Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/57F065AC0AAB11EE93858A5B4AD9E6FC.roa
File: 57F065AC0AAB11EE93858A5B4AD9E6FC.roa (raw, json)
Hash identifier: 3dH4FpXYKrw/ZxlMDdoPn1emT4uwkIhadIqln0a8STQ=
Subject key identifier: 06:59:ED:42:39:F9:30:4F:D6:3F:2D:DD:36:5C:72:C7:E6:8B:42:33
Certificate issuer: /CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Certificate serial: 0D
Authority key identifier: E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/57F065AC0AAB11EE93858A5B4AD9E6FC.roa
Signing time: Wed 14 Jun 2023 12:02:33 +0000
ROA not before: Wed 14 Jun 2023 12:02:29 +0000
ROA not after: Fri 13 Jun 2025 12:02:29 +0000
asID: 36959
IP address blocks: 196.12.12.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.mft
rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Validity
Not Before: Jun 14 12:02:29 2023 GMT
Not After : Jun 13 12:02:29 2025 GMT
Subject: CN=6489ac59-a986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:15:97:74:33:38:f6:8a:93:ad:1a:47:82:86:
7e:f4:a9:43:67:83:15:19:bf:72:3a:0c:10:0d:7a:
53:5f:93:cc:8a:ac:2a:df:60:f7:28:a2:25:5c:e6:
f2:1d:ab:c3:2e:57:ba:80:23:23:ae:a0:9f:13:37:
ec:44:71:dc:5d:3a:13:f0:b4:b4:32:16:31:8c:22:
e2:a9:cf:f3:37:e2:12:53:99:56:a1:be:2b:82:2b:
75:e5:b9:30:bd:3b:b2:a4:45:cc:50:4b:a4:8b:65:
1a:1b:70:9b:2c:dc:5b:66:34:b8:0e:83:fc:a4:d1:
00:88:9a:87:7b:1e:26:50:b6:9c:a4:1a:c5:e2:1a:
93:29:d3:76:a2:f1:1a:24:c0:ee:b7:7a:de:e3:54:
71:95:2f:17:8f:37:be:0b:c3:be:0d:9e:fd:4c:e3:
c8:8f:54:51:24:3b:22:ba:f7:5f:f5:f6:9c:4d:53:
2a:0b:bc:6a:17:18:8c:bd:0d:1d:c1:0c:7b:ed:78:
e7:d7:a8:9f:e8:8f:3f:8f:b0:1e:73:65:36:84:a7:
a7:49:a4:41:9f:35:9c:2d:28:46:6d:b2:08:c8:87:
84:1f:bc:66:4b:e2:74:3c:9b:91:bd:a3:40:bb:98:
f7:5d:f2:a7:93:30:15:a3:21:ea:0f:7b:c1:2d:8a:
ef:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:59:ED:42:39:F9:30:4F:D6:3F:2D:DD:36:5C:72:C7:E6:8B:42:33
X509v3 Authority Key Identifier:
keyid:E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/57F065AC0AAB11EE93858A5B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.12.12.0/22
Signature Algorithm: sha256WithRSAEncryption
95:8d:51:28:1a:f8:db:2f:22:e3:7b:43:2c:16:10:03:7a:5a:
6b:e9:07:28:03:2b:0b:0d:d2:85:da:c1:ac:a2:70:3b:ab:d7:
32:3a:ee:b7:03:1d:79:d6:e7:b1:d4:4f:e7:9d:38:6e:be:a9:
bb:33:34:78:a0:99:70:f4:ca:7f:4b:5b:65:e7:30:62:a8:47:
f3:a7:4e:ec:f9:e2:77:be:7c:7a:c0:ab:d3:bd:80:3c:1c:9b:
75:f8:b8:18:5c:f0:18:dd:27:0b:d4:6c:aa:ae:5a:3d:68:c8:
ad:4a:98:b8:ff:96:b5:d6:01:57:9a:08:f2:fb:7e:f7:f4:be:
a1:27:bd:3f:fa:e2:14:a1:87:e4:f3:64:f6:49:4f:8b:82:d0:
d7:6f:d1:b1:c2:4a:46:60:cb:fa:b2:e0:4a:5f:55:16:6a:5c:
08:d3:5b:73:25:99:16:a6:9f:d3:e1:dd:49:57:08:cf:02:00:
e9:1e:64:b5:46:ff:56:9c:a4:96:7c:ba:19:e6:55:20:a7:0e:
6a:59:34:b6:38:a9:15:1e:e6:0d:5a:ce:ba:8f:cb:eb:f2:98:
53:6f:c2:17:c8:d0:3f:8a:e7:9a:c7:11:f2:a4:db:92:2b:ce:
4c:98:3c:25:2a:8d:ee:0c:fa:25:f9:9b:d6:91:a2:ca:dc:0c:
38:a3:90:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:35 2024 by rpki-client on console-fra.rpki-client.org