Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/53CAE622F00711EEA5267AC4775412E6.roa
File: 53CAE622F00711EEA5267AC4775412E6.roa (raw, json)
Hash identifier: 9lY/fKc7t2R7nbClIr5t2e4jW9EP7+ZXryECYNAkiGI=
Subject key identifier: ED:77:F6:24:D8:4E:06:E5:55:CD:A2:CF:AF:4F:67:1F:A5:B2:10:EA
Certificate issuer: /CN=F36FDDEEAF/serialNumber=2CD31C3C251F5EDA183F938E7FCB3A4A1DBA89DD
Certificate serial: 059E
Authority key identifier: 2C:D3:1C:3C:25:1F:5E:DA:18:3F:93:8E:7F:CB:3A:4A:1D:BA:89:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/53CAE622F00711EEA5267AC4775412E6.roa
Signing time: Mon 01 Apr 2024 09:07:56 +0000
ROA not before: Mon 01 Apr 2024 09:07:52 +0000
ROA not after: Mon 30 Jun 2025 09:07:52 +0000
asID: 19905
IP address blocks: 197.210.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.mft
rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1438 (0x59e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FDDEEAF/serialNumber=2CD31C3C251F5EDA183F938E7FCB3A4A1DBA89DD
Validity
Not Before: Apr 1 09:07:52 2024 GMT
Not After : Jun 30 09:07:52 2025 GMT
Subject: CN=660a796c-4103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:83:b8:03:6a:b5:b9:44:e1:e6:a7:51:51:35:
3e:f9:96:01:10:cf:90:9a:8a:5f:04:fa:0d:60:6d:
fb:56:c9:4b:d6:31:67:ff:f1:f2:3a:e5:43:96:22:
c8:3a:d6:d1:31:c2:74:bd:fd:93:23:ae:69:81:28:
c4:0a:68:01:75:26:5f:3e:c8:1e:fc:81:f7:b5:7d:
66:dd:0b:50:74:dc:de:79:6f:e4:1c:02:93:09:af:
b2:86:39:00:eb:b9:09:60:aa:52:50:12:5c:10:82:
2a:51:2a:27:0a:e4:69:0b:64:e9:2a:1a:ab:52:29:
6c:a1:47:69:15:d4:4d:6c:e1:bd:3b:cb:3b:ff:3b:
89:52:9a:96:06:ac:01:1a:df:68:a4:f3:fc:46:1e:
59:70:a9:89:10:13:9b:67:64:24:20:90:9f:e5:00:
21:dc:45:7c:e8:5b:16:b0:26:5d:50:bf:e3:3e:01:
a6:43:59:bb:07:47:2e:05:14:17:0f:3d:14:5c:d9:
01:9a:54:d9:0e:a5:20:b9:b6:f9:ca:13:68:33:ca:
36:dc:06:b3:41:20:9d:f3:66:67:7c:ca:a0:98:35:
d1:3c:a2:06:7f:bd:ad:f5:01:01:68:07:60:80:70:
2f:73:6b:38:00:aa:11:05:2b:c7:bf:cd:12:79:ed:
77:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:77:F6:24:D8:4E:06:E5:55:CD:A2:CF:AF:4F:67:1F:A5:B2:10:EA
X509v3 Authority Key Identifier:
keyid:2C:D3:1C:3C:25:1F:5E:DA:18:3F:93:8E:7F:CB:3A:4A:1D:BA:89:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/53CAE622F00711EEA5267AC4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:b0:a2:d9:b1:e8:e7:70:ad:70:3e:79:16:85:d5:a2:81:5b:
0a:1b:b1:41:00:ea:e8:3c:34:3d:f7:1d:89:5f:fe:63:2b:1d:
40:da:c5:b0:e2:0c:c2:d9:fb:22:0f:64:9d:60:81:23:dd:8d:
3f:c9:9f:12:b0:5c:b0:05:e6:f6:80:2d:f6:55:53:27:c8:90:
36:16:e5:09:9b:fa:ee:c1:05:36:df:04:a2:a0:32:17:96:d5:
16:fe:e0:43:57:3d:42:46:18:43:0e:e8:25:78:86:58:88:5a:
4c:c5:dc:b5:8f:39:b2:97:8a:d9:af:65:54:5a:08:24:62:49:
3f:1e:c5:07:a7:11:5f:4d:ac:87:26:60:b9:de:a8:c1:08:38:
5a:c2:65:36:8c:bc:62:51:ad:6b:5e:0b:04:4a:ed:6d:7f:4e:
f2:63:b8:2f:70:27:3f:27:ef:39:53:68:e0:7c:ac:11:82:38:
89:96:fe:db:b0:9b:da:47:8c:da:69:79:77:3d:18:e3:0d:46:
36:54:6e:1f:0a:f0:01:d4:63:92:dd:b3:48:32:a8:7c:50:53:
1f:52:13:f8:ec:95:82:cd:0e:3f:9e:49:83:8c:e2:82:88:d7:
f2:19:46:ac:f8:9b:ee:f4:04:d5:ba:dd:1c:50:95:49:9f:49:
1f:da:9a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org