Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/83DE5F6A846D11EFA57E969F762E951A.roa
File: 83DE5F6A846D11EFA57E969F762E951A.roa (raw, json)
Hash identifier: IHDNSoDz6NaLFKQMla3bz7pkaWMQeK4uJ2veJcSe6Bo=
Subject key identifier: F1:9B:A2:A6:18:06:C5:4D:4E:08:DE:C6:BE:D4:68:07:E0:DF:DF:13
Certificate issuer: /CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Certificate serial: 0814
Authority key identifier: 7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/83DE5F6A846D11EFA57E969F762E951A.roa
Signing time: Mon 07 Oct 2024 05:32:17 +0000
ROA not before: Mon 07 Oct 2024 05:32:13 +0000
ROA not after: Sun 07 Oct 2029 05:32:13 +0000
asID: 327804
IP address blocks: 154.68.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.mft
rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2068 (0x814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Validity
Not Before: Oct 7 05:32:13 2024 GMT
Not After : Oct 7 05:32:13 2029 GMT
Subject: CN=67037261-2345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:36:22:4e:28:c1:59:3f:6e:0f:cd:85:23:32:
ff:4d:9d:2d:9c:ed:a3:b8:5b:44:3a:1e:cd:48:f9:
42:ca:da:85:51:23:e0:af:42:53:ef:51:e4:af:99:
67:a5:f4:cc:16:0b:a1:a7:e9:ff:25:61:0a:78:8f:
13:b9:d2:c3:48:7d:08:f3:4f:be:4a:fd:43:c6:bc:
18:5c:4e:3e:10:55:a1:2d:36:91:21:f8:57:05:18:
b7:fe:ce:a4:5b:e0:5e:f7:46:f4:9a:93:6e:fe:51:
9f:22:f9:85:38:85:b3:fe:31:f5:a8:4f:70:e0:df:
fa:5b:07:48:b3:35:8b:7a:9a:5b:e5:f0:8f:5a:b4:
7e:1a:63:9b:93:34:43:a4:99:81:ef:b6:f1:dc:af:
7d:82:16:fa:65:19:08:29:4f:1e:53:f1:a1:1f:57:
ed:c5:86:08:90:de:c4:c9:e1:7d:66:6b:be:4f:3d:
ec:ff:28:0e:26:dd:3e:75:7d:f1:c4:3a:36:49:42:
b1:6c:10:c5:3e:4e:66:b9:cd:80:90:bb:02:61:5c:
65:8a:fd:65:0b:cb:b4:30:d7:04:34:af:50:5f:29:
7f:35:03:a4:32:85:d1:af:c3:4f:08:1c:07:19:a4:
d0:5c:10:1c:b1:b0:66:85:af:d4:11:36:3a:5a:0e:
6c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:9B:A2:A6:18:06:C5:4D:4E:08:DE:C6:BE:D4:68:07:E0:DF:DF:13
X509v3 Authority Key Identifier:
keyid:7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/83DE5F6A846D11EFA57E969F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.68.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:93:66:10:c9:a5:7d:ae:d6:51:d9:ed:72:b7:ba:91:ae:b1:
dc:8d:94:04:e8:e7:99:3f:9a:4f:08:27:fe:a2:76:77:ce:a8:
93:a5:d7:55:aa:bc:3a:93:f8:54:b9:dc:a8:f8:f0:27:bd:7d:
52:d1:33:34:1f:0f:72:46:d4:77:0e:f7:91:0f:5f:1d:8e:e3:
75:68:dc:f4:7a:49:30:a1:c3:32:94:48:0f:20:e9:fe:32:9d:
a8:c2:1a:1b:7d:84:61:73:a3:98:8d:94:31:e1:21:7b:33:de:
5d:4d:7d:a9:11:8f:39:38:06:64:0a:ca:15:e2:ef:e9:77:45:
d6:ba:bb:fd:e5:5d:ee:c5:1b:e4:c2:fa:c4:61:8a:b2:06:81:
3a:e0:0d:ef:68:b2:fb:6e:6b:8f:fd:37:30:61:01:e6:96:20:
e8:44:7c:f8:a0:8f:3e:7a:f6:d7:44:55:0e:53:61:0d:a6:5c:
0e:39:cd:be:98:b6:09:93:b8:a9:10:96:98:1a:10:d5:85:9d:
0c:a1:b6:6f:9a:cc:cf:e9:4f:e4:6b:71:26:fe:dd:be:5e:80:
45:44:71:15:15:41:bf:49:74:b2:ac:f3:5b:e4:e6:db:9f:ba:
3f:cc:64:92:42:9d:51:f2:74:54:38:3c:fe:d4:d0:64:80:d4:
e2:db:03:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org