 2043 GMT
Subject: CN=662b7cfe-fbe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ef:40:0d:51:59:b9:53:08:24:68:47:9e:11:
c0:4d:8a:3c:bf:db:a5:0c:fe:07:79:ef:64:f0:52:
7d:3c:87:0d:b7:75:ea:2a:60:1e:cf:78:69:eb:6f:
5c:a8:f4:df:30:26:1c:02:08:8b:83:df:13:29:6b:
03:04:30:d5:18:fc:49:d2:57:ae:3a:be:50:88:99:
70:d6:fb:46:52:54:e2:08:89:55:01:0d:ce:0d:6f:
45:cf:57:61:72:9d:05:8e:a5:b0:17:b9:c3:9c:7b:
75:6b:9d:ca:8b:af:b2:08:d3:cc:82:ae:78:82:c0:
d3:9e:7a:f5:c7:4b:e1:31:34:b3:f9:b6:8a:ab:4c:
cd:b6:db:17:75:2e:9c:08:38:5d:91:36:10:74:26:
71:6d:79:94:0a:06:e9:0f:c1:41:1e:9b:a8:3b:5b:
6b:5c:09:d1:ab:a0:77:e4:65:e9:ab:1d:57:84:95:
b6:b6:a9:a4:38:8d:df:8a:43:33:1d:e0:78:f1:38:
87:18:71:f2:5d:3e:73:1c:31:46:0d:b3:8e:22:ad:
10:e6:3c:ab:28:31:7c:0b:72:c5:63:5e:aa:8e:d0:
46:94:b4:f7:6b:fd:0a:27:76:4a:a7:2a:fc:33:fa:
d7:e3:a7:a3:bf:b2:27:76:57:78:e8:f9:fb:d0:08:
f3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:80:7A:D7:DA:53:23:A1:1C:FB:FE:2F:77:E6:41:D1:31:91:C6:F6
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/DAF813C003B411EF9A180C1B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.125.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:fe:96:42:30:40:d5:59:25:3f:e0:ca:81:cc:4e:cf:55:69:
22:32:da:5a:12:b2:af:bf:af:92:f0:d2:db:7e:4b:0a:fe:43:
b6:5d:62:ca:bf:3f:6e:c2:be:52:ce:7d:af:fc:60:49:2d:aa:
3a:3a:50:77:3c:36:51:f0:70:db:8f:f3:c0:c1:2d:4e:ab:c8:
88:dc:ab:fa:dc:38:1c:9d:bf:59:4e:fa:62:ea:ca:09:b7:97:
9a:47:57:8b:58:91:89:4c:53:73:2b:7a:7d:54:f4:52:09:3b:
36:54:5b:6b:5b:0d:f7:14:c7:e8:10:84:d7:ec:c4:1c:7b:3d:
3f:9a:e1:7e:c7:c2:61:db:18:0d:7b:3f:85:63:34:76:2e:50:
f8:94:cc:76:de:79:36:82:9a:e3:3b:76:05:40:47:8d:79:50:
0f:00:05:05:50:3c:a5:87:bf:9d:9d:26:05:ce:1d:9d:46:34:
17:e8:f2:68:d3:48:ce:d8:0d:f1:7b:46:f6:fd:04:86:e7:9d:
d2:8d:df:02:5c:68:2f:73:5c:c6:0f:64:c7:d6:2b:64:b6:83:
d2:21:a1:59:8b:55:99:07:8f:64:70:62:4e:7a:a1:14:03:b6:
47:e0:a9:1b:06:8f:19:d5:25:af:49:6e:8d:8c:cf:3f:c9:0c:
6a:9e:2b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:23 2024 by rpki-client on console-ams.rpki-client.org