Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/96446AE6C04111EE9477E2A2775412E6.roa
File: 96446AE6C04111EE9477E2A2775412E6.roa (raw, json)
Hash identifier: qXGiyWvqf9jjyOwcPQcuVS3D910J4Jz6Wlu+WbOF/zM=
Subject key identifier: 75:62:95:47:7F:2D:90:D3:D3:31:A1:68:C0:01:E3:25:53:F8:BD:EC
Certificate issuer: /CN=F36B0C44AF/serialNumber=49BAE67DFEDE9D9509BB03A7C732DC566166B75A
Certificate serial: 0F
Authority key identifier: 49:BA:E6:7D:FE:DE:9D:95:09:BB:03:A7:C7:32:DC:56:61:66:B7:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sbrmff7enZUJuwOnxzLcVmFmt1o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/96446AE6C04111EE9477E2A2775412E6.roa
Signing time: Wed 31 Jan 2024 14:04:02 +0000
ROA not before: Wed 31 Jan 2024 14:03:58 +0000
ROA not after: Thu 25 Feb 2044 14:03:58 +0000
asID: 37521
IP address blocks: 197.149.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/Sbrmff7enZUJuwOnxzLcVmFmt1o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/Sbrmff7enZUJuwOnxzLcVmFmt1o.mft
rsync://rpki.afrinic.net/repository/afrinic/Sbrmff7enZUJuwOnxzLcVmFmt1o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B0C44AF/serialNumber=49BAE67DFEDE9D9509BB03A7C732DC566166B75A
Validity
Not Before: Jan 31 14:03:58 2024 GMT
Not After : Feb 25 14:03:58 2044 GMT
Subject: CN=65ba5352-1439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2a:6b:2f:88:81:51:d7:76:c7:13:ca:df:c3:
70:ee:9a:2a:f3:6d:f0:e4:c2:5b:28:1a:4d:89:62:
3a:29:7d:55:c8:07:7c:9d:a9:05:cd:77:d2:c8:18:
ed:06:bd:98:de:cb:3e:b8:81:86:66:25:17:17:37:
d7:83:2c:ae:1c:fb:be:d9:30:29:6e:d1:af:c9:41:
a9:c4:89:5d:5a:e8:a2:00:79:d7:ff:67:88:50:20:
20:2d:df:6d:c2:58:41:16:22:eb:84:c6:7b:2f:64:
21:28:b9:b3:85:ba:8e:c8:5f:bd:fe:bd:a2:49:a6:
76:0f:b8:67:53:98:49:fc:8a:40:57:f5:b1:04:3a:
6a:cd:cf:65:18:b5:18:60:77:f3:fd:9b:5a:27:1a:
df:31:b6:a9:91:15:2e:be:34:5c:cf:96:03:bd:09:
f5:fd:6c:8c:7c:b8:a1:2d:19:5a:9f:c3:f2:38:41:
46:b8:4d:d0:9b:21:23:11:12:87:81:21:7c:2c:39:
da:73:98:83:b1:e9:01:8d:78:9e:d8:0d:6b:16:92:
e0:f2:69:1b:46:d9:7f:09:05:6b:8b:df:87:10:20:
94:8d:e4:ae:84:fb:c8:6d:89:75:b9:18:90:f5:49:
8e:1f:e3:9b:1a:6c:e2:4f:66:e2:2a:30:81:62:f7:
2e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:62:95:47:7F:2D:90:D3:D3:31:A1:68:C0:01:E3:25:53:F8:BD:EC
X509v3 Authority Key Identifier:
keyid:49:BA:E6:7D:FE:DE:9D:95:09:BB:03:A7:C7:32:DC:56:61:66:B7:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/Sbrmff7enZUJuwOnxzLcVmFmt1o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sbrmff7enZUJuwOnxzLcVmFmt1o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B0C44/DEB69BA6BF7811EE86CB6CB7775412E6/96446AE6C04111EE9477E2A2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.149.125.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:e5:03:f4:c9:9a:77:c5:d2:a5:d0:87:5b:33:a6:f6:7b:4e:
a3:9d:2e:86:f2:55:34:84:94:43:ae:4a:5f:d6:a0:17:e3:0d:
26:56:81:d7:4d:70:2f:c3:a0:fe:d0:97:b4:ea:00:72:8d:2a:
58:30:ff:c8:e8:f8:20:36:37:65:0a:36:0a:4d:16:42:a4:f6:
79:22:5b:39:28:46:a3:2f:7c:e1:5b:e2:76:08:8a:25:b1:fa:
07:44:f6:c2:0f:5f:e3:ac:87:e3:bb:18:09:4d:7b:11:89:95:
a3:b9:18:1b:c8:aa:3a:f2:81:6d:50:64:7f:a8:08:f9:23:02:
9b:48:fd:a0:a0:92:bc:bd:0a:69:f4:8e:8d:d5:1f:b3:08:a9:
89:71:39:7f:4d:1c:e1:30:3c:fd:02:71:f7:f6:b3:df:7d:5e:
eb:4c:42:8b:e7:e2:9d:e8:af:ec:3e:37:fd:c3:bb:9d:51:6d:
0a:d7:3b:e2:70:13:59:05:fb:14:e3:7e:8f:aa:78:5d:79:19:
6d:47:f8:43:9a:62:dc:09:6c:8b:0c:42:a5:0f:47:a1:e4:e7:
fb:dc:d9:85:ac:8b:18:b1:b2:66:01:b7:87:3a:2e:21:f4:01:
e0:41:4c:74:71:ed:5f:0e:8a:ac:8e:ff:84:b3:c3:43:d0:91:
67:da:4b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org