Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F8A856B603B211EFB3ADE30A017001B1.roa
File: F8A856B603B211EFB3ADE30A017001B1.roa (raw, json)
Hash identifier: uJrPT/XteQRfZvDwpMyFdVnvV7NPg5BDECy1d8844bY=
Subject key identifier: B4:F3:ED:F7:56:47:41:D0:DC:97:47:48:F4:00:8E:29:4B:4F:10:19
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01C1
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F8A856B603B211EFB3ADE30A017001B1.roa
Signing time: Fri 26 Apr 2024 09:54:28 +0000
ROA not before: Fri 26 Apr 2024 09:54:25 +0000
ROA not after: Thu 30 Apr 2043 09:54:25 +0000
asID: 30988
IP address blocks: 196.200.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449 (0x1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 09:54:25 2024 GMT
Not After : Apr 30 09:54:25 2043 GMT
Subject: CN=662b79d4-1d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7f:6f:f1:00:4c:39:ba:4e:bb:e9:e3:83:4b:
83:c1:17:ee:dd:3f:3b:ee:6b:b8:ae:8b:7a:12:e1:
91:ee:f2:f7:4c:fa:b2:ab:ce:61:80:46:6d:b1:91:
a6:2b:bc:2e:e0:7d:7c:ef:04:2f:16:e0:8d:d4:08:
fa:d4:8e:9f:0b:73:3d:94:88:73:1b:41:d7:f8:ff:
64:ef:1c:f1:12:75:b4:77:d4:5b:9e:8d:00:ad:58:
4e:b8:97:2b:4f:29:f0:72:38:6a:2f:09:d3:f3:f5:
ac:17:19:d1:b2:63:67:92:c6:aa:f4:dc:68:65:39:
15:43:19:c2:84:e6:57:38:72:4f:0c:0e:7a:d3:d3:
a9:3c:34:b5:38:a3:91:6f:36:60:1c:0a:6b:83:4e:
e0:16:46:1f:c4:ff:40:33:3d:23:9e:bf:47:cc:51:
e9:d4:3d:d9:96:a5:a7:66:05:4b:51:45:99:53:97:
07:af:49:3f:3a:b4:c4:53:67:2d:c9:a9:69:28:a0:
a6:95:06:c8:fb:a3:f1:ca:1a:17:ff:59:1c:01:dd:
4e:94:0f:8a:e9:a6:3b:cc:6f:f4:01:bf:37:10:d3:
9f:57:ed:1a:14:71:d3:12:1f:e0:82:25:18:6c:de:
9d:86:b4:a2:91:d9:95:65:f9:f7:9e:ef:8e:6e:bd:
af:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F3:ED:F7:56:47:41:D0:DC:97:47:48:F4:00:8E:29:4B:4F:10:19
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F8A856B603B211EFB3ADE30A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.113.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ed:86:2c:6b:a5:1d:39:f6:83:4f:0d:9b:96:a8:c8:d2:8f:
dc:80:76:f1:7e:07:7a:1d:56:61:75:4a:03:7a:3a:19:3d:f9:
cf:cb:72:fc:f3:72:b4:33:8f:52:bf:36:91:a1:d7:77:74:ae:
c8:51:b1:be:d7:20:d7:e0:36:24:68:02:5e:04:6e:d2:c0:ae:
b6:3c:ac:89:d9:43:3e:40:9d:81:a7:47:02:f5:1b:70:b3:0f:
73:1f:a2:8b:d6:58:82:c0:f3:72:98:a9:b0:63:e9:3e:00:fd:
7e:1f:15:14:59:af:fe:4c:ad:ca:ad:ee:d4:0d:ee:8c:1a:bb:
a6:0a:42:3d:20:04:a2:16:8e:06:2a:ac:1d:d3:4b:29:51:be:
35:f2:cb:85:12:99:c7:5b:5b:e8:68:b4:df:56:c6:eb:93:98:
01:b2:66:66:ec:66:5b:17:14:bc:e6:40:ec:be:be:1e:4a:2b:
ef:b9:9a:c1:3a:ca:4f:2c:98:13:ee:bf:24:6e:e0:d6:53:c9:
49:26:8f:6d:34:d0:70:4a:a9:98:3c:0d:dc:fd:19:37:45:e3:
40:db:c5:dc:0c:c7:58:40:8e:d3:50:a7:9f:0e:8e:b9:85:02:
18:44:94:70:de:ff:2a:79:56:11:6d:d9:ff:c9:82:b9:06:2d:
21:8f:6f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:23 2024 by rpki-client on console-ams.rpki-client.org