Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/9F17036CB4E311EFA49155A2762E951A.roa
File: 9F17036CB4E311EFA49155A2762E951A.roa (raw, json)
Hash identifier: 2C24tlmlmQoVBKJcwa/9lKskZnvpTPiXWbc/dzfOkws=
Subject key identifier: 3D:4B:3E:54:9A:42:48:13:AD:F2:46:BE:4B:77:38:07:DA:B7:39:03
Certificate issuer: /CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Certificate serial: 03EE
Authority key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/9F17036CB4E311EFA49155A2762E951A.roa
Signing time: Sat 07 Dec 2024 21:38:39 +0000
ROA not before: Sat 28 Dec 2030 21:38:35 +0000
ROA not after: Sun 29 Dec 2030 21:38:35 +0000
asID: 56696
IP address blocks: 196.43.119.0/24 maxlen: 24
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1006 (0x3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36663C2AF
Validity
Not Before: Dec 28 21:38:35 2030 GMT
Not After : Dec 29 21:38:35 2030 GMT
Subject: CN=6754c05f-d5eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:2c:f8:ef:e2:7f:a7:83:35:62:ff:ef:56:
c4:a2:04:43:db:17:04:b2:e9:85:cb:c7:c3:bb:48:
c8:21:70:d5:8b:73:95:6e:b4:b3:ed:19:80:c9:aa:
02:53:c7:65:ea:c8:5e:ba:eb:f3:fe:c5:5f:18:96:
d9:bb:48:5d:47:18:0c:61:18:d9:ce:18:15:98:44:
ac:d3:26:a6:df:0a:cc:d3:3e:29:d3:5d:ea:93:e8:
af:c4:0f:3e:eb:76:d9:c4:ef:a1:f7:1e:d7:08:d7:
0b:91:f9:f9:15:9c:83:00:36:f3:4d:74:02:12:6d:
91:38:8c:e5:2a:51:30:af:b5:c0:15:80:6f:e8:ca:
a4:06:43:36:d8:b9:56:e7:fa:8a:63:4a:1c:15:43:
2f:bd:64:39:70:d1:8b:85:9a:05:58:4b:e3:2a:35:
59:de:6f:2f:94:91:c1:af:0e:a4:b0:d1:4c:73:b9:
27:d8:40:11:91:85:e2:87:1f:ba:95:82:ae:1c:f9:
ef:d2:a9:ef:3a:1f:b6:1b:6e:82:d4:43:3e:99:b9:
d8:1b:a7:a8:58:2a:78:b9:a4:a0:41:02:79:1e:42:
08:69:b2:22:11:52:31:53:20:b0:fb:7c:7e:57:5d:
08:92:10:14:92:ef:e7:2b:4f:28:73:8d:71:d9:8e:
d1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4B:3E:54:9A:42:48:13:AD:F2:46:BE:4B:77:38:07:DA:B7:39:03
X509v3 Authority Key Identifier:
keyid:E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/9F17036CB4E311EFA49155A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.119.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:73:b4:54:02:c9:3c:e4:3f:f3:c9:b0:4c:96:9e:aa:bf:c7:
97:c2:c7:ba:c1:ca:b3:c3:3e:9d:78:86:2f:2d:36:d5:0d:e6:
ac:62:fb:40:87:f8:c6:41:05:e2:26:7e:91:75:df:9d:58:b7:
f2:57:f1:ea:79:a8:fc:ba:73:40:68:83:ec:7a:ac:35:05:f8:
07:4c:09:0f:72:b1:0d:70:ed:2e:cc:63:8e:f9:f2:e4:a9:3b:
56:3a:17:86:41:67:29:8d:4a:fe:cf:32:92:d8:eb:2d:a0:4b:
b7:d3:c1:7c:65:7d:a5:f8:01:28:5a:cf:ce:a9:a6:20:36:b7:
15:e9:cf:c0:04:d3:17:96:00:23:47:c7:f0:b1:7e:e2:d9:d6:
a4:be:64:bc:f6:8a:56:0d:9a:eb:76:36:95:ee:db:8c:c5:a9:
db:34:36:4c:fd:6a:76:c8:c9:74:6a:3f:db:47:58:c2:d3:7e:
65:43:82:36:a7:e5:df:b1:9f:a8:ff:39:41:ca:73:ab:15:b3:
23:54:18:a4:b7:d9:97:f4:71:30:d2:f8:ea:be:6f:dc:24:1d:
9b:32:7c:ae:bd:16:56:d1:de:bd:2f:f9:6c:b8:39:d1:6f:3c:
e4:fd:69:81:b6:78:0d:1c:d2:0e:17:bc:9e:fc:a2:5c:e9:be:
c8:63:6a:fb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjYzQzJBRjExMC8GA1UEBRMoRTAyMTlENUE0Q0Q4NTgyQzRGMzdFMkQwRERENzA2
Qjc3RUJEOUY2QzAeFw0zMDEyMjgyMTM4MzVaFw0zMDEyMjkyMTM4MzVaMBgxFjAU
BgNVBAMTDTY3NTRjMDVmLWQ1ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC7jyz47+J/p4M1Yv/vVsSiBEPbFwSy6YXLx8O7SMghcNWLc5VutLPtGYDJ
qgJTx2XqyF666/P+xV8Yltm7SF1HGAxhGNnOGBWYRKzTJqbfCszTPinTXeqT6K/E
Dz7rdtnE76H3HtcI1wuR+fkVnIMANvNNdAISbZE4jOUqUTCvtcAVgG/oyqQGQzbY
uVbn+opjShwVQy+9ZDlw0YuFmgVYS+MqNVneby+UkcGvDqSw0UxzuSfYQBGRheKH
H7qVgq4c+e/Sqe86H7YbboLUQz6Zudgbp6hYKni5pKBBAnkeQghpsiIRUjFTILD7
fH5XXQiSEBSS7+crTyhzjXHZjtGTAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUPUs+
VJpCSBOt8ka+S3c4B9q3OQMwHwYDVR0jBBgwFoAU4CGdWkzYWCxPN+LQ3dcGt369
n2wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY2M0MyL0IzOTBFOUU4Qzc4MzExRUNCMTk4Mjg5NEYxMjIyNDY4LzRDR2RX
a3pZV0N4UE4tTFEzZGNHdDM2OW4ydy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzRDR2RXa3pZV0N4UE4tTFEzZGNHdDM2OW4ydy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjY2M0MyL0IzOTBFOUU4Qzc4MzExRUNCMTk4Mjg5NEYx
MjIyNDY4LzlGMTcwMzZDQjRFMzExRUZBNDkxNTVBMjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEK3cwDQYJKoZIhvcNAQEL
BQADggEBAH5ztFQCyTzkP/PJsEyWnqq/x5fCx7rByrPDPp14hi8tNtUN5qxi+0CH
+MZBBeImfpF1351Yt/JX8ep5qPy6c0Bog+x6rDUF+AdMCQ9ysQ1w7S7MY4758uSp
O1Y6F4ZBZymNSv7PMpLY6y2gS7fTwXxlfaX4AShaz86ppiA2txXpz8AE0xeWACNH
x/CxfuLZ1qS+ZLz2ilYNmut2NpXu24zFqds0Nkz9anbIyXRqP9tHWMLTfmVDgjan
5d+xn6j/OUHKc6sVsyNUGKS32Zf0cTDS+Oq+b9wkHZsyfK69FlbR3r0v+Wy4OdFv
POT9aYG2eA0c0g4XvJ78olzpvshjavs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:34:34 2025 by rpki-client