Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/3CBE5F76212011ECA2098832D8A014CE.roa
File: 3CBE5F76212011ECA2098832D8A014CE.roa (raw, json)
Hash identifier: 8d9G2F7SeXBUC0RrFhpkoC1cMwO502CPGYGL0obQDBM=
Subject key identifier: 00:8E:05:12:E2:6B:E0:AD:07:78:92:3D:0E:03:01:BC:38:EC:DF:9E
Certificate issuer: /CN=F36A36C8AF/serialNumber=47FB9F31CF4F2D19711C84D32E23BD006E002E96
Certificate serial: 09
Authority key identifier: 47:FB:9F:31:CF:4F:2D:19:71:1C:84:D3:2E:23:BD:00:6E:00:2E:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/R_ufMc9PLRlxHITTLiO9AG4ALpY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/3CBE5F76212011ECA2098832D8A014CE.roa
Signing time: Wed 29 Sep 2021 12:24:48 +0000
ROA not before: Wed 29 Sep 2021 12:24:45 +0000
ROA not after: Wed 30 Sep 2026 12:24:45 +0000
asID: 21491
IP address blocks: 196.0.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/R_ufMc9PLRlxHITTLiO9AG4ALpY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/R_ufMc9PLRlxHITTLiO9AG4ALpY.mft
rsync://rpki.afrinic.net/repository/afrinic/R_ufMc9PLRlxHITTLiO9AG4ALpY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A36C8AF/serialNumber=47FB9F31CF4F2D19711C84D32E23BD006E002E96
Validity
Not Before: Sep 29 12:24:45 2021 GMT
Not After : Sep 30 12:24:45 2026 GMT
Subject: CN=61545b10-f9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:8a:76:61:15:bb:de:d5:84:47:2a:d0:dc:
a2:7d:ec:72:37:cc:a7:07:23:8c:75:31:90:e3:88:
52:d5:35:ed:21:54:d4:b7:dc:22:1b:4a:c4:3d:0b:
d3:fb:81:b2:cf:07:9e:cd:b8:1d:79:20:5e:e2:ec:
be:bc:40:e1:05:04:87:43:b2:66:3a:62:e0:ae:f8:
df:fe:a5:9b:67:8b:54:da:8e:42:ef:d5:a5:56:7a:
8a:8a:97:d5:2d:05:e1:30:a7:cf:d1:85:4a:17:8f:
d2:86:28:76:91:dc:38:3f:67:02:12:8f:51:87:b3:
ad:19:50:3e:f7:ec:d6:2a:41:66:0f:2a:39:c2:4c:
d3:ca:b0:48:8e:41:56:b0:2f:68:8d:f3:20:cf:ae:
3a:3f:f0:aa:6f:7f:81:10:37:77:ac:7f:0c:ba:11:
58:97:51:17:87:fd:18:c1:01:de:e5:93:61:09:4d:
81:48:8d:95:61:35:2b:fe:6b:31:80:1c:c4:9e:32:
57:53:f4:4d:4b:b6:ed:b2:a2:1e:7c:f8:0d:5b:6d:
59:37:0e:bb:9a:28:19:47:6e:b3:ed:ad:2e:6f:1a:
f8:e5:71:04:35:1a:40:7a:7e:ec:1b:49:7e:3c:d3:
7b:3f:d3:b5:9c:44:75:5a:dd:b5:e8:9f:ad:d6:29:
c9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8E:05:12:E2:6B:E0:AD:07:78:92:3D:0E:03:01:BC:38:EC:DF:9E
X509v3 Authority Key Identifier:
keyid:47:FB:9F:31:CF:4F:2D:19:71:1C:84:D3:2E:23:BD:00:6E:00:2E:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/R_ufMc9PLRlxHITTLiO9AG4ALpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/R_ufMc9PLRlxHITTLiO9AG4ALpY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A36C8/82AA150A210E11ECA6F7CC17D8A014CE/3CBE5F76212011ECA2098832D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:3c:0c:3a:8c:cf:47:6a:5b:29:42:57:72:f2:3d:a4:bf:4e:
72:39:a5:74:11:a6:0b:70:94:0a:57:64:07:a2:c9:66:08:97:
3b:07:a8:3e:18:fc:a6:78:eb:d0:8d:f2:62:47:a4:ad:49:98:
74:ea:1f:68:a0:5a:72:43:fd:c8:c7:58:33:b9:e7:bc:43:ad:
da:86:83:4f:28:d2:15:5a:f3:ff:ea:b2:30:14:e9:86:27:5b:
01:e8:4b:03:d1:b5:85:36:9f:28:b2:1c:48:b3:b3:c0:ad:a3:
75:d5:9a:1b:b9:bb:4f:fa:00:6c:55:bd:74:65:7d:db:43:a0:
44:02:64:1b:a1:ef:3e:fd:2a:e2:e9:52:5e:b6:e7:81:32:3c:
36:2e:90:02:71:e2:52:d9:75:7f:f1:cc:84:95:fa:6c:4f:bf:
86:df:4e:e7:96:b4:7f:dc:db:9d:3a:31:b0:2e:ac:77:e1:6e:
57:ea:e1:8d:78:5c:e4:f9:df:bc:8b:45:76:0d:09:a5:1a:3a:
48:be:73:29:0d:cb:0d:f5:c9:2c:56:6d:42:e8:a0:34:d0:a3:
f0:0b:37:76:28:38:fa:b8:5f:f6:11:5e:43:7c:1e:81:49:ea:
44:0c:ec:e9:58:f7:b3:18:d5:76:41:62:54:40:0a:c3:32:24:
10:7e:4c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org