Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/CBA17CF8509111EEB65831234AD9E6FC.roa
File: CBA17CF8509111EEB65831234AD9E6FC.roa (raw, json)
Hash identifier: wP6aKsEiYvGLq91LUKac5Hf0WJB6D/C/9SQUe8eJUqs=
Subject key identifier: 39:5F:90:A5:7A:CE:CC:47:FC:C0:B8:02:5F:9F:C3:92:C2:D2:1D:74
Certificate issuer: /CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Certificate serial: 0346
Authority key identifier: 1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/CBA17CF8509111EEB65831234AD9E6FC.roa
Signing time: Mon 11 Sep 2023 10:56:01 +0000
ROA not before: Mon 11 Sep 2023 10:55:58 +0000
ROA not after: Wed 30 Sep 2026 10:55:58 +0000
asID: 37790
IP address blocks: 196.60.84.0/24 maxlen: 24
2001:43fd:c000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.mft
rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 838 (0x346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Validity
Not Before: Sep 11 10:55:58 2023 GMT
Not After : Sep 30 10:55:58 2026 GMT
Subject: CN=64fef241-536e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:34:c3:c2:15:15:ba:df:65:38:a9:47:82:48:
a6:1c:90:bb:5e:bc:9e:d2:c3:d9:9f:56:5d:64:1f:
1e:dc:92:97:30:25:79:78:54:7d:ee:21:47:0e:20:
15:d1:25:63:b4:b4:28:42:ca:c5:85:5d:d7:9a:47:
46:17:d7:b0:24:7b:41:38:20:64:79:92:13:1d:b5:
3e:30:f5:83:55:45:a1:85:c2:b6:04:70:39:c3:c4:
75:f4:29:59:86:eb:c8:84:41:56:f4:ce:6a:40:f6:
8c:a5:dd:11:57:cc:0a:30:fc:11:0e:d5:0c:6a:78:
83:63:46:c0:a8:c3:64:8d:fe:97:14:59:0d:9a:d8:
e9:87:bc:9c:d3:a0:5d:8e:94:3d:7f:dc:1a:d0:2f:
50:fe:16:32:dc:fb:68:68:f3:80:98:57:0b:f9:ce:
f0:45:99:31:73:74:cc:0a:89:18:c5:f1:07:4c:de:
2a:72:ea:40:5d:60:52:dc:d3:dc:5e:8e:48:7d:d4:
74:00:82:e5:c8:51:81:a8:d4:dc:13:9c:24:66:21:
64:79:5c:b2:bd:68:00:09:b2:35:ac:87:79:19:b8:
ea:cd:6d:71:2c:f1:24:52:74:4b:51:3c:f3:55:9b:
3a:a2:c9:88:00:a6:a3:40:79:f5:9d:05:e1:ad:cd:
8e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5F:90:A5:7A:CE:CC:47:FC:C0:B8:02:5F:9F:C3:92:C2:D2:1D:74
X509v3 Authority Key Identifier:
keyid:1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/CBA17CF8509111EEB65831234AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.60.84.0/24
IPv6:
2001:43fd:c000::/48
Signature Algorithm: sha256WithRSAEncryption
a7:f8:ea:5f:27:e6:aa:93:0b:51:1c:23:de:06:68:b5:ce:c6:
3d:25:b1:60:ee:55:59:50:f4:60:d3:66:5e:9f:6b:68:5c:b8:
4d:d5:49:9e:c1:64:83:be:67:b9:8a:c4:bf:70:66:8f:f7:cb:
ee:10:86:62:45:0b:b8:fb:0c:f3:8e:e5:57:4f:b6:22:5d:b5:
21:7f:7b:db:e8:ac:35:85:a0:99:3d:09:a7:07:64:59:d4:09:
99:44:9e:d4:7c:60:86:24:bf:de:f9:b8:81:e8:03:ab:56:76:
f2:2b:e0:30:8c:a6:90:6b:88:36:a6:44:c2:fb:21:30:f7:92:
41:5b:73:89:c1:e4:63:96:43:10:30:50:82:7c:71:d9:0c:1e:
48:40:96:34:1e:40:2e:b8:9f:b6:ae:26:ce:df:a4:a4:73:30:
f3:66:84:b0:16:b0:7a:6b:77:95:0d:bc:85:79:1f:72:4b:20:
72:94:d6:35:d6:73:cf:84:d9:c1:66:b9:a7:99:a2:0a:31:00:
c7:a0:7a:cf:35:e5:38:4e:10:4f:45:af:77:42:54:1c:9c:ab:
fa:06:96:e8:01:03:32:cc:68:1b:1e:ac:58:dc:ca:33:6f:74:
06:a0:36:ab:ba:60:36:fb:d1:a6:f3:36:ae:fa:e8:81:89:eb:
ff:49:5b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 02:40:28 2024 by rpki-client on console-fra.rpki-client.org