Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/16E36298A71011ED8B382EADF1222468.roa
File: 16E36298A71011ED8B382EADF1222468.roa (raw, json)
Hash identifier: YwrcpofXcW+TieniRsmACWrSZmHA8Ph3c8IA66MXe/8=
Subject key identifier: 30:CE:8A:B0:80:6D:D3:22:31:D5:E6:E5:5F:BA:F0:83:25:F4:82:5B
Certificate issuer: /CN=F36C7A1BAF/serialNumber=21862A804A8E5251D3F4D55155324CABCB1B2CD1
Certificate serial: 03
Authority key identifier: 21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/16E36298A71011ED8B382EADF1222468.roa
Signing time: Tue 07 Feb 2023 17:51:46 +0000
ROA not before: Tue 07 Feb 2023 17:51:43 +0000
ROA not after: Wed 01 Dec 2049 17:51:43 +0000
asID: 0
IP address blocks: 196.60.106.0/24 maxlen: 24
2001:43f8:16a0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft
rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A1BAF/serialNumber=21862A804A8E5251D3F4D55155324CABCB1B2CD1
Validity
Not Before: Feb 7 17:51:43 2023 GMT
Not After : Dec 1 17:51:43 2049 GMT
Subject: CN=63e28fb2-7a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:ae:4a:fc:d9:16:4f:c6:24:5e:35:c0:0a:
37:48:bb:39:0a:29:3b:41:ba:97:e1:b8:ea:31:dc:
fc:4b:61:1c:27:b2:d7:b0:2a:52:8e:bd:36:9f:7c:
b2:b2:2d:f3:d7:0a:65:d1:31:cd:81:af:8b:8c:5d:
46:29:cd:88:ef:e0:fd:98:95:92:c3:9f:fc:7f:8a:
fb:fa:51:09:60:97:90:3a:2b:f6:e6:fe:bf:bd:71:
a3:22:3a:85:b8:f7:58:a2:9b:05:30:26:5f:5d:a4:
11:a5:64:2d:20:65:80:c5:0a:3c:a5:7f:f0:60:ac:
fc:0c:0f:57:c1:9c:7f:5f:50:35:70:92:d1:90:02:
3c:5d:8e:53:a1:b3:67:d4:53:47:40:f6:5c:4e:39:
39:3a:75:d6:78:d2:ae:98:95:80:af:c9:37:cc:75:
36:27:f7:d4:c0:03:a6:9e:07:ee:b7:33:c8:1f:17:
8d:c1:72:ff:16:80:c6:17:34:52:c5:3a:54:ac:a9:
c7:5e:c9:71:af:fe:2b:3e:f2:fe:1d:64:cc:c4:2a:
c6:35:38:93:16:64:d3:86:bd:b4:6f:57:8e:06:d1:
91:63:a4:14:b2:93:90:f9:b3:38:65:d5:b4:5d:01:
38:92:27:3e:81:71:f2:61:31:7d:47:7f:50:2c:27:
f8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CE:8A:B0:80:6D:D3:22:31:D5:E6:E5:5F:BA:F0:83:25:F4:82:5B
X509v3 Authority Key Identifier:
keyid:21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/16E36298A71011ED8B382EADF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.60.106.0/24
IPv6:
2001:43f8:16a0::/48
Signature Algorithm: sha256WithRSAEncryption
02:47:41:35:5f:8c:ff:f3:ff:4f:4b:37:d9:1d:a5:21:57:fa:
4f:b0:ff:42:2e:f1:7e:67:41:ea:66:de:88:27:0f:bf:f5:c5:
0b:22:76:8e:70:38:ca:6e:da:7d:20:c2:37:70:99:c9:03:45:
86:83:25:57:64:7b:2e:e1:64:0c:a4:a4:05:9a:06:af:62:0d:
5f:0f:c6:80:7b:e4:29:46:e3:ae:03:3c:ec:68:64:f7:fd:68:
83:31:a2:b2:3c:ac:99:dc:3d:71:85:55:b7:66:e4:3c:35:b2:
b7:23:cc:31:bb:b4:e5:6b:b9:1d:ec:60:8c:46:cb:00:b2:1e:
61:df:0f:2d:57:19:59:4f:9f:09:29:45:f4:36:eb:5c:c2:33:
79:5a:e3:92:fd:b7:67:0d:df:06:93:57:70:30:64:46:1d:37:
6a:1e:88:97:ef:04:44:d7:33:03:88:d8:0e:e1:85:c9:ce:37:
90:46:5f:37:71:f4:0e:2b:86:bb:94:d3:33:3c:4c:d3:e5:6b:
54:7a:94:7f:77:9c:cc:cb:ae:1c:e3:64:87:4b:6d:9a:e0:1c:
bc:c1:f1:4f:f6:0e:42:da:79:6d:70:b0:27:29:ff:3d:28:5c:
32:b8:2e:a1:27:c4:16:2d:b4:73:df:12:2d:bc:65:15:f1:08:
a9:71:01:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:06:03 2024 by rpki-client on console-ams.rpki-client.org