Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/DF802CB6A33711EF9437A370762E951A.roa
File: DF802CB6A33711EF9437A370762E951A.roa (raw, json)
Hash identifier: Nhh/C7s39Zf/p6vDE9S3MXfBEg4Auj+HjABWmIR/tBE=
Subject key identifier: 18:DC:65:FD:70:D2:6B:30:83:B9:35:B2:EB:29:F4:BA:01:25:36:DA
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0F0B
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/DF802CB6A33711EF9437A370762E951A.roa
Signing time: Fri 15 Nov 2024 09:56:24 +0000
ROA not before: Fri 15 Nov 2024 09:56:20 +0000
ROA not after: Fri 15 Nov 2030 09:56:20 +0000
asID: 33764
IP address blocks: 196.2.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3851 (0xf0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 09:56:20 2024 GMT
Not After : Nov 15 09:56:20 2030 GMT
Subject: CN=67371ac8-548b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:27:44:02:af:35:1b:4d:fe:b0:48:38:62:27:
e4:89:ad:ec:16:ea:be:bc:71:5a:7b:e6:05:8d:cc:
7b:a5:0e:fe:fa:a0:52:89:6d:b4:9e:cc:c7:41:5f:
84:67:08:1f:82:fe:c3:cd:aa:60:68:93:21:ea:e3:
2c:06:e3:af:57:4b:5e:fd:a3:26:0d:84:dd:2e:66:
3e:3b:de:38:71:a4:54:e3:69:c5:47:08:3d:fb:f7:
22:3e:91:79:9b:4f:2c:b0:07:63:18:11:33:18:7a:
bb:21:f2:d2:1a:7c:23:e6:54:ba:55:29:38:e6:25:
64:2a:9e:dc:0c:f2:cb:2d:99:a2:3e:32:f9:f7:f6:
f9:e7:9c:f8:f3:10:59:c9:73:0a:a3:2f:21:94:ef:
16:6a:23:18:aa:7e:2c:08:f2:0b:f1:6a:b0:9c:d8:
53:65:cb:63:9a:a2:1d:b8:4c:40:79:fd:fc:95:a3:
56:87:61:00:e3:2e:85:8f:9f:ff:d2:28:91:92:ee:
d0:e5:dc:73:6e:93:4c:54:e6:d0:02:72:9d:5d:45:
97:5a:ac:e2:7c:c7:7a:e3:e6:5a:cf:8b:77:01:6c:
3b:5f:e3:2c:9e:95:0d:a3:2b:e5:c5:8b:36:34:9a:
15:5e:ab:3a:e8:c9:e7:87:6a:11:b0:63:cd:c3:6a:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DC:65:FD:70:D2:6B:30:83:B9:35:B2:EB:29:F4:BA:01:25:36:DA
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/DF802CB6A33711EF9437A370762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.3.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:09:6f:40:e8:6d:30:c1:a3:7a:a9:69:1c:b7:cc:2e:ec:da:
bc:f6:9c:7a:f6:2b:20:ad:94:56:71:5f:d3:aa:44:5f:29:a8:
75:41:ee:68:3b:a3:c0:d6:e6:b2:27:eb:bb:43:c4:08:60:8f:
a3:05:ae:fa:89:47:e2:ea:d6:2a:42:e4:7b:d4:cb:7e:58:bc:
08:50:2d:48:ab:1c:0f:7c:f6:d5:dc:78:65:64:5e:58:f2:8d:
ff:49:11:d9:bf:67:de:d1:c4:1f:d5:e7:ff:c4:43:c0:f8:aa:
e8:56:ab:26:a5:15:b1:ad:fb:a9:ad:c3:b9:8d:85:a8:9d:df:
24:ab:aa:6e:53:49:18:1e:c4:00:47:f6:42:38:90:95:7b:73:
d2:8e:e3:dd:33:a9:d9:b0:2c:40:9e:d3:e7:12:cd:dd:8b:6c:
54:6c:29:c3:38:0c:8b:c2:7f:fd:90:b0:15:1a:43:ba:ba:c5:
70:89:58:df:34:66:b4:2d:77:00:f5:8e:6c:a3:4b:12:ea:de:
54:95:da:9d:4f:e5:42:3d:97:1a:a8:a5:13:13:ef:a5:96:30:
7b:a7:1e:a1:d0:91:95:58:c0:5e:72:8e:21:d1:2b:22:75:67:
3b:52:6a:f6:5a:63:a8:2c:53:b7:45:15:87:c5:63:09:1c:4a:
0e:cb:14:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org