Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0C04B6A4522F11EEBF7E11454AD9E6FC.roa
File: 0C04B6A4522F11EEBF7E11454AD9E6FC.roa (raw, json)
Hash identifier: tVVOjYtHmH26jlU4BtZjFSFi4KG+BHH8SKgeIAcNwe8=
Subject key identifier: A2:EC:88:FF:96:23:B1:6D:F6:B0:04:13:EA:D0:59:6F:B0:F6:0F:60
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 04FA
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0C04B6A4522F11EEBF7E11454AD9E6FC.roa
Signing time: Wed 13 Sep 2023 12:14:11 +0000
ROA not before: Wed 13 Sep 2023 12:14:07 +0000
ROA not after: Fri 30 Sep 2033 12:14:07 +0000
asID: 3741
IP address blocks: 196.1.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1274 (0x4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Sep 13 12:14:07 2023 GMT
Not After : Sep 30 12:14:07 2033 GMT
Subject: CN=6501a793-8886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:9a:c5:0c:ae:99:a0:26:e0:f2:fb:98:f4:
fe:8d:12:81:3c:bf:57:40:46:25:e1:cd:aa:94:4e:
ac:fc:60:0f:39:42:81:f4:a4:62:8f:c7:8a:5b:06:
c3:79:a9:70:3b:62:da:da:d0:71:9e:0f:02:e0:b9:
8c:bc:bb:1a:49:4d:3d:32:ce:e4:58:b5:b6:73:32:
d4:3c:4d:a2:e0:5d:34:34:8a:f2:f6:a0:f3:79:2e:
38:1b:b6:24:8b:47:b3:30:e1:ef:e8:10:6f:cd:36:
e9:32:45:48:10:91:a9:24:35:e0:b9:1a:c1:0d:20:
08:6e:0f:77:f4:c7:e7:35:ed:5e:87:e7:d3:40:7a:
df:c3:bf:fe:b7:f1:4f:1c:2b:1a:0e:f6:00:1a:f5:
2a:d8:16:09:49:d6:39:a6:14:a2:30:df:17:c7:03:
a4:f2:16:cf:13:bd:a7:47:12:fd:73:bd:c2:0d:10:
09:79:c3:5a:c9:1a:69:d8:65:ec:d4:7d:8f:9d:14:
b5:6f:0d:c6:f3:b8:06:73:2f:79:f9:17:b5:39:80:
92:ec:d5:eb:f9:e7:a9:43:fe:7d:46:28:f0:0c:5c:
a3:41:53:ec:eb:64:3d:90:a6:f5:78:aa:31:59:2c:
89:24:7f:d3:86:04:f5:3e:49:f2:bf:9f:fb:61:dc:
39:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EC:88:FF:96:23:B1:6D:F6:B0:04:13:EA:D0:59:6F:B0:F6:0F:60
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/0C04B6A4522F11EEBF7E11454AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.74.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:3d:95:cc:2e:91:4c:ba:86:8f:0c:32:c2:0c:72:b8:a0:2a:
11:78:e6:c3:fb:a9:dc:3a:b3:53:1f:a0:06:c2:93:86:5f:b6:
91:97:b4:c2:61:c7:b2:03:ae:20:e9:d9:34:53:55:67:8b:8c:
a2:40:4f:f7:44:47:73:76:df:53:63:85:c0:cc:04:75:2e:22:
fd:d3:e9:df:28:64:55:cd:5c:0e:db:e8:b5:2c:9a:09:b9:2f:
04:e6:e7:3a:65:33:aa:88:7f:54:3c:e5:af:e0:37:1d:dd:fe:
0f:a3:c8:f3:aa:5b:5c:84:b8:e7:b0:b3:b7:30:23:95:13:2e:
08:18:59:5c:d3:c2:67:8c:24:f0:d0:77:f8:6b:db:c1:bd:00:
d8:fd:65:04:f8:97:e7:a6:bd:d3:58:7c:e2:d6:bd:e1:3e:8a:
e6:f5:05:46:be:14:f6:71:68:a9:31:cb:eb:d7:1f:1c:86:4c:
71:55:c5:5e:6c:de:3b:5f:81:05:9d:13:01:7d:4c:92:c7:de:
ae:33:6b:6a:87:f1:31:a8:7b:11:9d:00:05:9b:b2:44:ee:c7:
9d:93:e2:d0:f8:dd:b9:8e:c8:a1:31:87:92:41:e8:2a:b0:ff:
30:41:d1:ac:9c:5f:cf:8a:34:78:32:7c:18:fd:d9:ed:c4:0d:
36:88:d7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org