Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/EB9B09826BB811EF9E060C45762E951A.roa
File: EB9B09826BB811EF9E060C45762E951A.roa (raw, json)
Hash identifier: TsCk8u7XB+geHT4Y5bC5mwDhS0eEg1ylcghFgIq4kzg=
Subject key identifier: F6:C7:BC:5F:89:D7:70:DD:8A:76:B7:1B:32:9D:57:48:B6:9C:8A:16
Certificate issuer: /CN=F36D5F5AAF/serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Certificate serial: 021A
Authority key identifier: 28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/EB9B09826BB811EF9E060C45762E951A.roa
Signing time: Thu 05 Sep 2024 18:59:04 +0000
ROA not before: Thu 05 Sep 2024 18:59:01 +0000
ROA not after: Fri 05 Sep 2025 18:59:01 +0000
asID: 37276
IP address blocks: 197.215.208.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.mft
rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 538 (0x21a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D5F5AAF/serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Validity
Not Before: Sep 5 18:59:01 2024 GMT
Not After : Sep 5 18:59:01 2025 GMT
Subject: CN=66d9ff78-381e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c3:9d:1c:b4:2d:7d:9c:20:1d:db:f8:ee:f9:
0c:72:34:da:58:dd:49:9b:71:1a:51:da:60:a6:fa:
9a:95:51:ff:29:20:a0:da:73:12:08:7a:3d:7d:d0:
39:47:8e:5c:eb:b3:2b:01:f5:d4:18:c0:20:d7:32:
24:bd:5c:e7:d3:ea:e3:18:b7:3e:54:aa:9e:22:7c:
2a:49:b9:90:8a:7e:0f:c9:23:44:36:0e:1f:3d:9d:
94:88:f9:32:ba:dc:46:f6:0c:9b:54:66:65:45:64:
41:12:b3:3d:2b:f3:23:34:62:aa:71:04:1d:3e:04:
31:2f:82:a0:27:0b:ba:54:5b:b9:e1:8b:4e:be:9a:
80:ad:03:c2:21:4d:45:7a:57:4f:e1:72:97:f5:62:
c1:cb:1f:f7:a8:c4:c1:85:3e:79:77:bb:ea:47:43:
bb:cc:5e:78:5e:2c:fc:c5:61:2e:4b:46:f4:0e:ce:
1f:79:61:39:62:bb:57:4e:e0:12:d6:3f:4c:71:13:
71:c2:5e:9d:ff:dc:0e:3d:07:bc:6b:5a:34:a2:84:
33:c9:c6:38:4d:f1:8e:6c:66:cd:d1:8a:de:45:27:
5c:aa:26:fb:1d:e6:21:6b:79:cd:76:f7:70:ff:7b:
7a:4c:eb:17:1f:82:e8:fa:37:35:40:e3:51:93:33:
10:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C7:BC:5F:89:D7:70:DD:8A:76:B7:1B:32:9D:57:48:B6:9C:8A:16
X509v3 Authority Key Identifier:
keyid:28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/EB9B09826BB811EF9E060C45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.208.0/21
Signature Algorithm: sha256WithRSAEncryption
11:aa:f3:d0:18:b3:80:93:47:0a:89:02:24:62:b9:e1:ca:a5:
fa:ee:8a:8b:e4:23:07:07:da:08:bc:0d:14:ed:0c:9e:86:18:
6e:e8:7a:a0:22:2f:40:e1:b0:6e:f3:4d:dc:b6:17:fa:8a:41:
5c:86:5d:0a:f7:30:cc:15:76:8f:2d:fa:82:73:55:e7:cd:d5:
74:bb:90:91:49:b5:fb:6d:ab:aa:c0:cf:27:5e:00:1d:ad:4b:
7c:8d:e0:8a:1a:bf:e5:6b:a4:0f:6f:b4:4b:12:06:2c:c2:39:
43:07:6b:1a:41:80:48:d5:bb:8c:10:f2:f0:42:3d:18:75:d0:
5e:f3:7e:7b:b5:02:0c:f4:8c:c2:82:06:7b:58:88:95:fc:f1:
e5:41:5f:42:70:5c:56:18:48:0a:50:ac:72:94:77:c6:fc:25:
21:2d:00:41:e6:06:43:38:3e:41:5d:be:8f:62:37:87:ea:e9:
12:3d:3c:3a:1b:20:74:e4:d7:3f:11:b7:8e:d5:9f:31:8e:7f:
87:c6:97:32:01:1a:1f:ee:2f:32:0b:32:ab:3d:1b:67:80:29:
c4:77:2f:d8:7e:76:ac:fd:77:e4:8d:01:75:9c:67:03:8b:3a:
bc:67:db:11:b3:05:c1:f0:d2:4b:90:ec:e1:81:59:3a:9d:cd:
22:9a:2b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org