Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/63A562B60A9D11EE92A6DD324AD9E6FC.roa
File: 63A562B60A9D11EE92A6DD324AD9E6FC.roa (raw, json)
Hash identifier: 3b9GaVwGq6W0niXUTfZp8msqwmz7KJ9S2n6bL+Jfmo8=
Subject key identifier: 2B:3E:12:A4:EC:33:E7:2C:92:9F:E6:4C:DE:5A:7E:8A:3A:8E:9B:5F
Certificate issuer: /CN=F36FE536AF/serialNumber=7B5895FF6900470AA81A342DE5F971E5D3C74777
Certificate serial: 1E
Authority key identifier: 7B:58:95:FF:69:00:47:0A:A8:1A:34:2D:E5:F9:71:E5:D3:C7:47:77
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/63A562B60A9D11EE92A6DD324AD9E6FC.roa
Signing time: Wed 14 Jun 2023 10:22:39 +0000
ROA not before: Wed 14 Jun 2023 10:22:35 +0000
ROA not after: Wed 14 Jun 2028 10:22:35 +0000
asID: 37358
IP address blocks: 197.234.192.0/21 maxlen: 21
197.234.192.0/24 maxlen: 24
197.234.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.mft
rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE536AF/serialNumber=7B5895FF6900470AA81A342DE5F971E5D3C74777
Validity
Not Before: Jun 14 10:22:35 2023 GMT
Not After : Jun 14 10:22:35 2028 GMT
Subject: CN=648994ef-5b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:68:86:a6:9a:8c:8c:21:80:a8:96:66:17:bd:
54:f6:c5:72:58:3a:49:5c:65:27:b4:79:fe:46:eb:
d3:fe:92:8f:cb:00:1c:ab:01:7e:3b:78:c2:2d:3e:
ae:e3:e9:09:44:29:b2:84:53:c8:8a:47:e8:1e:a3:
74:db:ba:18:61:69:5a:89:4d:a3:72:fc:c9:57:7b:
24:f8:01:0d:60:4f:d9:6f:91:c6:fa:2d:e7:27:a7:
5c:59:3b:f7:20:d2:15:02:c7:57:9a:82:b0:91:23:
5b:c6:c2:88:2a:02:9b:11:65:4f:ed:f6:52:4f:5d:
61:b9:2c:cb:e7:c4:53:ae:8a:fb:e6:7b:45:55:f9:
14:d8:f0:bc:8d:07:18:41:e7:93:b2:7e:28:c1:e4:
9f:92:bc:78:b3:17:00:b8:a0:d7:82:85:45:39:bd:
8f:f3:9e:1a:e2:e4:06:fd:50:b5:e8:03:fc:e2:60:
12:20:1d:05:09:68:c1:f9:ac:91:ae:bc:eb:23:84:
8a:3e:53:77:33:6b:2a:dd:35:24:3e:5d:5e:70:38:
cf:aa:d0:de:9b:7e:77:b7:35:cf:f5:01:ce:3a:ad:
c6:e7:75:49:b0:2c:1c:77:a2:c7:c9:ef:9d:30:51:
3e:96:51:ef:f0:84:88:cb:1a:f2:f5:79:b6:57:9a:
48:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3E:12:A4:EC:33:E7:2C:92:9F:E6:4C:DE:5A:7E:8A:3A:8E:9B:5F
X509v3 Authority Key Identifier:
keyid:7B:58:95:FF:69:00:47:0A:A8:1A:34:2D:E5:F9:71:E5:D3:C7:47:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/63A562B60A9D11EE92A6DD324AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.234.192.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:14:31:b6:d2:46:3a:42:e1:6a:95:dd:1a:07:d1:89:42:b7:
6f:f5:45:33:ca:56:49:c9:53:b4:04:16:1b:cb:e5:af:e1:50:
77:c4:8f:e4:1d:cd:99:86:33:d7:45:fe:2c:69:2e:3d:96:4b:
e0:da:dc:62:3f:7e:2d:76:09:66:79:fb:78:4d:36:89:f9:9f:
be:84:75:3d:0a:d9:22:b2:ec:77:fd:de:cc:63:2f:3d:fb:89:
92:50:f8:79:c1:ea:bd:e5:76:19:42:45:fd:b6:82:92:13:37:
ea:56:57:fa:cf:5f:38:6a:93:c1:b6:6b:e1:52:ee:a2:c6:21:
3e:3d:d3:0a:8e:46:67:16:d1:c7:89:c5:03:80:2b:d1:9f:ad:
63:8b:f3:ec:bc:c4:0b:2e:37:1e:81:12:b4:2c:cf:13:7d:f3:
78:3f:65:50:ff:36:aa:fd:1a:0e:f8:c8:40:cc:28:07:3b:2b:
96:a6:d3:0b:80:a7:cb:7a:fc:fb:7a:a7:53:58:ac:22:e7:27:
9f:9c:35:22:f6:90:89:21:64:7c:61:3c:c9:32:ad:bc:e4:c7:
75:fd:e5:31:2a:37:94:0a:dc:49:08:ad:e8:86:80:3e:50:03:
8a:4b:31:a5:a0:d7:94:82:f3:b4:d0:39:61:65:1e:02:eb:d1:
e7:cb:f3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org