Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/1456D4A2586C11EEB137AB2E4AD9E6FC.roa
File: 1456D4A2586C11EEB137AB2E4AD9E6FC.roa (raw, json)
Hash identifier: 0m1O0dIgqFqkbHZ4x0YYbYO8gehKt7WacNKL0mWlsYk=
Subject key identifier: 06:1E:AF:86:75:CC:56:E2:AF:3E:43:A4:E9:E2:94:F1:94:C8:7C:BE
Certificate issuer: /CN=F36E1028RI/serialNumber=6225C6536748448F1C601BE9AFAB827C9A6D8C98
Certificate serial: 021E
Authority key identifier: 62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
Authority info access: rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/1456D4A2586C11EEB137AB2E4AD9E6FC.roa
Signing time: Thu 21 Sep 2023 10:46:12 +0000
ROA not before: Thu 21 Sep 2023 10:46:08 +0000
ROA not after: Sun 21 Jun 2026 10:46:08 +0000
asID: 29286
IP address blocks: 80.250.34.0/24 maxlen: 24
80.250.35.0/24 maxlen: 24
80.250.36.0/24 maxlen: 24
80.250.41.0/24 maxlen: 24
80.250.42.0/24 maxlen: 24
80.250.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:25:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 542 (0x21e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E1028RI/serialNumber=6225C6536748448F1C601BE9AFAB827C9A6D8C98
Validity
Not Before: Sep 21 10:46:08 2023 GMT
Not After : Jun 21 10:46:08 2026 GMT
Subject: CN=650c1ef4-3c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:24:aa:9f:a9:95:d5:14:53:81:84:d8:b3:37:
2d:be:3d:fd:2e:bb:11:33:dd:c2:91:11:90:e3:ec:
92:2d:cc:3c:5a:89:68:21:5e:5f:da:4f:2b:b0:d7:
e9:fc:39:55:e4:37:a4:90:70:0f:08:1a:a4:9a:f2:
93:4b:a2:f4:66:6e:f9:0d:be:1f:45:a4:ca:b6:05:
a2:df:5f:a2:01:13:dd:53:4c:d3:0e:02:ec:76:6f:
f8:96:55:8b:26:04:47:5e:19:26:05:2f:79:18:61:
5d:73:79:0a:07:51:6f:51:e4:c1:60:ab:c3:df:63:
e9:d1:8d:62:d7:69:7c:f9:ba:0a:45:b4:aa:19:61:
d4:51:16:52:d4:9f:11:e7:fe:3a:8e:28:da:89:fd:
d0:27:7b:2d:4c:9a:73:d5:9a:46:9c:b0:df:52:c5:
02:42:c5:52:1b:2e:af:98:47:15:e1:8e:2d:17:bc:
c8:01:e4:d9:13:39:83:7e:c3:a7:bf:6f:ff:1d:60:
5a:c9:1a:98:a4:f2:3d:73:cb:ab:ae:5b:d6:ca:92:
b5:f2:b9:f9:6f:b2:85:9d:20:fe:bd:7f:ba:a4:4c:
3e:65:d6:15:74:d4:80:6c:03:94:83:5e:3c:3f:84:
f8:05:26:32:94:8f:0c:0c:d1:83:1d:9d:a7:24:0d:
4f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1E:AF:86:75:CC:56:E2:AF:3E:43:A4:E9:E2:94:F1:94:C8:7C:BE
X509v3 Authority Key Identifier:
keyid:62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/1456D4A2586C11EEB137AB2E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
80.250.34.0-80.250.36.255
80.250.41.0-80.250.43.255
Signature Algorithm: sha256WithRSAEncryption
54:bd:fe:32:4f:56:0f:17:5e:51:7e:1e:5a:a8:2d:f2:59:22:
70:df:7f:8b:5d:dd:15:76:a1:44:ae:57:c4:63:8b:66:39:70:
c0:2f:c1:ae:32:35:8e:b1:dc:ab:d9:69:aa:7c:da:57:f5:a9:
4d:20:6c:42:7a:8b:16:19:9e:12:e3:0a:dc:4c:ad:be:b5:81:
09:91:db:5b:db:29:2e:08:a5:c1:ef:55:5f:bb:9d:c6:0a:65:
bc:74:8f:a9:54:33:c4:c2:53:09:25:f8:e5:2f:fd:da:d8:3d:
fe:b0:01:d9:e1:b0:c7:76:39:5b:fe:7e:cd:21:e1:3e:32:ba:
60:87:05:bd:33:06:cf:2e:38:0a:d5:a8:99:ac:28:bb:97:e6:
24:54:97:d1:18:03:b0:7d:e5:76:8c:c1:4b:6f:6d:ac:72:64:
e9:b6:fa:f6:98:54:f7:da:7a:9f:28:bb:1d:d9:3d:64:08:65:
4c:d4:5e:d6:c7:86:f1:4f:3e:5e:d9:87:d1:65:72:55:13:9f:
a4:ad:cd:94:16:55:70:49:65:3a:38:75:64:9d:3b:10:46:49:
55:dc:32:c1:b6:3a:cd:53:ff:f6:d2:db:11:49:67:12:c4:ae:
0a:61:aa:2e:b5:26:16:cb:62:ee:14:28:df:67:9f:de:71:e3:
44:29:4e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:31 2024 by rpki-client on console-fra.rpki-client.org