Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/6774FF984C2611EFAB787290762E951A.roa
File: 6774FF984C2611EFAB787290762E951A.roa (raw, json)
Hash identifier: 0dIOFSVxQkLwHxAoSEdUvKLHLyqgqQBcdK0Lf04L/TI=
Subject key identifier: 52:AF:66:72:98:C3:1A:48:01:78:9C:F9:13:B2:A2:11:FE:E8:80:47
Certificate issuer: /CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Certificate serial: 0527
Authority key identifier: 38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/6774FF984C2611EFAB787290762E951A.roa
Signing time: Sat 27 Jul 2024 14:42:10 +0000
ROA not before: Sat 27 Jul 2024 14:42:07 +0000
ROA not after: Tue 27 Jul 2027 14:42:07 +0000
asID: 37716
IP address blocks: 196.223.47.0/24 maxlen: 24
2001:43f8:b60::/48 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.mft
rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1319 (0x527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Validity
Not Before: Jul 27 14:42:07 2024 GMT
Not After : Jul 27 14:42:07 2027 GMT
Subject: CN=66a50742-9130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:b1:cc:7d:c6:5a:f1:2d:b5:ec:43:2e:37:
95:b4:08:57:de:c0:79:09:65:72:62:b2:9d:47:4a:
a4:8b:ef:60:b7:8a:8e:ab:3a:a1:3b:6c:ce:73:67:
e8:87:29:1b:78:90:d0:17:2c:9d:b1:b4:ce:6e:4b:
3b:21:a0:a1:1d:84:b0:90:d0:7b:90:a7:85:40:9b:
a6:f6:09:78:2d:bb:52:65:8c:3a:ff:35:47:89:a6:
b0:ad:49:ae:1e:66:fd:9d:9b:89:92:59:52:a1:57:
45:d8:da:15:85:2c:81:57:80:8a:3b:e9:45:a9:6c:
72:fa:01:d4:65:40:8e:77:9f:a7:c0:e2:48:88:55:
67:ff:9e:54:a5:3e:3b:07:88:ad:a7:31:c4:2c:6a:
d5:60:f9:72:cc:e2:92:2d:d6:22:7a:b0:6a:a4:54:
07:a8:b1:a5:c2:b2:1d:76:d6:78:c8:e0:3c:57:76:
11:03:bb:26:e4:a6:71:ab:37:35:b3:e4:f4:44:05:
b0:a3:d5:e1:02:cb:70:66:3d:76:da:b3:f3:2a:e7:
7f:9c:42:dc:24:31:62:26:e3:f7:3e:7c:72:43:53:
ad:47:e9:f7:70:98:c6:ff:d3:bf:7e:24:0f:b6:b1:
83:13:3b:e5:7c:87:7d:bd:f0:46:9f:06:bc:c7:13:
e6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AF:66:72:98:C3:1A:48:01:78:9C:F9:13:B2:A2:11:FE:E8:80:47
X509v3 Authority Key Identifier:
keyid:38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/6774FF984C2611EFAB787290762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.47.0/24
IPv6:
2001:43f8:b60::/48
Signature Algorithm: sha256WithRSAEncryption
3c:6f:0f:13:3c:80:4c:fc:28:18:ef:23:a5:ed:3a:61:0b:ac:
f5:08:a6:be:c0:9c:be:bc:b7:e5:51:44:30:e0:a0:5a:16:4f:
7a:b0:f4:96:99:5a:5a:c2:5b:b1:71:4a:2a:1d:c0:48:1c:93:
c8:37:b4:cd:c6:24:67:3e:ae:62:7a:f2:e8:13:94:cf:48:bd:
9a:6e:c3:2f:eb:64:a1:43:7e:19:89:e9:51:74:7c:16:75:2a:
bb:06:c5:9a:21:5b:a9:73:17:a1:69:6c:f4:4c:4a:04:4f:53:
ca:35:14:ad:84:15:4d:cd:a1:17:15:a7:5c:aa:c6:4e:57:a5:
24:b5:cb:ec:92:74:2b:67:76:6f:93:ca:c9:16:51:3f:b4:eb:
52:1d:95:77:02:0f:fe:29:07:1c:6d:1b:de:d0:0b:af:b2:ff:
6a:b7:4c:f7:06:44:10:98:ff:40:74:55:2d:ab:71:37:09:e2:
dc:d4:d9:7e:b6:39:e5:d1:06:b3:be:0c:0c:ec:cc:21:8b:09:
11:c5:05:5c:03:2e:60:33:41:cd:ac:0a:81:d7:39:3e:06:39:
e0:2c:ba:20:a1:76:62:58:c0:71:f5:90:93:2c:e4:75:56:03:
54:02:43:2b:cb:4b:9b:25:2f:d8:de:5b:4d:68:4d:f7:1a:a6:
8a:27:c7:b3
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NkQyQzZBRjExMC8GA1UEBRMoMzg2Mjk4RDlEMEVCNzFDQTkwRjQ4NkExNjEzNEFG
MTM2MUQyNzFDODAeFw0yNDA3MjcxNDQyMDdaFw0yNzA3MjcxNDQyMDdaMBgxFjAU
BgNVBAMTDTY2YTUwNzQyLTkxMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCpurHMfcZa8S217EMuN5W0CFfewHkJZXJisp1HSqSL72C3io6rOqE7bM5z
Z+iHKRt4kNAXLJ2xtM5uSzshoKEdhLCQ0HuQp4VAm6b2CXgtu1JljDr/NUeJprCt
Sa4eZv2dm4mSWVKhV0XY2hWFLIFXgIo76UWpbHL6AdRlQI53n6fA4kiIVWf/nlSl
PjsHiK2nMcQsatVg+XLM4pIt1iJ6sGqkVAeosaXCsh121njI4DxXdhEDuybkpnGr
NzWz5PREBbCj1eECy3BmPXbas/Mq53+cQtwkMWIm4/c+fHJDU61H6fdwmMb/079+
JA+2sYMTO+V8h3298EafBrzHE+bLAgMBAAGjggK2MIICsjAdBgNVHQ4EFgQUUq9m
cpjDGkgBeJz5E7KiEf7ogEcwHwYDVR0jBBgwFoAUOGKY2dDrccqQ9IahYTSvE2HS
ccgwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjZEMkM2LzBCRUMwMjU2NzExQTExRUI5RUI2QjQxQ0Y4QUVBMjI4L09HS1ky
ZERyY2NxUTlJYWhZVFN2RTJIU2NjZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09HS1kyZERyY2NxUTlJYWhZVFN2RTJIU2NjZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjZEMkM2LzBCRUMwMjU2NzExQTExRUI5RUI2QjQxQ0Y4
QUVBMjI4LzY3NzRGRjk4NEMyNjExRUZBQjc4NzI5MDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBADE3y8wDwQCAAIwCQMHACAB
Q/gLYDANBgkqhkiG9w0BAQsFAAOCAQEAPG8PEzyATPwoGO8jpe06YQus9QimvsCc
vry35VFEMOCgWhZPerD0lplaWsJbsXFKKh3ASByTyDe0zcYkZz6uYnry6BOUz0i9
mm7DL+tkoUN+GYnpUXR8FnUquwbFmiFbqXMXoWls9ExKBE9TyjUUrYQVTc2hFxWn
XKrGTlelJLXL7JJ0K2d2b5PKyRZRP7TrUh2VdwIP/ikHHG0b3tALr7L/ardM9wZE
EJj/QHRVLatxNwni3NTZfrY55dEGs74MDOzMIYsJEcUFXAMuYDNBzawKgdc5PgY5
4Cy6IKF2YljAcfWQkyzkdVYDVAJDK8tLmyUv2N5bTWhN9xqmiifHsw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org