Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3D88FD62E4911EE9BFEBA2C4AD9E6FC.roa
File: B3D88FD62E4911EE9BFEBA2C4AD9E6FC.roa (raw, json)
Hash identifier: JElcFp8ELMn7bg5SrvGyoJJyBw6JoKMUBQf56DQMZso=
Subject key identifier: B3:F7:1C:57:B7:8A:E4:8A:66:28:33:1C:4F:67:8F:F0:69:05:FB:F6
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0497
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3D88FD62E4911EE9BFEBA2C4AD9E6FC.roa
Signing time: Sat 29 Jul 2023 19:54:18 +0000
ROA not before: Sat 29 Jul 2023 19:54:14 +0000
ROA not after: Sat 30 Jul 2033 19:54:14 +0000
asID: 37119
IP address blocks: 105.168.64.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1175 (0x497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 19:54:14 2023 GMT
Not After : Jul 30 19:54:14 2033 GMT
Subject: CN=64c56e6a-ae66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5f:62:52:6e:7f:5e:58:b1:15:42:5f:04:4e:
3d:45:61:5c:e5:c4:d3:41:1a:51:6e:65:a5:36:b9:
6f:7f:ed:10:bb:90:f1:7f:4e:3d:15:9c:58:5b:5e:
c2:a3:4f:ba:1b:8c:dc:f8:b9:1d:e7:32:d9:f3:d3:
2b:de:e9:a8:31:8b:70:fd:98:64:8c:71:fb:d5:0d:
68:96:d8:f8:6c:50:61:76:54:75:95:6b:52:fd:04:
67:e8:bf:35:0f:f2:70:d0:01:95:21:a1:59:68:b7:
37:0f:f7:e3:22:3c:33:6d:d1:a5:9d:9f:87:9c:a8:
61:75:d1:aa:85:ad:36:d3:ac:e6:42:07:5c:2e:f6:
86:f0:f0:73:63:e6:03:4c:b7:e6:ca:8a:aa:b7:27:
fd:12:f5:ca:d6:b2:87:95:4e:d1:dc:cc:cf:18:53:
1a:59:8e:a0:00:2c:d6:c1:46:04:de:05:60:a3:2c:
9a:8a:8f:15:3e:0a:16:6d:cf:d3:0e:99:8e:44:90:
a0:bb:aa:ad:a1:ef:9c:36:ba:cf:a4:64:d2:a3:c7:
ac:66:07:f5:b4:20:34:05:8d:90:03:b1:f3:9d:e9:
a4:75:77:67:5c:58:ad:c2:72:36:26:fc:ba:a3:88:
89:76:6a:05:b0:30:63:a2:1b:57:10:b2:41:95:5b:
53:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F7:1C:57:B7:8A:E4:8A:66:28:33:1C:4F:67:8F:F0:69:05:FB:F6
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3D88FD62E4911EE9BFEBA2C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.168.64.0/19
Signature Algorithm: sha256WithRSAEncryption
94:77:cd:e4:80:33:90:93:88:bf:89:d3:5c:34:36:bc:a6:80:
83:6a:8e:87:78:48:95:b4:c6:87:0f:50:cd:71:7d:0a:9a:75:
2c:45:b7:20:b1:96:0c:e5:8e:de:4c:da:64:43:8e:69:2a:14:
2d:8c:8c:6e:c6:4c:f7:94:37:af:ad:8a:82:2c:d4:c1:7e:e0:
d8:38:64:44:f5:55:b1:af:66:f3:0d:b9:5c:a3:90:ce:d4:a7:
dc:87:61:49:5f:d7:ab:59:61:00:b9:ec:bb:a6:76:4e:c0:56:
2b:08:83:d3:1b:4e:8b:ad:d7:cd:bc:59:bd:ef:3d:5b:f6:0b:
be:5d:13:96:f5:7a:3c:50:4f:b6:61:55:98:0a:2e:f5:33:be:
92:9b:3b:a8:04:ec:49:8a:1f:55:b5:dd:a5:a7:ff:0a:f4:c8:
60:4f:af:db:2e:54:31:52:47:36:f6:10:31:b6:c8:e4:11:5f:
86:51:51:26:0a:3b:a2:3c:d7:43:2e:d5:a0:e0:3f:6b:de:2a:
2f:b8:d6:4e:e1:79:df:24:14:24:8f:42:c2:4a:ee:fa:4e:91:
b9:b9:98:d9:55:cd:9b:ca:84:a8:90:5e:c3:26:11:4d:a7:46:
b4:a2:9e:06:7e:1a:06:30:e1:a6:0e:7b:f6:f9:47:0c:94:f6:
92:8e:b6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org