Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/1BBC3BC641E011EE8387A9474AD9E6FC.roa
File: 1BBC3BC641E011EE8387A9474AD9E6FC.roa (raw, json)
Hash identifier: dJ93WOjftr3A/tY41rgLkc9g+edR1ROqqJR9IAwgCiY=
Subject key identifier: DD:5B:3A:63:99:72:72:9A:F1:46:86:98:8B:D6:4E:DE:B9:5B:F9:F9
Certificate issuer: /CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Certificate serial: 06
Authority key identifier: 5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/1BBC3BC641E011EE8387A9474AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:08:49 +0000
ROA not before: Wed 23 Aug 2023 18:08:45 +0000
ROA not after: Tue 23 Aug 2033 18:08:45 +0000
asID: 29614
IP address blocks: 197.251.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.mft
rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 30 Jun 2024 00:05:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Validity
Not Before: Aug 23 18:08:45 2023 GMT
Not After : Aug 23 18:08:45 2033 GMT
Subject: CN=64e64b31-fb2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ca:81:ca:1d:1b:35:11:4c:84:2d:d7:28:c4:
ac:d2:70:e5:3c:dd:3a:e4:e3:e8:39:ed:2e:c6:01:
dd:fe:d9:12:a7:d5:b2:9e:bc:db:e3:93:34:16:9a:
1e:e7:cf:68:70:c2:9e:02:ae:33:b6:90:e7:2c:d4:
fe:43:74:48:c7:a9:5e:9e:e4:b3:77:d3:2d:65:b0:
46:3b:27:75:4b:9b:3a:87:c4:34:c1:59:12:90:e0:
dc:6f:7f:24:81:20:f2:fd:45:38:26:d8:9e:29:93:
86:af:63:5f:e0:d8:95:ea:d7:cc:f3:1a:a4:86:b8:
85:9f:19:72:a9:9f:c5:df:c1:a5:8f:24:db:a2:b0:
d5:a1:9a:c4:91:d9:0e:8a:08:55:02:61:57:0f:69:
ab:71:88:37:9a:c0:d3:82:20:3a:9f:2f:43:dd:e9:
5c:db:10:b7:aa:9f:48:10:92:dd:12:d5:33:83:dc:
dd:5d:fa:62:cb:c0:0c:24:62:4c:84:6b:af:fd:8b:
5f:13:75:89:6c:0f:d8:df:68:c6:73:7a:56:d6:3f:
20:ca:d7:ea:81:bf:0f:24:53:35:8a:8f:3d:ad:54:
2b:5e:21:4b:41:e3:1c:02:67:4d:e5:6a:f6:0f:4b:
4c:19:dc:49:82:c5:6b:9d:3a:47:f1:3c:cc:0a:f2:
1f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5B:3A:63:99:72:72:9A:F1:46:86:98:8B:D6:4E:DE:B9:5B:F9:F9
X509v3 Authority Key Identifier:
keyid:5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/1BBC3BC641E011EE8387A9474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.251.128.0/19
Signature Algorithm: sha256WithRSAEncryption
43:43:3b:a0:41:4e:dd:9c:95:fd:b0:7a:e8:e9:18:bf:a7:89:
07:7d:bc:b5:47:03:c7:b6:fa:49:28:72:5f:d1:31:38:64:de:
c9:9f:af:42:a8:c2:b7:8c:17:c1:79:15:59:30:cc:55:71:05:
56:43:db:c5:0b:59:88:c5:6d:72:fb:3c:3a:a0:51:9e:3f:9d:
7d:50:f9:1d:94:98:8e:d5:7c:24:f7:9f:43:d9:a8:30:1a:4b:
12:8c:67:b8:cd:24:f6:2a:70:58:0f:d7:33:8f:6d:eb:78:90:
73:80:a9:5d:3b:da:9f:b0:7e:8f:21:a4:22:b6:b0:55:67:b5:
bf:6f:ec:a3:0f:52:84:74:09:5e:4e:b2:88:f9:6f:71:ea:9d:
a7:45:9c:9a:46:29:3f:4f:d5:42:2b:df:9d:b8:fd:30:c3:7a:
a9:16:4f:1e:ba:a3:f7:f7:48:a1:c8:3b:07:25:67:8b:5c:bf:
b4:18:0f:c6:ba:23:9c:da:b3:d6:3f:7a:ff:72:db:02:6d:3e:
3b:5d:21:e5:f9:1f:07:05:3c:d1:80:de:48:90:ff:1a:94:46:
76:6c:b4:04:b8:c6:a0:8e:8b:ab:73:6f:f1:2e:34:1a:f6:35:
d8:93:32:15:fa:a8:3a:bd:ee:e4:81:64:19:a8:91:60:4b:b7:
92:b0:6f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 03:15:19 2024 by rpki-client on console-fra.rpki-client.org