Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/27C9BE7A2E4E11EE9D54F2394AD9E6FC.roa
File: 27C9BE7A2E4E11EE9D54F2394AD9E6FC.roa (raw, json)
Hash identifier: BDkeSwC4QymbietATOBNOZW/vR1U6m3DekwlP/1OKl4=
Subject key identifier: 5B:34:9C:04:64:ED:48:19:47:EF:BC:AF:23:DE:A2:B3:A5:9B:66:CF
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 04B5
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/27C9BE7A2E4E11EE9D54F2394AD9E6FC.roa
Signing time: Sat 29 Jul 2023 20:26:10 +0000
ROA not before: Sat 29 Jul 2023 20:26:06 +0000
ROA not after: Sat 30 Jul 2033 20:26:06 +0000
asID: 37119
IP address blocks: 105.169.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1205 (0x4b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 20:26:06 2023 GMT
Not After : Jul 30 20:26:06 2033 GMT
Subject: CN=64c575e2-85cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e9:1f:c3:f4:1c:a3:a1:1d:bf:c6:42:eb:32:
80:e8:6c:80:f1:0b:4e:76:d2:bf:6c:e8:ad:59:83:
1b:1a:8d:d2:c2:ce:d4:37:a0:3e:f5:80:37:16:6b:
a3:f3:4c:48:e5:4d:54:fe:a6:3f:f7:85:68:93:e3:
7d:44:68:6d:82:67:f1:53:0e:93:91:0c:e3:57:a1:
ee:bd:81:94:94:33:64:b6:23:ed:1c:25:d4:da:ea:
16:6c:0f:75:d6:c7:38:65:5c:c5:b9:20:06:28:1f:
c6:a7:c4:61:9a:1d:6b:77:62:36:23:89:6e:8f:e2:
6f:be:9d:07:cc:c5:87:de:d6:20:19:8b:5a:39:c3:
2c:5a:63:96:b6:be:54:b7:ed:da:c2:35:9e:2a:39:
00:40:2b:44:cb:1f:6e:2a:ab:33:1c:10:ba:8a:a0:
15:26:43:1b:3f:06:0c:30:78:7d:26:14:c6:ab:c9:
34:83:66:dd:d5:a6:1c:01:cf:21:04:92:6b:69:b7:
77:2e:49:ca:6c:3b:a2:28:b3:4a:86:ff:a8:1a:16:
77:df:e6:d8:66:ec:1f:89:cf:34:5b:b5:f0:1e:4d:
b7:49:0a:95:c4:f0:7c:5f:63:42:81:54:73:19:88:
5f:3e:e5:56:44:00:c4:0e:e0:76:a7:db:c3:75:cb:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:34:9C:04:64:ED:48:19:47:EF:BC:AF:23:DE:A2:B3:A5:9B:66:CF
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/27C9BE7A2E4E11EE9D54F2394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
16:a9:81:4e:49:bc:bd:9c:91:f0:a7:ed:9c:f4:20:5e:35:e0:
f1:13:ce:12:5d:f8:48:0b:21:b2:13:cf:cf:a2:97:3c:cc:9e:
c7:40:ea:96:33:c6:36:59:3a:9d:2c:ee:27:09:56:2d:95:72:
9a:a1:86:06:f1:d8:3a:3e:8e:a2:08:bf:9c:d8:f2:46:c0:54:
44:a6:28:39:9f:06:27:11:d0:a7:39:5f:d5:89:15:c1:77:39:
c8:40:51:e9:5a:7d:2a:8a:d5:e2:b1:9d:c3:43:43:24:4c:c6:
35:e9:b4:e7:d1:4e:ef:cd:57:2b:a0:dc:64:b9:87:f6:06:4c:
68:0c:05:7f:52:6a:01:27:a1:00:46:06:33:75:9d:ba:a8:17:
f2:09:8a:37:1c:96:7c:43:8a:4d:88:fd:f3:9e:dc:4a:e7:39:
2f:fe:95:ed:e8:ad:4a:ed:39:ce:ad:7b:f0:60:d7:eb:c5:26:
99:67:fe:e1:7c:a8:95:65:2b:26:4f:76:f5:2f:55:e9:fa:66:
6e:91:6d:4e:04:cd:58:c7:de:ca:95:e5:59:2e:68:78:6f:5b:
be:6d:f0:4e:26:2e:63:cb:2c:b1:07:07:00:9e:d4:c3:a2:6b:
d2:95:8d:d6:6d:ac:df:2b:4a:3e:09:16:42:ea:65:ba:74:06:
25:b9:01:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org