Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/13E45E1C0E8911EF82A4F35A017001B1.roa
File: 13E45E1C0E8911EF82A4F35A017001B1.roa (raw, json)
Hash identifier: eSu/uNHefvRDyXuPd6bFN5AOugU7elsPo3xlxIjj8Jg=
Subject key identifier: C3:0C:23:A2:B1:10:37:31:63:31:FC:DA:DF:03:4E:6D:E2:13:CD:07
Certificate issuer: /CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Certificate serial: 1A
Authority key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/13E45E1C0E8911EF82A4F35A017001B1.roa
Signing time: Fri 10 May 2024 04:52:18 +0000
ROA not before: Fri 10 May 2024 04:52:13 +0000
ROA not after: Mon 10 May 2027 04:52:13 +0000
asID: 36867
IP address blocks: 196.1.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Validity
Not Before: May 10 04:52:13 2024 GMT
Not After : May 10 04:52:13 2027 GMT
Subject: CN=663da802-4c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:8d:40:3a:84:35:2c:f4:53:9c:cb:55:95:d9:
1a:6f:54:5f:e6:fa:87:0f:34:13:ce:e1:70:45:10:
72:64:93:e9:58:ef:61:d7:d8:df:44:80:fc:26:63:
71:41:58:14:a9:2e:53:69:e5:0f:f0:73:6b:4f:20:
e8:03:62:f9:16:ed:43:f6:62:1b:0b:fe:c4:b0:d0:
95:f9:65:e6:6c:95:2a:cb:97:02:27:dc:a2:7a:cb:
aa:d3:9e:30:4a:18:1a:91:47:83:62:ab:53:50:b3:
a1:f1:4e:a3:3f:9f:77:5c:43:1d:74:ee:2d:9f:60:
13:5c:42:72:d5:b5:25:91:85:24:b6:d0:d1:0f:25:
b8:42:c9:75:a1:0d:7d:10:02:a8:01:f6:fa:4d:bc:
2e:3e:84:13:a3:31:12:8e:52:e2:32:6b:24:62:a9:
09:4f:f0:cc:2d:c2:2f:e7:2e:41:7c:bb:09:46:e9:
5f:b5:65:da:c7:a4:f2:b2:eb:63:59:0a:55:dc:14:
75:87:09:d1:bd:ef:30:f3:d4:2f:a5:a7:ec:4d:56:
df:0f:19:bd:72:cd:7f:43:20:86:4f:85:70:3a:8c:
88:b2:e8:13:37:3b:08:38:22:34:b7:99:02:19:73:
f1:4d:b5:79:ac:6b:e4:e7:fa:1f:cb:67:8f:ea:4f:
6d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0C:23:A2:B1:10:37:31:63:31:FC:DA:DF:03:4E:6D:E2:13:CD:07
X509v3 Authority Key Identifier:
keyid:4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/13E45E1C0E8911EF82A4F35A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.121.0/24
Signature Algorithm: sha256WithRSAEncryption
41:aa:7f:82:7c:8d:10:00:bc:f0:ce:c4:06:24:60:1f:0a:f9:
ad:ef:e1:65:86:42:cd:2b:41:f2:f2:54:a9:d4:d1:43:fb:3c:
c6:69:1c:dc:b8:3e:09:94:dc:aa:69:d7:85:c1:aa:8f:85:6e:
69:f0:e4:47:7b:8a:42:77:f2:ef:e9:04:37:09:39:d7:ff:a7:
c9:e3:6a:82:6c:88:05:d7:2d:0f:50:fb:e3:d6:57:f4:6a:2c:
01:75:08:71:14:5c:a6:41:7e:f2:0b:86:ff:5a:0b:78:3a:a1:
62:07:21:19:0a:9f:69:24:a1:05:24:b5:12:9e:ef:ce:aa:27:
6f:0e:26:f4:03:07:a9:dd:64:e1:9b:91:99:10:04:b1:6c:2b:
06:10:b0:88:a0:1e:59:15:0e:ca:7e:39:c8:f7:35:b3:13:c0:
ae:62:17:39:fb:87:ac:2d:a0:c2:a2:f3:6a:bc:ac:16:a1:f7:
21:e1:bd:5f:d6:ca:9c:4f:86:f4:d6:a0:31:ae:01:0a:0a:2e:
07:d0:8d:8b:b9:82:6c:8b:46:41:67:25:34:19:e4:4b:54:92:
6b:61:a3:78:b5:0c:44:31:f7:86:ee:57:01:3d:3e:d5:2b:84:
aa:34:bf:63:b2:99:00:30:fb:b8:87:9c:dd:0a:13:6c:22:a9:
b8:e5:70:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:32 2024 by rpki-client on console-ams.rpki-client.org