Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/78BBD498055511EEA313DE484AD9E6FC.roa
File: 78BBD498055511EEA313DE484AD9E6FC.roa (raw, json)
Hash identifier: gcOnw1oPuRTUxnfEp8Cnw2+KJImBfDvkykgZT1R/8jY=
Subject key identifier: 13:62:C6:07:F6:BD:82:80:41:10:0A:03:CF:CF:83:FC:BF:7E:7C:45
Certificate issuer: /CN=F36E1028RI/serialNumber=6225C6536748448F1C601BE9AFAB827C9A6D8C98
Certificate serial: 01A9
Authority key identifier: 62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
Authority info access: rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/78BBD498055511EEA313DE484AD9E6FC.roa
Signing time: Wed 07 Jun 2023 17:05:15 +0000
ROA not before: Wed 07 Jun 2023 17:05:11 +0000
ROA not after: Sun 07 Jun 2026 17:05:11 +0000
asID: 7155
IP address blocks: 80.250.34.0/24 maxlen: 24
80.250.35.0/24 maxlen: 24
80.250.36.0/24 maxlen: 24
80.250.41.0/24 maxlen: 24
80.250.42.0/24 maxlen: 24
80.250.43.0/24 maxlen: 24
80.250.44.0/24 maxlen: 24
80.250.45.0/24 maxlen: 24
80.250.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 May 2024 00:25:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425 (0x1a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E1028RI/serialNumber=6225C6536748448F1C601BE9AFAB827C9A6D8C98
Validity
Not Before: Jun 7 17:05:11 2023 GMT
Not After : Jun 7 17:05:11 2026 GMT
Subject: CN=6480b8cb-a170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:84:4e:4a:05:a0:f4:24:eb:91:d1:c7:03:a2:
8b:3b:08:17:1a:5f:a1:65:09:30:c3:9e:bd:c9:72:
d8:4f:39:8e:95:70:db:38:38:fd:1d:d4:1e:9e:2e:
19:05:71:e1:2b:59:ca:58:ac:1f:50:aa:95:0f:cb:
a9:86:c9:e5:09:2c:b6:8a:e6:d1:2f:2e:bf:a3:bc:
5b:8b:43:5f:e1:cb:66:e7:47:ed:65:0d:e3:9f:56:
bb:e2:b0:ea:a0:2b:9f:c6:d1:a8:f2:9c:d0:b7:74:
db:f0:1a:18:e7:ea:77:76:d3:ee:04:a6:40:d9:16:
6e:b7:5d:01:78:68:55:c6:8c:e4:32:92:dc:6c:e6:
73:4a:01:99:a1:b7:03:fe:2b:31:d0:cb:d1:0a:68:
5c:43:89:0b:5f:80:0c:17:81:12:dc:75:52:05:a0:
09:1b:a4:bd:eb:2b:61:3b:aa:b3:0d:14:f3:54:da:
e4:5c:75:48:a0:6b:82:20:b4:90:4a:d8:ec:26:61:
d2:9f:89:e5:c9:93:02:d6:84:cf:de:f2:48:26:60:
ac:9e:12:d5:72:a4:d7:98:5e:1e:14:08:de:90:6e:
c2:f1:4d:6d:3c:4a:67:77:d6:b2:b6:ea:1a:d4:36:
b6:48:9e:7d:b3:78:bb:d8:6d:ba:8b:00:b0:d7:d9:
57:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:62:C6:07:F6:BD:82:80:41:10:0A:03:CF:CF:83:FC:BF:7E:7C:45
X509v3 Authority Key Identifier:
keyid:62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/78BBD498055511EEA313DE484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
80.250.34.0-80.250.36.255
80.250.41.0-80.250.46.255
Signature Algorithm: sha256WithRSAEncryption
98:95:47:66:93:ef:b2:89:ca:75:49:4c:0b:33:4a:a0:1a:b9:
77:80:36:da:d9:0a:a8:f8:12:0a:b6:c5:b0:fc:d6:4a:8b:a2:
ea:81:74:42:02:5a:0c:be:1f:c7:07:a4:10:a4:87:a2:6b:d8:
f8:3e:99:f4:10:98:4b:f2:4d:07:26:f1:9e:0d:c4:87:f6:b2:
f2:13:ea:6b:df:c1:a3:c4:7b:e5:6c:17:ef:5e:f8:6b:dd:43:
7c:24:26:f3:6f:64:96:30:dd:9a:2d:b0:06:18:6b:a6:4f:86:
11:2e:8d:15:c6:d6:14:29:1c:74:54:f5:22:35:eb:de:1b:1a:
a7:0c:f0:2c:b8:fb:1c:a2:c9:2a:96:d9:98:03:a7:4b:0e:dd:
3c:af:24:22:fd:13:7f:7d:c3:0e:2c:a7:fa:f0:37:fe:aa:00:
f8:06:3a:29:b2:f6:cb:e3:ca:25:f4:48:9a:7f:57:6d:b6:3a:
53:b2:39:0b:d0:68:ca:ca:08:d8:3d:5c:49:e0:a2:d7:3a:38:
51:5f:f3:1b:a7:31:6e:81:d6:8e:61:3d:99:f8:42:25:b2:ee:
5c:0b:e8:3d:10:28:8a:e8:f2:6d:13:42:0a:77:0b:fe:78:22:
7e:b0:bb:10:c6:fe:6e:a7:c1:28:d4:93:dc:6a:20:07:ce:13:
a0:ac:b8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:52:01 2024 by rpki-client on console-fra.rpki-client.org