Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/8DA9C3C8715911EDB37E21A2F1222468.roa
File: 8DA9C3C8715911EDB37E21A2F1222468.roa (raw, json)
Hash identifier: M3l+WqmuK0hy5vvZ06ams08FHPeZ6RdYaFC8ImiZRY0=
Subject key identifier: 74:00:6A:C1:35:F6:88:91:41:A5:07:A5:15:8E:E1:64:13:2D:8C:20
Certificate issuer: /CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Certificate serial: 04
Authority key identifier: E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/8DA9C3C8715911EDB37E21A2F1222468.roa
Signing time: Thu 01 Dec 2022 09:21:36 +0000
ROA not before: Thu 01 Dec 2022 09:21:32 +0000
ROA not after: Wed 01 Dec 2032 09:21:32 +0000
asID: 37009
IP address blocks: 197.243.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.mft
rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Validity
Not Before: Dec 1 09:21:32 2022 GMT
Not After : Dec 1 09:21:32 2032 GMT
Subject: CN=63887220-a620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:83:96:b0:7a:c9:3e:f5:c4:18:93:5e:cf:
ae:cd:e9:9d:a4:45:a6:ad:b2:b9:47:8d:9d:a4:cc:
36:1a:94:02:cf:97:65:f9:26:36:bd:6b:69:f4:1c:
71:9c:38:54:ac:db:af:c3:d0:27:bf:80:57:33:5c:
12:4d:49:b5:3d:0a:4a:e0:fc:2f:6e:40:7a:47:43:
b3:89:0a:0d:de:51:50:a9:63:01:a7:28:4e:57:db:
a6:e8:ed:e8:a7:c4:19:3b:df:fa:3e:97:2d:cc:66:
ae:ce:13:c8:7c:a4:6f:85:f9:b6:43:b7:65:cd:c5:
84:1c:1a:91:e8:3b:54:68:6d:1f:62:d8:bc:0a:77:
0b:d1:13:f9:2b:9d:fc:f5:87:65:7f:a9:27:64:40:
47:d8:a4:e4:25:f8:36:90:80:88:89:db:32:a0:70:
3f:cd:87:db:24:ac:69:91:bd:36:8f:70:16:a9:d8:
79:5e:21:64:88:14:77:06:16:a9:65:0e:8f:db:90:
2a:2f:40:c6:44:7c:d9:65:96:ad:a1:a6:af:da:ad:
0b:59:9e:87:b2:7c:39:37:78:d9:b8:d1:ef:fa:e5:
d0:6f:b4:e2:87:86:04:5b:f7:87:19:b2:68:be:ea:
29:c9:0e:86:8f:30:70:99:a1:ae:f3:4e:c4:35:db:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:00:6A:C1:35:F6:88:91:41:A5:07:A5:15:8E:E1:64:13:2D:8C:20
X509v3 Authority Key Identifier:
keyid:E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/8DA9C3C8715911EDB37E21A2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3b:d5:22:a3:fb:12:d7:08:f3:12:57:71:54:40:4a:24:17:52:
71:48:4d:f4:5d:78:7d:e4:37:56:73:b6:36:17:3c:0a:75:3b:
2c:cd:9e:fb:ea:ed:1b:0f:c6:5c:5e:cd:8f:20:53:7d:8e:89:
c4:cd:42:fd:93:e5:e6:9a:50:d7:92:e1:37:b9:08:9f:54:8e:
ba:bf:f1:7a:d0:5e:d5:97:92:97:6a:91:2e:52:02:58:60:a9:
73:82:23:a5:76:d0:79:3d:df:a8:19:8a:26:b4:cd:d2:36:f4:
8c:15:39:d3:c7:77:01:de:c2:97:a3:3f:01:6d:07:f5:d4:7f:
4c:dd:ac:8d:54:4a:65:af:8d:fe:76:a6:ce:33:d6:d8:34:3b:
f8:70:2e:07:7f:c3:49:37:2b:66:3d:51:5e:27:cd:9b:c8:13:
c3:90:c3:fd:9f:bb:e7:25:92:c6:9e:0b:b2:d3:d1:a4:ab:f0:
91:81:18:aa:ab:1b:89:88:7d:cd:50:db:4e:4c:ce:2a:68:cb:
b0:bb:66:3b:58:c7:d0:87:ce:2b:37:71:ba:ce:8b:52:d7:95:
12:38:d4:e0:c8:37:2d:08:c3:90:ff:b5:e3:a4:95:25:cc:2d:
7e:5c:d8:56:3c:9c:37:bb:88:ac:e4:d0:4a:4f:e2:ab:08:92:
25:30:1b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:47 2024 by rpki-client on console-ams.rpki-client.org