Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/A525264A7A4A11EFA9096D5A762E951A.roa
File: A525264A7A4A11EFA9096D5A762E951A.roa (raw, json)
Hash identifier: JSBdRKEDygWTCfkPw2gN5tLwGczU5g0fmhsZylS44ow=
Subject key identifier: 9F:0C:A1:D0:23:6E:A9:12:B6:31:77:17:4B:3E:DF:73:04:C1:FA:B1
Certificate issuer: /CN=F36B583CAF/serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Certificate serial: 02B1
Authority key identifier: 29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/A525264A7A4A11EFA9096D5A762E951A.roa
Signing time: Tue 24 Sep 2024 07:57:29 +0000
ROA not before: Tue 24 Sep 2024 07:57:25 +0000
ROA not after: Mon 31 Mar 2025 07:57:25 +0000
asID: 37558
IP address blocks: 197.215.128.0/19 maxlen: 24
2c0f:3200::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.mft
rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 689 (0x2b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B583CAF/serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Validity
Not Before: Sep 24 07:57:25 2024 GMT
Not After : Mar 31 07:57:25 2025 GMT
Subject: CN=66f270e9-16ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ea:ba:52:35:a2:57:68:24:96:d9:5b:e2:8c:
ca:10:00:48:1f:3d:41:db:15:06:df:b5:97:10:45:
f6:ba:2c:b6:46:79:fe:61:32:1d:8a:9c:f5:0c:94:
03:10:29:6e:47:b9:68:2f:88:22:65:ba:5e:cf:a5:
c0:46:47:23:38:b1:ed:4e:7f:f8:d1:20:9c:61:60:
f7:7b:62:a3:95:ad:95:9f:6c:1d:30:ef:e1:6c:bd:
2b:94:bc:47:51:aa:ce:88:0a:a7:eb:44:34:22:f0:
27:7f:1b:54:66:ec:26:41:e4:25:d2:92:3b:de:99:
7d:a1:a6:aa:b7:27:dd:90:98:0f:a0:c8:0e:d2:3a:
2a:77:d9:cb:57:7f:81:a5:91:b4:9a:38:fc:6b:40:
c5:58:7b:ab:3a:3d:01:42:f5:d1:d5:5a:06:b9:b7:
d0:5e:f4:d4:8f:74:f9:2a:72:47:5b:b6:aa:cb:bb:
a2:4f:18:e8:91:22:08:0d:7c:d8:49:12:f3:12:b6:
38:d3:35:7e:21:11:6e:e7:b0:7d:bb:81:44:25:03:
b1:87:e9:32:50:2f:18:78:fc:e3:3c:15:26:52:82:
36:53:e0:56:0f:99:92:1a:1d:ce:2c:cb:c1:27:5e:
b8:86:46:d0:a5:41:44:9a:47:c6:84:65:a4:ff:73:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0C:A1:D0:23:6E:A9:12:B6:31:77:17:4B:3E:DF:73:04:C1:FA:B1
X509v3 Authority Key Identifier:
keyid:29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/A525264A7A4A11EFA9096D5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.128.0/19
IPv6:
2c0f:3200::/32
Signature Algorithm: sha256WithRSAEncryption
28:f9:1a:49:7f:9c:4f:0f:37:2d:8c:cd:b2:aa:dd:5f:41:af:
1a:24:0a:4f:5d:38:63:38:ab:db:06:7a:f2:c4:60:17:a2:d9:
e8:61:9e:c6:ce:39:b4:4d:ef:d4:e2:a3:ed:6a:4b:66:5d:16:
7c:2e:95:40:ff:42:84:c9:bd:37:4c:b6:e7:72:f0:8e:44:24:
11:3f:02:ec:fc:50:46:62:93:51:64:ca:47:88:25:cf:af:ae:
5f:d9:6d:c0:a1:a2:8d:df:24:c9:72:41:9b:36:e5:7c:42:26:
bb:08:ad:2f:0b:3f:1d:fd:6f:be:37:0e:ff:02:dc:d8:6a:7f:
96:2c:20:62:f0:60:a9:6b:e7:96:e9:a4:dd:19:46:ff:e3:75:
6e:1d:77:b5:7e:3e:6c:a8:1e:58:89:1c:09:84:7c:2c:b6:78:
0d:b2:23:50:60:bd:d9:51:43:a3:07:9b:ff:c1:dd:e8:8a:da:
53:b6:d4:fe:ce:43:93:af:9a:f8:a5:c4:a3:ff:66:fa:c1:3d:
3c:a8:54:23:38:c4:c1:cc:a5:e7:fa:8e:db:7f:f9:ea:f5:dd:
38:63:ed:1f:22:b8:c2:a2:99:0d:65:94:0d:9f:5a:5b:11:a4:
12:d9:f3:6a:74:65:3b:01:9c:9e:62:b4:d6:b1:8b:5d:b3:ca:
16:98:fb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org