Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/24334B044C2611EFB6131890762E951A.roa
File: 24334B044C2611EFB6131890762E951A.roa (raw, json)
Hash identifier: /PBSUrG2kmaQYOQ7rAIFdSZtAvLFjg1IMKGRzA5SlyU=
Subject key identifier: 68:FC:17:96:C8:BE:C6:43:6A:33:7A:36:96:2C:FE:13:B0:EA:9B:27
Certificate issuer: /CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Certificate serial: 0525
Authority key identifier: 38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/24334B044C2611EFB6131890762E951A.roa
Signing time: Sat 27 Jul 2024 14:40:17 +0000
ROA not before: Sat 27 Jul 2024 14:40:14 +0000
ROA not after: Tue 27 Jul 2027 14:40:14 +0000
asID: 328010
IP address blocks: 196.49.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.mft
rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1317 (0x525)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Validity
Not Before: Jul 27 14:40:14 2024 GMT
Not After : Jul 27 14:40:14 2027 GMT
Subject: CN=66a506d1-36bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:f8:5d:6c:b0:9b:8e:23:69:3b:5c:51:c9:
86:fe:93:01:79:98:cf:60:6c:5b:be:f4:9d:8b:55:
3d:56:7d:75:2f:d8:c5:67:96:18:a2:45:bd:24:5f:
14:f8:2e:37:f3:e7:ec:35:3d:9c:8d:8b:6a:f6:a2:
18:80:86:81:98:e5:f5:7f:ee:8b:16:9a:9c:8b:d3:
d1:73:90:a3:18:19:7b:0d:fd:b5:e1:4c:87:86:19:
e8:e4:71:80:24:80:b8:ae:5e:a7:8f:61:66:cd:cb:
6c:1f:a1:50:04:14:4f:bd:08:4e:bd:ad:5b:e5:e6:
41:aa:a2:7d:1a:b2:c7:0f:df:c6:7b:24:72:03:2e:
81:3c:af:d0:ba:0e:13:7b:c9:c6:e2:80:f5:45:00:
5c:c7:6a:0a:19:65:85:c1:77:f9:a4:c2:5e:4e:0e:
54:b6:42:a6:27:e6:7a:7f:76:47:25:a1:f4:7c:50:
ee:94:92:24:5f:0a:83:b0:e2:e2:29:c9:26:bd:c5:
d4:58:ec:e9:06:cf:05:0a:80:15:8d:00:d1:9d:bd:
9b:d6:f5:10:67:cc:3a:d3:bb:b2:e8:77:99:e8:07:
bf:53:24:37:cd:9c:b9:af:8b:75:66:c3:26:43:6e:
1c:da:32:70:cb:eb:44:24:0e:0e:7f:ad:88:83:3f:
83:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FC:17:96:C8:BE:C6:43:6A:33:7A:36:96:2C:FE:13:B0:EA:9B:27
X509v3 Authority Key Identifier:
keyid:38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/24334B044C2611EFB6131890762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.74.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7c:01:ca:4c:c7:07:5f:7e:91:12:3b:0d:f3:2e:b9:68:8a:
ce:b3:12:44:6f:21:80:c5:e4:c4:19:ca:44:aa:a3:b4:5e:38:
94:08:a8:31:a9:a4:3e:2f:f9:3e:1a:4b:e2:d2:e6:fe:4d:0d:
03:7e:e0:b3:7c:08:6b:f6:30:b5:41:db:16:a9:27:66:39:2c:
75:82:c9:30:58:0f:f2:52:5b:19:79:aa:51:7a:dd:d9:f8:b7:
74:64:7a:c9:ff:04:8a:ab:70:ce:4b:da:e8:12:fc:b4:8e:51:
df:8b:02:32:43:53:04:fd:15:9c:f8:77:72:88:2b:aa:2a:2e:
fa:03:50:eb:9b:73:4f:dd:d2:47:a8:18:6c:74:dc:ab:87:41:
77:ae:ed:4d:fd:d4:19:54:76:60:54:7e:e4:39:cd:71:dc:9b:
3f:80:4f:be:5b:61:42:5b:4c:e8:4d:5e:45:55:64:db:e7:96:
8b:5b:9a:f9:ef:9f:c4:6a:85:71:23:aa:8b:b0:7b:63:f3:43:
e0:f8:6c:b5:87:50:21:1b:25:93:f8:d5:04:dd:ba:08:ac:65:
5e:5c:04:92:5c:24:72:d8:76:87:a7:a9:93:f0:20:6f:ca:9b:
7f:8c:f2:18:e5:65:d9:4c:30:f1:6b:73:79:4a:8f:ce:8c:cc:
81:d4:cc:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org