Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CF1CD3564FFE11EFBC6B5560762E951A.roa
File: CF1CD3564FFE11EFBC6B5560762E951A.roa (raw, json)
Hash identifier: rKE0aTq1xK/d7TP0Mi/oZzn9/eW8mKHviKpsNrNh4jQ=
Subject key identifier: 07:8F:B7:F1:BB:A8:E2:C3:D0:B7:FF:20:98:E7:49:2F:DB:D3:5C:EA
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 06C3
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CF1CD3564FFE11EFBC6B5560762E951A.roa
Signing time: Thu 01 Aug 2024 12:08:49 +0000
ROA not before: Thu 01 Aug 2024 12:08:45 +0000
ROA not after: Wed 01 Aug 2040 12:08:45 +0000
asID: 31713
IP address blocks: 196.251.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1731 (0x6c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Aug 1 12:08:45 2024 GMT
Not After : Aug 1 12:08:45 2040 GMT
Subject: CN=66ab7ad1-c6f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:bc:8b:36:5b:8a:0d:c5:88:b5:bc:0c:a1:
cd:4b:48:5e:7f:3d:50:2c:29:5d:00:44:88:d9:e2:
14:15:fa:ac:81:a6:ff:17:ea:c5:42:72:01:fa:1b:
92:be:92:01:e8:92:6e:d4:9c:05:52:75:a4:69:e9:
32:80:40:99:59:ef:6e:a7:d8:68:36:8a:15:5b:17:
24:31:19:b8:a7:33:05:2a:2f:e5:68:da:83:e3:5e:
94:6c:5f:e8:01:f3:e8:7b:2a:b6:b3:22:63:02:58:
16:3e:0b:5f:97:52:f4:b8:6e:2c:1e:36:f6:74:ad:
7c:55:2d:8a:5b:3f:4d:00:8f:9d:ac:e6:60:a7:74:
63:56:e9:9f:26:ae:90:f8:56:6f:3a:86:eb:06:f8:
11:c9:ef:ed:ad:7f:8b:14:b5:c9:43:72:01:c4:28:
0b:65:55:02:fa:a4:01:05:f7:7f:a4:7c:19:ef:f1:
8e:ac:28:d3:b1:5e:f1:34:c2:df:ff:59:7b:b9:a7:
e0:0f:2c:8a:7f:f5:5a:3d:4b:61:56:d9:c2:a0:63:
05:3f:d0:3f:fe:ac:b3:bd:9a:69:22:22:47:39:7b:
7f:b7:85:00:16:3b:e5:52:86:b2:20:ea:10:83:07:
11:be:43:50:b1:99:7e:c9:1e:de:94:bd:6f:a6:ac:
a0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8F:B7:F1:BB:A8:E2:C3:D0:B7:FF:20:98:E7:49:2F:DB:D3:5C:EA
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CF1CD3564FFE11EFBC6B5560762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.160.0/19
Signature Algorithm: sha256WithRSAEncryption
97:4e:43:6d:62:f8:15:99:14:ad:54:3e:37:b1:26:6f:04:55:
fe:9b:69:7b:0f:92:13:68:64:63:72:fc:8c:5f:02:f1:6a:e8:
12:d3:23:f8:64:51:34:3f:4d:1f:66:09:9b:ed:4a:df:a2:42:
f1:af:83:68:78:e2:55:8a:80:8e:16:c4:9a:19:07:3a:0e:50:
03:52:2c:51:c0:4b:86:89:f6:4d:4f:ef:f1:03:22:85:f8:d5:
b3:26:36:ba:8d:1f:0d:1d:39:ab:f7:03:3c:b8:0d:d6:00:1f:
eb:e4:77:56:a7:f0:0d:83:a6:0c:30:70:50:8e:f0:b4:78:c6:
4b:cf:bb:ac:2d:08:4a:c0:53:f6:15:18:d8:3d:5b:bd:59:20:
13:c5:cf:d9:d6:b8:c1:59:9c:b1:0b:c2:25:ef:bb:29:55:64:
b7:93:c2:56:47:ae:bb:93:48:95:1c:b2:4c:f4:77:3d:34:86:
2c:09:dd:1a:eb:78:65:c2:e2:af:79:1c:06:d9:51:6c:a3:42:
2e:35:2f:e9:3e:d1:5a:6c:c3:da:de:5f:10:0c:3a:a5:d6:e2:
18:99:f2:4a:b0:40:5f:f1:cc:8a:7f:ca:bb:fa:04:1b:ea:32:
db:2b:bf:68:41:1b:a5:c6:04:8e:39:1f:cd:a6:3b:36:b6:91:
81:e3:96:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org