Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/A20A504A0AAA11EE812F6E594AD9E6FC.roa
File: A20A504A0AAA11EE812F6E594AD9E6FC.roa (raw, json)
Hash identifier: G7RsbPwM9vl05EvPa/pSvH1sxjZhrGpa0npEjP9lu34=
Subject key identifier: 97:73:05:8B:7E:4B:E9:16:9B:33:8B:B9:C0:5F:22:C7:8F:86:BF:F9
Certificate issuer: /CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Certificate serial: 07
Authority key identifier: E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/A20A504A0AAA11EE812F6E594AD9E6FC.roa
Signing time: Wed 14 Jun 2023 11:57:27 +0000
ROA not before: Wed 14 Jun 2023 11:57:23 +0000
ROA not after: Fri 13 Jun 2025 11:57:23 +0000
asID: 36959
IP address blocks: 197.220.0.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.mft
rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Validity
Not Before: Jun 14 11:57:23 2023 GMT
Not After : Jun 13 11:57:23 2025 GMT
Subject: CN=6489ab27-3d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:78:cc:8f:24:05:72:f2:3a:a0:97:e8:c3:2b:
0d:6b:f2:a1:49:36:8e:45:03:d6:cc:9a:1c:64:0f:
bb:57:f5:2a:b0:82:10:b0:7b:54:0a:e5:cb:39:3e:
38:4d:da:7b:62:1c:54:1a:c0:da:9d:11:9d:dd:76:
68:c6:fc:e6:2d:77:47:6b:36:29:16:8a:78:8e:45:
92:87:e5:dc:89:c0:51:83:7d:dc:bb:d4:dc:ce:02:
2a:74:61:ce:9b:bb:71:1e:a7:b5:46:0f:9f:93:d0:
c3:65:19:d0:eb:80:10:d6:26:19:5c:31:ef:2d:83:
25:4f:2c:b1:68:b3:30:00:59:34:c6:ba:c9:59:b9:
c3:15:aa:2e:b5:c6:78:4a:fa:c8:f4:ae:e7:a4:ea:
6e:59:0a:d8:d2:dd:ee:0a:83:5d:d1:75:30:59:f7:
ab:fc:f9:b5:48:15:3a:17:c4:24:9b:95:65:b9:05:
4d:59:b7:14:30:f4:2f:62:ca:28:35:6f:d8:0c:f6:
96:3d:ee:49:f1:94:bb:f2:8c:a1:0e:18:47:6d:60:
3c:3b:17:4b:e2:56:74:36:ba:0a:d4:bf:e1:1e:83:
9b:73:de:a0:9a:61:f4:c9:56:9e:23:4f:e2:48:7a:
97:2e:5f:56:fc:c5:59:9a:53:23:13:41:e1:3b:e4:
56:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:73:05:8B:7E:4B:E9:16:9B:33:8B:B9:C0:5F:22:C7:8F:86:BF:F9
X509v3 Authority Key Identifier:
keyid:E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/A20A504A0AAA11EE812F6E594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.220.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6a:a2:ed:ed:6b:9c:82:09:13:3a:ec:e0:6a:90:a4:fa:6e:08:
6c:0b:6a:68:39:e7:d6:3e:2c:ab:7b:7e:84:c8:a0:e9:d3:98:
e2:52:db:11:a8:99:3c:25:e9:d6:21:c9:5b:ae:c2:b8:75:17:
33:a7:d0:bd:71:71:05:ad:06:45:87:08:8d:ef:90:ca:2f:20:
c2:ec:4a:b5:a1:23:36:eb:e2:af:4b:be:04:3d:6e:dc:9d:c5:
ef:00:9c:c6:09:b1:cf:16:66:b6:f7:b8:65:5e:98:72:79:28:
1e:01:1a:99:a5:50:14:21:8c:81:30:cc:60:b6:f3:73:38:bb:
1b:f6:18:05:31:14:56:38:33:84:13:02:a9:1e:93:03:d7:a3:
e1:3a:fc:1f:3d:d4:0f:df:aa:70:ec:6f:b4:e7:56:f9:49:74:
2c:f8:30:c9:47:d2:b2:3f:ca:f8:51:5a:3d:a3:67:b7:7e:60:
dc:db:d2:9d:bd:cb:72:0a:09:b3:cb:6f:2f:6e:c4:7e:6d:3b:
41:ab:f2:99:4a:97:ea:f9:44:6b:1c:5a:51:52:d8:6c:e3:c4:
d1:e7:f1:e2:28:de:0c:c8:97:ca:2b:b5:dc:c7:f3:0f:fc:9d:
4b:59:16:6b:5b:1d:96:87:7c:c8:4b:60:b2:99:af:28:cc:74:
ed:69:54:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org