Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/704926D8280111EF84F6804E7DDC24C2.roa
File: 704926D8280111EF84F6804E7DDC24C2.roa (raw, json)
Hash identifier: 3vt49i2b05v3GXaZFK4O6BAWjRmYDlAAsj6Uqb28tW0=
Subject key identifier: B2:35:7C:9A:98:72:AF:F2:22:F9:FE:31:69:41:58:C8:46:A1:4F:C4
Certificate issuer: /CN=F36C94E7AF/serialNumber=9B89D04EB9D47EDFBFA6075D1526F9C9BFE4A0F5
Certificate serial: 05
Authority key identifier: 9B:89:D0:4E:B9:D4:7E:DF:BF:A6:07:5D:15:26:F9:C9:BF:E4:A0:F5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/m4nQTrnUft-_pgddFSb5yb_koPU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/704926D8280111EF84F6804E7DDC24C2.roa
Signing time: Tue 11 Jun 2024 14:46:52 +0000
ROA not before: Tue 11 Jun 2024 14:46:47 +0000
ROA not after: Sun 11 Jun 2034 14:46:47 +0000
asID: 327936
IP address blocks: 197.215.160.0/19 maxlen: 24
2c0f:ec40::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/m4nQTrnUft-_pgddFSb5yb_koPU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/m4nQTrnUft-_pgddFSb5yb_koPU.mft
rsync://rpki.afrinic.net/repository/afrinic/m4nQTrnUft-_pgddFSb5yb_koPU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C94E7AF/serialNumber=9B89D04EB9D47EDFBFA6075D1526F9C9BFE4A0F5
Validity
Not Before: Jun 11 14:46:47 2024 GMT
Not After : Jun 11 14:46:47 2034 GMT
Subject: CN=6668635b-766c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d9:36:38:a9:04:65:24:df:57:f8:5f:85:de:
ed:bb:49:02:2f:b1:ec:c7:95:43:79:db:cc:01:e2:
38:b0:8d:0b:a9:83:1d:f1:49:a7:56:91:80:5c:16:
07:07:6d:1c:a4:a7:04:b5:98:c0:3d:20:62:0c:e7:
06:b9:95:6e:a1:9f:7f:6f:9c:3e:c0:11:1c:d5:82:
59:bc:81:12:0a:0a:e3:09:cc:83:e5:29:df:27:32:
2f:fe:e4:de:39:48:78:e8:26:23:d8:37:43:10:88:
88:1c:dd:54:df:62:a0:a2:b4:44:74:b7:8f:ce:a3:
94:02:72:7b:cd:93:28:af:c9:e7:62:46:67:35:89:
87:1f:73:1d:bb:eb:aa:8d:ef:28:3e:07:6b:d1:d4:
67:9b:8d:9f:99:3a:b1:40:f7:04:b8:c5:42:c6:10:
23:90:50:fa:11:5e:d7:ad:85:6f:fc:e7:c2:6e:aa:
b5:10:e6:44:2b:17:e7:8a:c7:c1:f3:9c:f6:9a:17:
07:43:88:27:3c:01:7d:21:d2:df:b1:79:32:dd:15:
c6:0b:d1:78:bb:1a:3b:96:d9:8f:7c:a8:81:52:52:
3e:50:f4:ac:e9:f3:48:63:ae:80:7e:e4:0f:cb:a3:
35:ac:3c:da:7b:6b:47:0c:5b:18:3a:d1:34:08:11:
03:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:35:7C:9A:98:72:AF:F2:22:F9:FE:31:69:41:58:C8:46:A1:4F:C4
X509v3 Authority Key Identifier:
keyid:9B:89:D0:4E:B9:D4:7E:DF:BF:A6:07:5D:15:26:F9:C9:BF:E4:A0:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/m4nQTrnUft-_pgddFSb5yb_koPU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/m4nQTrnUft-_pgddFSb5yb_koPU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C94E7/2857400427FB11EF8F6E74247DDC24C2/704926D8280111EF84F6804E7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.160.0/19
IPv6:
2c0f:ec40::/32
Signature Algorithm: sha256WithRSAEncryption
93:e2:76:9a:81:1d:8d:3c:01:36:37:ac:1f:1e:87:90:4c:62:
2c:a0:32:81:e9:6f:a0:dc:4a:71:7e:56:44:e5:29:b8:4e:cb:
84:3c:6c:6c:e5:ab:2c:29:e7:71:d3:8e:9b:d3:d1:ba:63:20:
8a:f4:ba:9d:b2:fb:3b:19:e9:36:6d:92:5b:ff:53:f5:1d:27:
cd:ca:70:cd:34:a4:71:1e:e6:ca:aa:c1:ca:a6:3a:9c:2a:92:
c4:33:9d:cf:a6:52:cf:99:8f:80:d6:72:9c:90:7c:ae:2a:be:
a8:98:ca:45:8e:06:f7:bb:19:fe:e2:f9:6e:6f:3e:e2:b8:5b:
a0:c8:cf:d1:7a:0e:6a:fa:5e:27:38:33:00:29:31:05:16:00:
db:89:a5:ee:26:4d:62:da:9f:af:c7:55:e4:c0:fc:7c:23:ca:
b8:e9:dc:c4:2d:7c:30:e6:8e:91:fa:f4:07:a0:44:82:e1:c8:
48:ab:05:ab:8c:0f:64:60:2f:fe:ad:a8:1e:3e:7a:78:2d:dc:
61:e9:de:4d:1b:d4:df:0e:69:8b:1b:40:06:60:f7:81:73:bb:
b0:06:93:55:c3:7d:41:06:6a:bb:6c:9b:6f:db:dc:40:4b:90:
fe:45:e9:94:10:80:2a:8b:22:39:75:30:96:eb:7c:8f:48:df:
a2:2a:72:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:50 2024 by rpki-client on console-fra.rpki-client.org