Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0A9E416E2F0B11EE8B2F6F774AD9E6FC.roa
File: 0A9E416E2F0B11EE8B2F6F774AD9E6FC.roa (raw, json)
Hash identifier: qaf7hj7k0IcjHjvNPWlQbzPcNE0CFfBNlqCEqf4S9C8=
Subject key identifier: A1:08:6D:7C:01:2E:00:EC:BB:A6:CA:73:66:6A:B1:44:AF:48:7B:48
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 050E
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0A9E416E2F0B11EE8B2F6F774AD9E6FC.roa
Signing time: Sun 30 Jul 2023 18:58:16 +0000
ROA not before: Sun 30 Jul 2023 18:58:13 +0000
ROA not after: Sat 30 Jul 2033 18:58:13 +0000
asID: 37119
IP address blocks: 105.170.0.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1294 (0x50e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 30 18:58:13 2023 GMT
Not After : Jul 30 18:58:13 2033 GMT
Subject: CN=64c6b2c8-6023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:99:65:83:ac:5f:06:58:0b:45:34:3a:16:73:
6a:ea:d5:6b:ae:11:da:ad:e4:a4:5a:57:1b:0e:3c:
7d:3f:34:36:63:51:37:f3:a3:e0:7a:43:27:4f:4a:
d4:1e:9b:57:a1:f6:5b:66:b3:b3:bb:38:8b:0a:f6:
6a:f1:db:3f:73:66:8c:ab:ff:30:7f:07:0d:24:f2:
89:24:85:ad:6d:7c:fc:36:70:5d:c4:a7:f4:79:b1:
a1:02:a0:e2:18:25:4a:49:ba:2b:5d:99:40:53:d9:
b8:da:90:8e:7b:f4:af:a4:5f:dd:32:8d:13:32:a2:
de:b8:16:e2:c0:90:85:84:75:1b:63:d4:00:52:81:
7e:ed:91:88:76:a7:f7:0c:69:4a:a1:b1:d7:37:4b:
52:8b:bf:2d:73:a4:87:44:fc:cc:bd:60:8b:04:84:
be:0c:4e:7a:11:fd:f5:81:6c:de:f7:a1:59:41:d8:
4a:09:c0:44:e7:3b:68:d7:c2:2f:8f:ea:b3:26:aa:
02:de:c1:81:15:9d:74:cf:de:da:2f:92:4b:cf:7c:
aa:2a:2a:00:f2:00:09:38:c5:74:43:01:6f:66:6c:
8b:79:0a:81:55:4c:e4:ce:8b:cb:70:67:49:0c:f8:
36:bb:bd:3b:f7:1c:1b:4d:35:85:a2:00:e0:16:54:
25:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:08:6D:7C:01:2E:00:EC:BB:A6:CA:73:66:6A:B1:44:AF:48:7B:48
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0A9E416E2F0B11EE8B2F6F774AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.170.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:e5:5d:64:8b:02:ac:71:63:71:2f:35:ae:b1:dd:4b:24:6c:
f2:25:75:bb:bb:23:4f:a2:0f:7c:ea:f0:f0:8e:d9:3c:fe:d7:
6a:79:00:16:98:ac:37:32:49:4b:46:ce:d3:c1:40:fb:e5:32:
50:a2:cf:08:39:ac:13:20:27:c5:b5:42:d6:4f:1e:1a:ee:d2:
9b:7a:3b:49:11:92:b8:18:9d:9f:d2:f3:5f:86:c6:7d:8e:80:
85:1d:d6:d9:06:f4:a0:be:24:9e:55:72:f4:8a:12:10:ed:50:
cb:14:de:9b:12:9a:3d:97:0b:83:4f:4d:6b:c0:e6:72:32:f2:
b5:66:4a:03:34:67:7b:f1:01:49:73:66:5f:4d:05:8e:af:27:
9f:68:78:33:f7:bf:79:d7:fe:6f:b4:b1:de:c3:97:b0:9e:24:
21:64:6e:04:b1:45:42:72:54:e0:7c:38:27:0b:2b:3c:8c:75:
55:44:e2:e3:38:2a:45:ab:3b:fa:f7:c7:fd:02:db:15:8c:50:
f7:e8:a6:6f:7a:6b:8b:aa:cb:e5:af:d3:79:f3:2f:86:32:17:
83:a2:54:f5:12:db:5a:45:48:5d:88:f4:ee:2b:0b:db:7d:ee:
b9:cb:b0:b3:33:09:01:6b:0f:b6:f1:8f:85:91:ac:21:de:cf:
77:7d:69:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:01:35 2024 by rpki-client on console-ams.rpki-client.org