Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/AE6AFD92353011EF959AA994762E951A.roa
File: AE6AFD92353011EF959AA994762E951A.roa (raw, json)
Hash identifier: vSgA9/geIa/jjYfuxFpaP7EurXT4Nf4QWhe78zClV7I=
Subject key identifier: D1:B3:C9:AE:0B:7C:A8:A4:54:88:CE:EC:02:6B:A4:D3:78:52:D6:C5
Certificate issuer: /CN=F36E8BF7AF/serialNumber=C733ED1A767420EEF53E056187810BE3934AA520
Certificate serial: 0197
Authority key identifier: C7:33:ED:1A:76:74:20:EE:F5:3E:05:61:87:81:0B:E3:93:4A:A5:20
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xzPtGnZ0IO71PgVhh4EL45NKpSA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/AE6AFD92353011EF959AA994762E951A.roa
Signing time: Fri 28 Jun 2024 09:27:48 +0000
ROA not before: Fri 28 Jun 2024 09:27:44 +0000
ROA not after: Fri 30 Jun 2034 09:27:44 +0000
asID: 37496
IP address blocks: 196.216.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/xzPtGnZ0IO71PgVhh4EL45NKpSA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/xzPtGnZ0IO71PgVhh4EL45NKpSA.mft
rsync://rpki.afrinic.net/repository/afrinic/xzPtGnZ0IO71PgVhh4EL45NKpSA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:35:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407 (0x197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8BF7AF
Validity
Not Before: Jun 28 09:27:44 2024 GMT
Not After : Jun 30 09:27:44 2034 GMT
Subject: CN=667e8213-b41a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:82:5f:8f:d1:9d:f2:77:70:76:b1:95:2d:b5:
c4:e8:02:92:93:a0:c1:ce:fa:f9:41:f2:93:65:56:
e6:fa:5b:e0:c1:00:e2:b7:ab:7c:78:9f:18:a9:e8:
77:1c:eb:73:6f:ff:c8:35:c6:d2:f4:f4:b4:61:41:
6a:31:9c:03:a6:c5:4d:06:34:f2:53:46:4e:27:95:
6b:00:b4:10:0e:7a:a4:fd:2a:7f:d0:3c:7c:de:be:
b0:32:54:f0:ec:43:6f:97:6a:41:9b:a1:50:c6:91:
76:0f:67:c5:31:0e:9c:ba:f8:d4:03:d4:db:ed:64:
ec:5c:34:08:f6:f9:63:b0:9f:2b:c0:09:19:95:ce:
85:a2:20:45:d8:75:2e:ee:72:0d:12:9d:88:7c:af:
d1:46:d3:a9:47:f1:70:e6:26:73:bc:04:3f:4f:f2:
0b:95:cc:7a:82:f8:7c:f5:f9:a9:9f:0a:56:14:40:
75:18:b2:3e:a3:dd:d9:b1:73:85:f9:0a:54:0b:36:
78:68:35:86:8f:8d:bc:f0:70:d1:61:62:33:a4:e0:
da:ba:98:53:df:b1:13:2b:a4:dd:73:65:86:22:fd:
94:c8:8d:2e:a6:95:0e:af:fa:ed:3f:1d:6c:25:92:
85:ad:43:5c:e5:d3:bb:67:a4:8d:81:b1:16:cd:4f:
f9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B3:C9:AE:0B:7C:A8:A4:54:88:CE:EC:02:6B:A4:D3:78:52:D6:C5
X509v3 Authority Key Identifier:
keyid:C7:33:ED:1A:76:74:20:EE:F5:3E:05:61:87:81:0B:E3:93:4A:A5:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/xzPtGnZ0IO71PgVhh4EL45NKpSA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xzPtGnZ0IO71PgVhh4EL45NKpSA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/AE6AFD92353011EF959AA994762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.234.0/24
Signature Algorithm: sha256WithRSAEncryption
18:e4:87:42:e7:39:42:07:8a:d5:ef:18:81:14:24:5c:e3:35:
0a:96:6a:31:8f:28:cc:67:91:bb:70:23:b8:ed:dd:cb:04:06:
3a:b2:6d:b2:6a:42:4a:42:3e:30:63:e9:ba:27:fd:b0:6b:fe:
be:d2:52:d6:d8:00:a0:bc:f5:9c:ae:80:78:d8:3f:75:58:5a:
53:b7:c2:44:b5:98:06:53:11:ea:1e:b4:6a:b4:77:9d:14:52:
18:0c:02:0a:bf:53:ec:be:fe:0b:38:b6:9f:29:07:3d:aa:db:
3c:18:91:be:44:c9:e1:b6:8d:2f:c9:99:3b:fc:1b:52:2c:55:
6d:1f:65:96:77:23:c3:39:58:5e:f6:60:32:74:47:77:42:18:
61:ab:9b:27:e1:48:8b:b4:e4:6e:7e:b0:e5:a2:3c:a7:a9:c1:
b3:7e:8a:c6:c6:c5:08:b4:8d:09:05:cb:4b:6a:f2:49:85:b2:
e7:4f:c9:de:d5:4c:2c:4a:e8:a6:c8:4f:a4:90:78:a6:cb:61:
f2:b9:c0:8c:02:24:c2:21:dc:b6:8c:ca:1d:f1:fe:32:54:d5:
a9:e2:d6:61:bd:65:00:4b:a3:77:7f:b0:87:44:1b:3e:cd:47:
ff:6f:f1:91:b0:ce:99:15:65:7a:2b:ba:cb:ad:e5:d5:73:9d:
f0:69:cc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:35 2025 by rpki-client