Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/96906008259711EE81A819834AD9E6FC.roa
File: 96906008259711EE81A819834AD9E6FC.roa (raw, json)
Hash identifier: lrOqQMvGTDYUaqsUCyRR7/sEfn4NcGhIAxZA4QaZo9s=
Subject key identifier: 43:CC:0F:DD:AF:02:A2:6E:29:2B:F6:AD:11:59:A8:74:01:FC:4D:63
Certificate issuer: /CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Certificate serial: 2B
Authority key identifier: C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/96906008259711EE81A819834AD9E6FC.roa
Signing time: Tue 18 Jul 2023 18:19:09 +0000
ROA not before: Tue 18 Jul 2023 18:19:00 +0000
ROA not after: Mon 18 Jul 2033 18:19:00 +0000
asID: 328829
IP address blocks: 102.220.176.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.mft
rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Validity
Not Before: Jul 18 18:19:00 2023 GMT
Not After : Jul 18 18:19:00 2033 GMT
Subject: CN=64b6d79d-049c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6a:a6:4b:2b:16:a7:cb:93:43:bd:6c:4f:cf:
92:bc:0d:79:20:f4:c0:91:40:09:f3:2c:bd:a7:4e:
0d:96:10:78:9e:fc:96:5f:e0:95:15:0e:65:7e:21:
5f:c7:97:31:ff:3e:53:f8:a4:b4:84:f6:ab:86:8a:
88:1d:26:d8:80:0c:59:db:cb:c0:b2:6b:b6:17:00:
e1:30:86:30:f2:42:4e:14:27:37:aa:bd:0d:25:58:
08:fe:df:c2:04:b3:3b:5e:63:85:2e:e3:92:c4:06:
08:c1:18:9c:20:0e:b2:82:cc:bb:45:18:f4:4b:c7:
8a:41:e4:9b:f0:fb:16:43:d6:16:d7:b8:d8:99:66:
fe:6a:73:8a:76:d0:ab:9e:dd:00:a7:07:13:f7:de:
2c:6c:2f:24:1e:b0:07:3d:76:3a:0f:f5:8a:9b:21:
c7:ae:0d:f0:4b:10:e1:29:e5:8d:31:48:68:94:30:
3d:98:2c:fa:37:84:0a:c2:67:17:6d:b4:73:fa:21:
ef:47:e2:37:49:16:7f:66:90:3d:30:80:e9:d4:d4:
69:8d:87:5d:27:40:8e:0e:37:41:53:72:2d:4e:50:
f4:2b:6c:6b:1e:a1:f4:29:0f:87:34:61:37:3c:b5:
1f:98:1e:da:4c:eb:d2:67:30:f6:5e:82:65:22:c0:
64:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CC:0F:DD:AF:02:A2:6E:29:2B:F6:AD:11:59:A8:74:01:FC:4D:63
X509v3 Authority Key Identifier:
keyid:C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/96906008259711EE81A819834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.176.0/23
Signature Algorithm: sha256WithRSAEncryption
08:85:f3:31:a2:5e:7f:79:6b:a6:97:45:29:60:13:c2:d0:06:
e2:54:48:91:de:c3:1d:e4:fe:af:83:c2:87:27:92:6c:28:e0:
23:84:40:35:45:cb:18:5c:11:cc:b8:95:29:6f:b1:3d:e2:54:
22:4b:45:f4:64:33:3b:0a:59:20:f5:dd:be:a9:0d:b9:90:d6:
ee:b7:98:c1:7a:68:44:51:5f:05:d4:01:fd:e0:7f:c9:2c:72:
93:7c:7c:2b:9d:fd:26:26:71:2b:af:d4:b8:1a:84:bc:0d:c9:
a7:4e:07:ec:dc:76:37:d9:47:3a:1f:66:12:48:1b:0e:f2:8a:
94:92:ab:69:57:6f:e3:f1:df:83:5d:98:56:cc:48:f0:5d:8b:
68:9e:c6:4a:c5:09:92:e5:ca:d7:a0:d3:f4:5e:f7:0b:7c:17:
a4:65:16:44:60:77:d1:50:e6:d9:c8:3d:c4:22:f4:a0:56:30:
92:82:ea:37:d6:d0:4d:d2:b1:32:6b:8e:4a:19:5a:73:2c:01:
30:1d:30:b0:a3:ed:f6:fd:f0:ac:fb:35:80:59:e1:a9:c1:b3:
e2:19:49:12:67:0c:5e:76:08:dc:44:02:a4:73:36:f6:25:b4:
42:7c:c7:ed:01:4e:31:90:6a:d7:52:18:79:52:df:7f:ad:d8:
1f:6b:16:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:46 2024 by rpki-client on console-ams.rpki-client.org