Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/6A1E070A846E11EF95C3ECA5762E951A.roa
File: 6A1E070A846E11EF95C3ECA5762E951A.roa (raw, json)
Hash identifier: qXYZkDeWWR0u4xjdfmy4wQ/7TN06VLsNt66GOFiNZ4M=
Subject key identifier: D8:08:20:30:9B:5D:FB:55:9B:BB:E9:69:88:C4:88:13:94:EE:12:C2
Certificate issuer: /CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Certificate serial: 081C
Authority key identifier: 7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/6A1E070A846E11EF95C3ECA5762E951A.roa
Signing time: Mon 07 Oct 2024 05:38:43 +0000
ROA not before: Mon 07 Oct 2024 05:38:40 +0000
ROA not after: Sun 07 Oct 2029 05:38:40 +0000
asID: 327804
IP address blocks: 154.68.160.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.mft
rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2076 (0x81c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Validity
Not Before: Oct 7 05:38:40 2024 GMT
Not After : Oct 7 05:38:40 2029 GMT
Subject: CN=670373e3-d2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c9:e9:14:58:fd:b6:b1:50:a8:7b:bf:a9:73:
11:d7:28:e6:d8:3d:41:7c:82:d5:d8:b1:35:59:c3:
8a:f7:f2:d0:f9:fb:d3:4c:80:3e:fa:ab:8b:69:96:
c2:83:6d:56:63:7c:93:6a:22:30:4d:23:b4:c4:07:
dc:40:39:b1:3d:af:74:b6:96:a3:fa:1c:3e:90:b7:
0d:c9:05:b1:78:6b:d6:df:68:60:63:05:95:d6:bc:
bb:a9:e9:09:58:75:ba:d3:0a:7a:76:57:fa:92:2f:
cc:30:06:35:ba:44:d8:e2:fd:e4:c8:f9:fd:db:13:
59:db:0c:91:15:0b:89:c7:ae:e4:e2:c7:03:13:f4:
23:f9:e9:7c:94:9b:0a:cd:5a:e4:65:78:67:5e:25:
09:f4:af:eb:77:a3:34:47:d6:f5:94:48:db:7c:01:
e1:fd:4c:7c:14:45:2b:e9:c0:dd:91:9d:06:f7:94:
da:51:7a:0c:db:72:b7:81:f3:4d:3b:b8:a9:1d:dd:
a9:00:47:70:18:b4:62:f8:f3:50:37:87:76:b2:eb:
c8:7a:fa:0e:af:f2:1d:52:38:70:39:91:a0:8a:cd:
ab:7a:40:af:ad:b2:58:d5:dd:5e:66:59:3c:37:a8:
48:26:ff:af:5e:8d:c4:6f:48:28:44:70:44:cb:26:
28:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:08:20:30:9B:5D:FB:55:9B:BB:E9:69:88:C4:88:13:94:EE:12:C2
X509v3 Authority Key Identifier:
keyid:7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/6A1E070A846E11EF95C3ECA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.68.160.0/20
Signature Algorithm: sha256WithRSAEncryption
63:91:3a:09:1a:6c:17:c7:05:56:64:f3:70:73:03:26:5e:e3:
0d:d5:e4:87:2b:fa:58:77:96:80:60:eb:45:11:77:81:e6:08:
67:42:87:ff:8c:89:6f:56:d3:32:ec:07:22:dc:e3:5e:fe:4d:
52:a9:5e:00:42:5b:b6:12:39:ba:4b:be:36:68:8c:27:b9:4b:
11:8c:50:45:2b:ed:9c:15:c2:ac:95:e0:b7:63:a9:1d:55:54:
3c:11:51:c6:d7:c1:fe:8f:77:64:24:2d:23:9f:dd:69:9c:a3:
0d:f9:73:64:a3:57:ec:b6:e5:c0:40:36:90:86:cf:1a:67:0c:
50:f4:43:ac:ab:18:11:56:f8:fb:94:ab:c4:5e:f9:97:8d:e7:
bf:cc:b4:05:6c:b6:9e:b4:ae:06:a6:08:7c:ef:e5:9f:d7:e6:
ce:33:3c:cd:20:be:67:61:ac:3e:50:60:d6:7d:b0:8d:b2:16:
e1:2a:e3:a6:ea:2f:14:fc:ae:07:79:19:b1:ac:11:71:bb:d3:
9e:be:ae:b4:31:ba:8e:d2:a8:63:55:9b:e0:9a:cc:3f:2b:25:
77:a8:23:01:b6:06:65:6f:65:82:76:b2:a0:e8:5d:0f:ae:ca:
ff:8c:da:a6:9c:1e:62:8e:49:df:52:1f:e4:97:0f:48:21:03:
a5:8b:c0:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org