Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/A50DEF3A8A1B11EF86B3879F762E951A.roa
File: A50DEF3A8A1B11EF86B3879F762E951A.roa (raw, json)
Hash identifier: 6S2eWQOAsB1C05yblXJP2r9a9WQgQ6FEOxOlJb4U21M=
Subject key identifier: 63:3F:BE:B6:C5:58:62:14:2F:6E:72:2F:19:1D:23:B9:ED:C8:9D:6A
Certificate issuer: /CN=F36C06DFAF/serialNumber=8BF44A3919B01DD545A5137DC96D8887C14494C4
Certificate serial: 11
Authority key identifier: 8B:F4:4A:39:19:B0:1D:D5:45:A5:13:7D:C9:6D:88:87:C1:44:94:C4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/i_RKORmwHdVFpRN9yW2Ih8FElMQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/A50DEF3A8A1B11EF86B3879F762E951A.roa
Signing time: Mon 14 Oct 2024 11:01:21 +0000
ROA not before: Mon 14 Oct 2024 11:01:17 +0000
ROA not after: Sun 14 Oct 2040 11:01:17 +0000
asID: 37467
IP address blocks: 197.154.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/i_RKORmwHdVFpRN9yW2Ih8FElMQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/i_RKORmwHdVFpRN9yW2Ih8FElMQ.mft
rsync://rpki.afrinic.net/repository/afrinic/i_RKORmwHdVFpRN9yW2Ih8FElMQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C06DFAF/serialNumber=8BF44A3919B01DD545A5137DC96D8887C14494C4
Validity
Not Before: Oct 14 11:01:17 2024 GMT
Not After : Oct 14 11:01:17 2040 GMT
Subject: CN=670cfa01-5989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:25:85:d8:8a:89:7f:e0:51:dc:a5:97:54:56:
c1:9a:53:c6:d1:0a:2b:28:aa:86:a9:02:4e:79:97:
36:84:1c:8d:bf:3d:34:6c:17:38:d4:f2:c2:f4:22:
22:1e:7a:05:2f:ee:cf:3d:83:15:62:88:41:67:aa:
62:d5:cb:74:ea:83:40:5e:cd:bc:72:cd:f0:1f:f7:
95:c1:c8:52:be:52:7e:72:2d:51:22:73:99:89:86:
14:bd:74:c3:3d:3c:d9:7a:da:03:b9:db:01:70:bb:
c9:87:16:ab:07:dc:e2:9c:60:74:77:0d:1a:c5:f2:
66:8c:c9:15:23:02:87:fd:1c:59:14:8d:b7:d3:f7:
d1:2f:cd:8f:7a:71:5c:ad:f9:94:70:9b:91:2b:2f:
ec:0f:75:5b:62:cb:26:66:e9:44:aa:25:30:3e:fb:
9b:42:01:33:50:96:ec:fd:b1:70:ca:74:23:55:58:
47:73:18:fc:73:9d:c9:2e:5c:f2:3b:c0:1b:dd:c6:
8b:8a:3b:27:b9:d6:e7:29:e9:c4:7e:3b:10:90:f4:
10:6d:fd:a1:55:cf:52:ce:c1:e3:c6:af:d0:c4:9b:
e0:f8:56:10:0c:8e:79:1e:b3:62:8f:69:84:8a:5c:
30:88:2e:78:b3:ac:bc:58:e8:9c:db:90:12:93:00:
87:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3F:BE:B6:C5:58:62:14:2F:6E:72:2F:19:1D:23:B9:ED:C8:9D:6A
X509v3 Authority Key Identifier:
keyid:8B:F4:4A:39:19:B0:1D:D5:45:A5:13:7D:C9:6D:88:87:C1:44:94:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/i_RKORmwHdVFpRN9yW2Ih8FElMQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/i_RKORmwHdVFpRN9yW2Ih8FElMQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C06DF/3600B3AA856811EF8C875646762E951A/A50DEF3A8A1B11EF86B3879F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.154.0.0/16
Signature Algorithm: sha256WithRSAEncryption
65:ef:c7:86:be:53:b5:9e:0e:16:bb:73:2c:f4:5d:29:9a:37:
8d:80:9c:f5:f6:3a:58:a1:d3:26:39:f3:18:a5:d0:d5:da:69:
78:a9:e7:bc:fe:ca:bb:58:d3:b6:76:83:b4:c7:3a:17:7c:b9:
a7:a7:c9:79:40:e9:38:b0:78:9d:28:9b:2c:c8:46:fb:4b:38:
9d:0f:f9:44:f9:93:a5:34:33:02:2a:73:89:63:25:d9:48:5e:
89:2e:da:cd:8a:13:e1:67:9e:9e:eb:67:d9:c9:5c:b4:2b:c4:
04:db:b4:3e:a8:66:27:26:ef:ff:4c:77:20:4e:37:68:93:a9:
b1:97:77:9f:f2:08:ad:e5:74:f2:4a:4a:e7:c4:4c:80:c5:0f:
e5:5a:d8:96:49:f1:b2:50:e7:16:54:00:9a:d6:c7:5c:0a:9a:
96:5e:6c:ef:3e:27:cb:30:30:d2:53:bb:f8:3c:e7:36:2c:c8:
e6:7a:c9:f9:09:40:50:38:6e:80:37:04:0c:46:92:0c:82:c5:
50:26:37:0e:be:a4:37:d3:f9:ef:47:d0:f0:23:97:37:62:59:
8a:e3:da:6e:54:5f:ba:dd:b2:71:0f:e8:f9:58:5a:66:54:f3:
f4:4b:3f:91:a2:b6:35:45:f5:cc:c5:60:7b:8b:ff:88:f0:4d:
fe:5c:04:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:47 2024 by rpki-client on console-ams.rpki-client.org