Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/3427972686F611EA93690486F8AEA228.roa
File: 3427972686F611EA93690486F8AEA228.roa (raw, json)
Hash identifier: V/sXPJRFataMhL4hJmI2vdCPCgDCsxZaHnu+zFRnfs8=
Subject key identifier: 83:18:9B:B5:26:56:3A:38:38:FF:B0:41:F7:9F:EF:CB:AF:89:C0:FF
Certificate issuer: /CN=F36F5173AF/serialNumber=85A95ADD2CF58774030B6A9B93B411386FE30640
Certificate serial: 08
Authority key identifier: 85:A9:5A:DD:2C:F5:87:74:03:0B:6A:9B:93:B4:11:38:6F:E3:06:40
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hala3Sz1h3QDC2qbk7QROG_jBkA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/3427972686F611EA93690486F8AEA228.roa
Signing time: Sat 25 Apr 2020 13:10:59 +0000
ROA not before: Sat 25 Apr 2020 13:10:52 +0000
ROA not after: Tue 01 Dec 2037 13:10:52 +0000
asID: 327821
IP address blocks: 196.49.9.0/24 maxlen: 24
2001:43f8:271::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/hala3Sz1h3QDC2qbk7QROG_jBkA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/hala3Sz1h3QDC2qbk7QROG_jBkA.mft
rsync://rpki.afrinic.net/repository/afrinic/hala3Sz1h3QDC2qbk7QROG_jBkA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F5173AF/serialNumber=85A95ADD2CF58774030B6A9B93B411386FE30640
Validity
Not Before: Apr 25 13:10:52 2020 GMT
Not After : Dec 1 13:10:52 2037 GMT
Subject: CN=5ea436e2-7fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d3:56:05:9a:97:3b:d6:a0:6d:cf:e5:52:65:
3c:25:23:5a:24:ea:e0:6e:f4:55:0d:5b:9f:af:20:
d3:91:bf:e9:d9:44:48:1d:f7:b2:65:46:9b:6c:18:
cd:5d:28:a7:38:69:26:d6:54:8d:44:66:ad:26:9b:
14:f1:3e:ee:36:6d:b2:1b:94:de:bb:0f:03:db:96:
04:54:08:74:f1:b4:bb:0c:1d:04:3d:7e:53:5f:f4:
7a:8b:8a:92:4d:60:8f:f7:99:eb:39:79:f1:16:6f:
30:ef:b3:66:55:b5:be:5d:9b:21:00:59:4b:47:17:
43:00:d6:1c:74:31:02:71:26:d0:c0:32:22:df:48:
81:14:11:ba:eb:50:84:90:26:c2:c4:bd:ed:90:5b:
2d:7d:5e:4e:a9:b8:fa:a2:58:f0:c8:51:b8:d1:2e:
17:af:68:34:73:08:cf:9b:4f:4a:18:03:ba:ad:9e:
71:0b:5d:ca:3c:c0:06:22:8e:d1:cd:26:7e:88:df:
cb:b6:82:ee:6b:6c:c9:f2:5f:ac:05:21:2c:58:6e:
c2:03:af:2f:cb:07:30:7b:b6:e2:c5:fd:33:c6:7e:
84:cf:be:38:ca:ec:29:34:7f:ca:d2:32:dc:79:2e:
f7:04:2d:f9:34:65:b7:57:ab:e8:9e:11:f6:a5:a3:
b9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:18:9B:B5:26:56:3A:38:38:FF:B0:41:F7:9F:EF:CB:AF:89:C0:FF
X509v3 Authority Key Identifier:
keyid:85:A9:5A:DD:2C:F5:87:74:03:0B:6A:9B:93:B4:11:38:6F:E3:06:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/hala3Sz1h3QDC2qbk7QROG_jBkA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hala3Sz1h3QDC2qbk7QROG_jBkA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/3427972686F611EA93690486F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.9.0/24
IPv6:
2001:43f8:271::/48
Signature Algorithm: sha256WithRSAEncryption
19:ac:5e:ef:ec:cf:dd:5d:15:8d:2f:1b:49:26:66:e6:54:82:
6b:58:05:51:83:5d:c1:99:d6:c5:c6:e5:10:aa:54:ea:3f:5a:
92:c7:ea:a4:33:61:39:39:8d:4b:bb:2e:5d:ae:3e:04:b8:22:
c9:1d:ca:35:ee:ee:46:0b:b6:20:dc:ab:61:5e:c1:05:ff:86:
bf:58:bc:ff:e9:82:a2:16:6d:8f:0c:81:55:4e:09:1e:00:1c:
71:47:56:6a:82:5a:1c:a2:49:2c:6c:18:c0:bb:25:24:2e:76:
97:8d:c9:f9:ed:9e:ca:0a:92:25:c6:e8:d3:dd:99:d5:6c:34:
af:f6:5e:a1:28:8e:8f:c6:f9:6d:36:31:32:d9:55:25:6e:48:
96:51:b1:2e:53:f8:7b:43:66:35:64:25:18:bb:df:45:b8:62:
25:4b:d4:d6:53:d5:6f:02:88:e1:ad:8a:c0:1d:81:b5:b3:ce:
52:7f:3f:5b:dd:63:3b:6e:f3:2f:ac:44:25:e0:af:56:bb:ec:
18:05:04:e1:fd:70:24:4b:7f:8f:68:2d:60:57:ff:44:79:ed:
ac:42:58:9f:e5:90:bc:e9:b5:15:a7:89:01:09:37:73:74:9a:
90:26:05:72:c5:63:63:79:ad:d7:82:e3:c2:dd:22:97:06:dc:
c3:10:b3:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 03:27:40 2024 by rpki-client on console-ams.rpki-client.org