Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/4281149CF7DF11EE80FF1021017001B1.roa
File: 4281149CF7DF11EE80FF1021017001B1.roa (raw, json)
Hash identifier: cUFtSMR0TSwZ2UTIiyI0fv21ujQldFBY5Sypbj+4CnU=
Subject key identifier: 02:8B:F3:3C:04:8A:95:94:96:41:CC:7C:A1:61:02:A6:6D:55:F4:E4
Certificate issuer: /CN=F36AC63AAP/serialNumber=53F78D80CAC0EB2EACD77B0175DF319E8F752796
Certificate serial: 0113
Authority key identifier: 53:F7:8D:80:CA:C0:EB:2E:AC:D7:7B:01:75:DF:31:9E:8F:75:27:96
Authority info access: rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/4281149CF7DF11EE80FF1021017001B1.roa
Signing time: Thu 11 Apr 2024 08:41:16 +0000
ROA not before: Thu 11 Apr 2024 08:41:13 +0000
ROA not after: Tue 11 Apr 2034 08:41:13 +0000
asID: 8075
IP address blocks: 163.199.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.mft
rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
rsync://rpki.afrinic.net/repository/apnic/bxoQPhQn_wNIOr_Z402svhUk_4s.crl
rsync://rpki.afrinic.net/repository/apnic/bxoQPhQn_wNIOr_Z402svhUk_4s.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/apnic-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:10:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275 (0x113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AC63AAP/serialNumber=53F78D80CAC0EB2EACD77B0175DF319E8F752796
Validity
Not Before: Apr 11 08:41:13 2024 GMT
Not After : Apr 11 08:41:13 2034 GMT
Subject: CN=6617a22c-a68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d1:10:96:f5:e8:9d:92:63:e9:96:36:3e:66:
d5:90:12:b2:40:88:9d:d1:0f:e7:73:7d:e4:09:8f:
d2:c3:99:e9:c3:45:ca:12:e8:b1:42:7c:c1:0f:f5:
a2:fb:48:5b:93:76:ff:e9:27:96:15:52:0f:98:8c:
90:36:21:23:96:74:f5:69:96:72:e2:95:59:59:08:
17:a1:70:4b:1f:a0:84:3b:9d:d6:b1:89:d8:59:68:
d0:e5:01:ec:84:6e:e4:94:6d:ad:b7:ce:1b:db:44:
38:27:2b:73:09:59:fe:a2:78:6c:67:fc:1c:43:5e:
aa:d0:f3:69:b7:9a:74:39:66:bb:9a:c5:e5:0a:a1:
e6:f9:76:ab:9a:4c:c9:14:cc:d2:52:eb:9b:0b:e3:
46:c9:4f:ba:ed:89:92:59:78:7a:35:02:79:ce:ce:
da:93:3c:e0:40:26:ae:29:f4:f2:60:da:ed:c6:f4:
a3:97:2f:20:e4:d3:46:ef:4f:df:a6:6e:64:03:88:
0f:c7:49:25:db:e3:5a:49:d0:71:e6:c6:37:42:17:
10:e9:b8:8d:ed:a4:97:6c:96:f4:95:08:c6:6a:c7:
33:a0:d6:20:3f:ba:a7:37:e9:2d:f5:16:ff:21:82:
c3:d8:14:ae:b1:dc:bf:25:d3:d8:a4:77:5e:dd:b3:
44:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8B:F3:3C:04:8A:95:94:96:41:CC:7C:A1:61:02:A6:6D:55:F4:E4
X509v3 Authority Key Identifier:
keyid:53:F7:8D:80:CA:C0:EB:2E:AC:D7:7B:01:75:DF:31:9E:8F:75:27:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/4281149CF7DF11EE80FF1021017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.199.84.0/23
Signature Algorithm: sha256WithRSAEncryption
84:0b:5d:1c:7e:cd:15:fc:1b:6c:29:ca:b3:a2:8d:16:bb:ef:
be:34:ee:c6:71:a4:2c:f1:e1:48:05:37:b8:58:47:0e:52:9d:
8a:6f:87:41:f1:15:8c:7c:2a:18:b3:24:85:58:94:c9:4f:67:
9b:75:11:7c:fb:8c:f2:17:dd:16:5d:d2:c8:e5:89:18:9a:bf:
5b:2c:d8:a1:ca:b5:9d:e6:81:ab:05:0c:1e:ad:1e:65:62:68:
ad:d4:c3:28:73:65:d1:c6:4a:ca:a1:70:06:a8:4d:d2:e1:75:
d8:c7:74:58:95:a6:f6:4b:9b:e5:5e:a0:2d:75:ab:d8:7b:f3:
96:35:97:0f:4c:88:88:bb:ee:9a:0d:79:0c:29:20:92:ae:5f:
ee:f3:1b:2c:cf:59:f7:a1:d6:c3:1f:b7:a1:3e:0d:56:f4:bd:
7d:c2:e4:a1:b9:e1:ee:e6:90:56:23:c0:b8:1f:bc:0b:d9:ed:
74:fa:92:82:67:d5:67:61:7c:1f:64:8b:60:7f:8d:7c:51:26:
12:e4:9b:a6:d2:09:e3:2c:c2:9b:4c:82:21:cc:cd:69:ae:9d:
6a:95:20:04:d6:d4:07:37:a8:da:4e:f4:54:f9:65:17:dc:54:
ef:dd:66:a5:67:70:0f:db:c0:7b:8b:b0:0a:b5:25:e6:19:1a:
e0:92:3b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:40 2024 by rpki-client on console-ams.rpki-client.org