Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/5386CFDE0B8A11EF94113C6D017001B1.roa
File: 5386CFDE0B8A11EF94113C6D017001B1.roa (raw, json)
Hash identifier: +ksSk336SAPxQuepQDqlYfI3yCwLjxok4/1qF910PT0=
Subject key identifier: 2A:9E:C9:B8:AA:31:79:1A:2A:24:D2:01:ED:C9:9D:4E:A6:9F:E1:DD
Certificate issuer: /CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Certificate serial: 14
Authority key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/5386CFDE0B8A11EF94113C6D017001B1.roa
Signing time: Mon 06 May 2024 09:23:41 +0000
ROA not before: Mon 06 May 2024 09:23:37 +0000
ROA not after: Thu 06 May 2027 09:23:37 +0000
asID: 36867
IP address blocks: 196.1.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Validity
Not Before: May 6 09:23:37 2024 GMT
Not After : May 6 09:23:37 2027 GMT
Subject: CN=6638a19d-8659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ac:a7:39:18:03:9b:4e:fa:a5:b2:73:06:c6:
cb:f9:60:51:46:60:c0:02:bd:ac:64:b2:9c:18:fb:
a1:5d:46:ef:d2:16:96:e5:00:b8:c7:d1:c6:25:9a:
c6:4d:42:12:d9:99:8d:d7:88:98:d2:c8:d0:fe:2f:
b1:87:01:f2:4d:a5:d1:bd:c9:2e:1a:74:3e:36:f7:
04:61:1c:55:a9:bc:b8:a5:2b:40:3b:80:23:dd:26:
17:03:ea:a3:a7:2f:b0:d2:5f:29:c0:4c:34:c0:b5:
50:6c:ea:5e:73:43:01:d6:e5:7f:0c:b0:78:a4:a4:
84:d7:0a:30:a4:bd:31:8d:cd:87:1a:5f:c4:bb:1a:
48:d0:1f:f0:47:11:40:f4:a5:6c:6d:1c:e9:72:76:
63:dd:4e:c0:f1:2f:43:bf:28:e8:55:36:9f:6d:21:
a0:1c:2e:b3:13:24:de:23:72:74:0b:48:6e:95:1a:
df:84:16:3f:f6:95:b4:cd:8b:f1:b2:62:2f:04:82:
c1:fa:4e:cf:28:df:3e:f8:25:8e:36:8d:df:05:6d:
f5:6c:be:af:5a:80:fc:c6:de:a7:c5:19:fa:30:d8:
aa:23:c7:fb:c1:1b:a3:74:e9:f9:1e:f2:96:62:99:
e1:53:fc:f0:43:f8:f8:57:e2:e6:6a:28:7f:5d:1a:
75:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9E:C9:B8:AA:31:79:1A:2A:24:D2:01:ED:C9:9D:4E:A6:9F:E1:DD
X509v3 Authority Key Identifier:
keyid:4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/5386CFDE0B8A11EF94113C6D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.122.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:45:d7:3e:42:2b:af:3d:cb:7d:da:d8:35:66:c6:50:88:3d:
c2:89:b2:1b:fd:6c:75:aa:46:e3:31:f1:2b:72:76:3f:44:21:
0e:90:d9:3c:96:13:7e:32:d0:a2:60:28:be:e2:7a:60:f0:d9:
b9:7f:75:1c:92:eb:d4:ac:92:63:f5:fd:70:13:14:f2:c6:2d:
3d:94:e7:97:67:d3:55:46:2f:e1:cf:c8:cf:d7:43:68:80:59:
d0:f6:6f:fb:d2:0f:91:ef:2c:a8:6f:75:f5:5a:05:c4:14:c4:
6e:31:93:ef:63:a2:32:c4:72:e3:48:3a:c9:23:c9:59:f3:74:
9d:00:b6:ab:ed:ef:d4:22:22:b7:32:e7:8a:0d:1b:6b:c1:f5:
7a:52:3a:06:d6:1a:20:6d:f0:e5:3f:d2:46:f1:84:fa:df:6f:
52:8e:14:1b:57:7f:12:c3:bf:1e:db:f6:15:26:ab:cb:f3:06:
eb:2d:69:9e:50:ea:6b:66:11:f9:7a:e8:57:6e:59:53:01:9a:
5c:35:17:b7:be:fa:55:db:ee:53:c5:80:e1:92:ee:2e:c1:77:
67:f6:09:4a:a9:73:1a:14:30:09:ae:2b:77:42:8e:89:ae:f9:
38:57:67:af:e6:d6:33:e9:34:a4:3f:bc:4a:98:29:60:08:93:
34:c3:d5:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:32 2024 by rpki-client on console-ams.rpki-client.org