Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/A3E369B88FAD11EF84E8C298762E951A.roa
File: A3E369B88FAD11EF84E8C298762E951A.roa (raw, json)
Hash identifier: KHj93NQJWTZ8oMi0gw+QEnklPoZI/vRnCOYhgqAuDO0=
Subject key identifier: ED:80:FD:8D:71:D2:64:DB:72:D7:AC:AA:A2:17:BA:79:63:3E:F6:FE
Certificate issuer: /CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Certificate serial: A3
Authority key identifier: B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/A3E369B88FAD11EF84E8C298762E951A.roa
Signing time: Mon 21 Oct 2024 13:09:01 +0000
ROA not before: Mon 21 Oct 2024 13:08:57 +0000
ROA not after: Wed 21 Oct 2026 13:08:57 +0000
asID: 37381
IP address blocks: 197.159.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.mft
rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163 (0xa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Validity
Not Before: Oct 21 13:08:57 2024 GMT
Not After : Oct 21 13:08:57 2026 GMT
Subject: CN=6716526d-9f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:69:1b:d9:21:3f:2e:9e:d6:f9:16:8a:ca:92:
d8:89:c1:31:18:a3:de:a7:50:5f:e0:8f:0c:ce:4a:
bd:34:cb:62:2c:22:f6:dc:c3:1f:4b:a7:8b:43:bf:
bb:a2:88:70:98:3a:14:ab:3b:b0:a0:55:f9:b8:b9:
01:e4:df:22:fd:e7:93:5a:d5:78:5d:13:9e:96:29:
b8:65:74:3b:bb:06:5b:78:f2:1b:46:b3:56:30:9a:
2a:8f:3b:d5:7a:4b:61:0c:65:89:c8:41:8a:f1:e0:
28:b7:6c:57:84:f7:c9:98:d3:43:94:98:76:7f:7b:
f5:c3:19:52:08:1a:63:95:cf:06:b2:1c:f9:3c:ff:
55:7c:74:7c:ba:29:17:0a:d8:83:11:63:34:01:2b:
a3:84:b4:ea:3c:ee:4b:22:f4:b3:43:bc:ee:17:f9:
3f:6c:8d:7b:e3:f5:5d:a1:97:e9:96:ec:21:3c:db:
95:6b:7f:e1:7b:5b:d0:08:8c:b7:94:a2:09:12:6b:
24:e0:11:88:c2:49:89:e2:a4:4a:01:4f:7a:d8:42:
eb:70:6e:2a:7e:03:38:6f:8d:a0:7d:f1:aa:cf:51:
bc:86:51:76:f9:81:f3:33:c1:25:de:6f:c3:27:f2:
f6:d6:31:63:e3:15:3c:24:51:e4:46:c3:db:b5:ca:
53:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:80:FD:8D:71:D2:64:DB:72:D7:AC:AA:A2:17:BA:79:63:3E:F6:FE
X509v3 Authority Key Identifier:
keyid:B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/A3E369B88FAD11EF84E8C298762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.159.192.0/19
Signature Algorithm: sha256WithRSAEncryption
12:44:da:a8:92:f1:a6:bf:dd:ae:93:54:a8:16:12:4a:00:84:
a0:d6:3e:6e:3d:3d:ad:47:49:e1:3e:cb:3e:92:6f:09:20:87:
f5:91:a4:5e:70:ed:e1:85:b0:83:52:2e:b8:39:22:a3:35:38:
e4:93:d8:57:03:61:01:db:45:f0:19:8b:95:fb:01:74:94:c8:
07:99:4b:f9:27:51:d9:5d:b1:53:5a:62:46:f8:b9:dd:a8:db:
4f:e1:3f:ab:4c:8d:03:9c:23:0f:c7:47:0d:5a:16:b7:d7:c6:
b1:43:bd:81:36:25:53:91:c7:dc:82:1b:5e:5d:1a:b9:6a:8a:
92:dd:10:ed:f3:a3:d9:63:3c:aa:48:8f:c1:9b:40:d0:1e:ee:
b9:e7:6d:a8:52:16:c0:08:44:4e:f8:dc:91:8a:c7:6b:f6:fa:
9e:d5:b8:c4:97:3f:4e:1f:63:65:7f:fd:2c:f5:23:d5:f4:98:
6b:33:09:f9:c9:f2:9c:b6:7e:61:6c:71:39:a4:d0:4a:71:77:
73:71:72:d4:3c:9e:2b:6a:c0:ac:ea:3c:6f:85:5a:bb:d5:0c:
12:0a:31:b9:f8:a9:66:b9:f8:66:1a:8b:70:e6:49:ff:3e:67:
97:fc:4c:37:e4:27:65:9f:08:b7:e1:f9:07:6e:62:08:57:6f:
1d:44:b0:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org