Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/D16713486FAB11EFBBD4B095762E951A.roa
File: D16713486FAB11EFBBD4B095762E951A.roa (raw, json)
Hash identifier: 8SVqRCmZw8s4aV8wC2vczr/9L/GkHhk4+czM91U/KkQ=
Subject key identifier: D8:F5:09:1E:E2:EF:7E:E5:58:83:57:33:D4:03:9F:4B:9A:0C:4C:69
Certificate issuer: /CN=F36EC727AF/serialNumber=31FCD392FE8EBD57E12538DC60A8059FFA39A03A
Certificate serial: 04
Authority key identifier: 31:FC:D3:92:FE:8E:BD:57:E1:25:38:DC:60:A8:05:9F:FA:39:A0:3A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MfzTkv6OvVfhJTjcYKgFn_o5oDo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/D16713486FAB11EFBBD4B095762E951A.roa
Signing time: Tue 10 Sep 2024 19:35:22 +0000
ROA not before: Tue 10 Sep 2024 19:35:18 +0000
ROA not after: Fri 10 Sep 2027 19:35:18 +0000
asID: 37317
IP address blocks: 197.234.200.0/21 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/MfzTkv6OvVfhJTjcYKgFn_o5oDo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/MfzTkv6OvVfhJTjcYKgFn_o5oDo.mft
rsync://rpki.afrinic.net/repository/afrinic/MfzTkv6OvVfhJTjcYKgFn_o5oDo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EC727AF/serialNumber=31FCD392FE8EBD57E12538DC60A8059FFA39A03A
Validity
Not Before: Sep 10 19:35:18 2024 GMT
Not After : Sep 10 19:35:18 2027 GMT
Subject: CN=66e09f79-d366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:29:33:01:1b:40:e1:41:01:b7:68:a6:7f:
93:4d:8e:5e:87:24:3d:87:10:fe:40:15:49:b3:1b:
be:ab:ff:17:36:88:7f:62:3e:2c:b1:1a:11:67:6f:
cd:a2:89:34:90:ad:4e:89:18:3a:6f:a8:47:03:f9:
cc:67:96:24:84:b7:fa:2f:65:19:9d:d4:22:f2:fd:
15:66:cc:da:3b:0e:9d:24:03:4f:96:f5:ce:f0:1a:
97:42:e0:4b:ae:f7:bb:b2:33:db:44:02:42:75:a7:
8e:c0:95:fa:69:0d:81:77:f7:45:dd:d4:de:23:2c:
c2:ce:58:2b:e0:91:01:84:a5:4b:06:db:bc:00:6c:
ee:cc:2b:ef:32:a8:2f:d1:f4:00:2c:cc:38:ba:cb:
41:c5:5c:2d:50:63:62:b0:18:43:a0:f1:be:3a:18:
ee:03:e9:62:c3:b6:a4:92:99:c3:0f:21:14:ec:39:
30:fa:17:de:29:a4:bc:b4:fa:82:7c:e1:ab:40:9f:
6a:03:bd:88:79:70:74:01:c6:01:9d:f2:cd:10:7f:
f9:60:a8:49:62:e9:a9:d6:39:8e:fe:14:b4:fe:9a:
67:54:8d:fa:1d:a7:f0:3c:ae:f6:2c:67:75:a5:93:
97:e8:64:8a:38:ea:a2:a2:e5:b7:90:19:f4:ec:7b:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F5:09:1E:E2:EF:7E:E5:58:83:57:33:D4:03:9F:4B:9A:0C:4C:69
X509v3 Authority Key Identifier:
keyid:31:FC:D3:92:FE:8E:BD:57:E1:25:38:DC:60:A8:05:9F:FA:39:A0:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/MfzTkv6OvVfhJTjcYKgFn_o5oDo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MfzTkv6OvVfhJTjcYKgFn_o5oDo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC727/278945E46FAB11EFB4297291762E951A/D16713486FAB11EFBBD4B095762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.200.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:0d:5d:3d:2e:51:a3:9a:b0:04:fd:bc:2a:e7:51:c1:56:f1:
70:a8:da:9d:05:80:c0:99:50:80:fb:68:03:2e:fd:99:5e:cf:
b0:d3:42:ae:d2:13:c7:f3:9b:cf:df:ee:46:93:b9:70:1f:71:
a9:72:8f:98:ff:d7:3c:03:64:d6:61:c1:26:5c:5d:09:9c:02:
48:83:e6:d2:d4:2f:d4:73:69:33:1c:5f:8d:af:25:e5:43:59:
10:03:61:3e:5a:0c:5f:cd:51:43:7d:7f:a4:2f:4c:a1:4b:2d:
f1:28:0a:da:67:93:4b:6f:81:3a:ac:64:1b:e9:bc:73:64:1d:
53:d9:5d:60:05:12:80:d5:0c:e0:6b:3d:64:0b:9d:38:f4:26:
77:53:e2:77:c9:3c:f3:34:df:40:00:f7:32:09:2b:1b:2e:39:
8c:74:49:a1:8a:9e:24:75:2f:88:89:0b:38:5e:0e:a8:e1:08:
31:79:95:ca:18:72:42:01:dc:04:10:ba:57:83:c0:1f:80:0b:
07:02:c4:84:1e:a3:79:a5:ae:59:94:89:f0:13:81:dc:42:d9:
50:a7:fd:c6:bc:bc:47:da:ec:c5:ea:0c:e9:50:36:96:9b:a0:
28:21:ad:ed:48:f0:06:37:29:19:e6:7f:38:11:55:bd:1d:ac:
e9:b3:09:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org