Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/79B701E003CB11EF85CDF94F017001B1.roa
File: 79B701E003CB11EF85CDF94F017001B1.roa (raw, json)
Hash identifier: K7CdHfub6UwmxKeggh8URX8Xwp/ZkDYv2zBhOwVw1q4=
Subject key identifier: 2C:7D:6E:5F:35:39:08:1B:0E:B9:67:75:5B:15:85:A6:BE:75:44:54
Certificate issuer: /CN=F369E115AF/serialNumber=4BD1270B700FF29D18423F183B9F92B36887D6DD
Certificate serial: 02
Authority key identifier: 4B:D1:27:0B:70:0F:F2:9D:18:42:3F:18:3B:9F:92:B3:68:87:D6:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/79B701E003CB11EF85CDF94F017001B1.roa
Signing time: Fri 26 Apr 2024 12:49:53 +0000
ROA not before: Fri 26 Apr 2024 12:49:49 +0000
ROA not after: Tue 31 Dec 2024 12:49:49 +0000
asID: 37714
IP address blocks: 154.117.64.0/18 maxlen: 18
154.117.64.0/18 maxlen: 22
154.117.64.0/18 maxlen: 24
2c0f:f418::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.mft
rsync://rpki.afrinic.net/repository/afrinic/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E115AF/serialNumber=4BD1270B700FF29D18423F183B9F92B36887D6DD
Validity
Not Before: Apr 26 12:49:49 2024 GMT
Not After : Dec 31 12:49:49 2024 GMT
Subject: CN=662ba2f1-37ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ca:72:e9:c4:0a:31:58:c8:cb:6a:7f:71:bc:
32:ed:44:f0:80:1f:58:28:1c:a6:7a:42:85:c6:52:
b4:a9:7c:1b:63:06:8b:b4:eb:f5:cc:3e:eb:4e:b2:
07:f6:02:97:58:f8:21:69:6d:7a:ce:67:04:ba:0e:
dd:e2:cf:f9:93:8a:d4:5a:6a:71:3a:61:cb:32:f4:
6c:ab:69:db:54:00:3f:1f:3c:31:89:9d:83:0c:e5:
c6:d3:19:d7:a5:c3:6d:dd:de:d7:af:fe:9b:7d:57:
f2:0f:a3:7e:df:93:a1:de:d3:82:39:c5:d6:f1:e6:
49:8e:14:c4:59:ee:93:1d:22:3a:52:ca:2d:e0:d8:
c9:c3:94:bd:2a:69:6f:e0:c5:77:bc:08:e4:24:86:
f3:39:7e:fa:b5:08:e0:bf:c4:0e:45:14:41:ef:10:
61:0e:06:62:58:5f:bf:fc:b2:23:0c:6e:e1:51:24:
17:9e:8d:ce:db:a4:4d:c6:a9:0d:c7:75:01:aa:bc:
d6:fb:18:10:d6:14:af:13:e2:51:d2:32:26:d1:a4:
e5:a4:c3:75:be:24:9d:80:49:44:e3:06:bc:fa:59:
06:53:58:7a:06:2c:18:fb:d0:d9:12:4b:f0:fb:49:
9c:dc:ad:72:20:d2:90:7d:a7:ef:ea:f2:62:0b:3f:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7D:6E:5F:35:39:08:1B:0E:B9:67:75:5B:15:85:A6:BE:75:44:54
X509v3 Authority Key Identifier:
keyid:4B:D1:27:0B:70:0F:F2:9D:18:42:3F:18:3B:9F:92:B3:68:87:D6:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S9EnC3AP8p0YQj8YO5-Ss2iH1t0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E115/FBFEB76403C211EF9713C10C017001B1/79B701E003CB11EF85CDF94F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.117.64.0/18
IPv6:
2c0f:f418::/32
Signature Algorithm: sha256WithRSAEncryption
e8:4b:27:f0:fd:c0:81:c1:5a:b7:a9:ab:cb:f3:f9:78:23:2a:
46:22:db:ce:31:6c:9b:de:62:35:f3:0f:70:a3:f4:9e:f6:0d:
a2:b4:c5:74:00:f6:cc:97:c4:32:12:96:f0:ba:7b:8d:25:1d:
3f:04:33:b4:6d:81:2b:7f:20:57:24:bd:ae:4e:ca:af:8f:b1:
f6:1d:fd:16:13:c2:21:06:5a:47:eb:db:8d:1d:d3:8f:6f:bf:
28:25:34:ed:cf:7e:00:72:ff:e6:23:34:01:46:81:7f:bb:a8:
43:60:cf:36:6f:84:30:f5:e9:27:f0:44:4d:5d:65:85:80:bd:
57:b1:a5:a7:95:08:15:a4:0d:e9:e4:eb:ab:19:d0:82:6f:0b:
14:02:da:dc:75:ad:8b:88:d7:7e:2d:89:7a:c0:6f:56:d8:bf:
34:2a:68:34:68:2b:a1:10:f8:68:a3:18:4d:2c:b7:7c:ce:da:
cf:6b:57:a5:18:8d:c1:73:07:39:e6:3d:14:e9:43:12:a3:d3:
50:34:4a:0d:b1:8b:fc:7b:77:85:81:9f:27:26:ff:f0:1f:b3:
2c:a5:66:0a:48:2f:35:b8:d5:b1:1e:7e:8b:a5:b5:ba:16:78:
e5:44:6a:22:6e:7f:f9:e5:3d:42:5a:c4:5b:d1:05:61:c1:15:
f3:f1:68:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org