Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/901028E68B9211EF827732B9762E951A.roa
File: 901028E68B9211EF827732B9762E951A.roa (raw, json)
Hash identifier: gPIJu2/cPDtYI3hibOl12MUGNT8pAYS8BpbaLA7BUYY=
Subject key identifier: BB:2A:6B:A3:D7:EB:DF:F9:1F:DC:4A:7E:A9:A4:6E:79:32:1B:2B:7C
Certificate issuer: /CN=F36B1D7CAF/serialNumber=0A748532E881D6C9E79DCF24D2B855B74217BB27
Certificate serial: 015A
Authority key identifier: 0A:74:85:32:E8:81:D6:C9:E7:9D:CF:24:D2:B8:55:B7:42:17:BB:27
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CnSFMuiB1snnnc8k0rhVt0IXuyc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/901028E68B9211EF827732B9762E951A.roa
Signing time: Wed 16 Oct 2024 07:45:07 +0000
ROA not before: Wed 16 Oct 2024 07:45:04 +0000
ROA not after: Mon 16 Oct 2034 07:45:04 +0000
asID: 328788
IP address blocks: 196.200.0.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/CnSFMuiB1snnnc8k0rhVt0IXuyc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/CnSFMuiB1snnnc8k0rhVt0IXuyc.mft
rsync://rpki.afrinic.net/repository/afrinic/CnSFMuiB1snnnc8k0rhVt0IXuyc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346 (0x15a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B1D7CAF/serialNumber=0A748532E881D6C9E79DCF24D2B855B74217BB27
Validity
Not Before: Oct 16 07:45:04 2024 GMT
Not After : Oct 16 07:45:04 2034 GMT
Subject: CN=670f6f03-20d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:df:d6:09:89:fe:84:3c:b5:d9:f9:88:41:78:
b1:7e:fd:1e:60:da:cb:f2:2b:f7:2e:09:e6:e6:a5:
9b:db:31:be:40:d3:11:a9:aa:82:fb:ce:0e:c1:3c:
cc:4e:9b:44:f0:bb:ac:2c:9d:a9:c9:6d:68:fe:29:
f2:46:22:1d:07:fc:e6:50:79:e4:6c:1d:fd:2e:67:
f3:4c:6c:9b:4b:8a:3f:b6:be:e0:d2:5f:58:47:4c:
9e:cd:1e:86:21:d3:21:31:37:3e:fa:cc:0b:62:33:
43:18:66:ff:b8:95:ec:e3:1e:ea:b0:f2:59:e1:11:
f6:ad:ad:75:16:ba:24:14:94:c1:c5:9e:9e:f1:4f:
5d:53:7e:e2:e8:95:b5:96:f0:50:ea:0c:d7:bf:b0:
cd:81:8d:23:e6:6a:7b:7f:2a:5d:d6:1d:7d:9a:2b:
bf:47:11:e3:e9:23:62:f6:25:78:f0:b1:3e:0f:9e:
e6:a5:8b:81:fc:c3:01:06:28:2d:3c:8f:8f:a9:72:
01:62:fe:05:08:9c:3b:5d:cb:0d:d8:2e:d6:f4:12:
bc:5b:4b:07:a7:20:0d:ff:23:4a:7b:59:db:09:bf:
f6:d5:a2:38:e0:a2:c2:1b:6d:0c:08:8a:ae:89:d2:
0d:0b:8d:67:3b:56:99:3f:9a:0e:83:3f:f0:d8:67:
19:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2A:6B:A3:D7:EB:DF:F9:1F:DC:4A:7E:A9:A4:6E:79:32:1B:2B:7C
X509v3 Authority Key Identifier:
keyid:0A:74:85:32:E8:81:D6:C9:E7:9D:CF:24:D2:B8:55:B7:42:17:BB:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/CnSFMuiB1snnnc8k0rhVt0IXuyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CnSFMuiB1snnnc8k0rhVt0IXuyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B1D7C/ED1B1958886C11EE9B69322E4AD9E6FC/901028E68B9211EF827732B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.0.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:9d:4d:91:c2:02:96:37:b5:f2:b5:b3:8d:ea:f7:84:bf:89:
38:f7:12:36:d9:38:60:85:86:9d:11:6d:cb:31:9e:6d:cd:64:
bd:ba:92:19:ea:a4:d8:b5:54:55:db:93:58:5e:5f:c7:59:f0:
09:51:15:81:2a:18:95:ee:66:89:ee:0e:d6:c7:94:5a:18:95:
62:59:98:4d:d1:d4:26:46:ec:7f:fe:49:b2:18:31:43:c4:10:
b3:46:5e:1f:53:aa:03:4a:35:72:a3:fb:83:42:9a:44:b2:72:
b7:c3:e7:f3:de:71:f2:ef:4a:26:63:40:59:94:70:37:75:31:
1b:2a:18:73:ee:87:af:4f:3d:f8:dc:28:c5:c6:ab:b2:d9:f8:
43:1c:b3:f3:e4:52:45:b1:c3:cc:4c:dc:0f:63:63:ff:8e:91:
c8:47:9e:48:38:13:fd:22:21:20:e0:b3:fc:a4:ec:ea:4b:ae:
be:1f:93:02:5d:44:0b:22:d5:d7:d3:20:70:e0:2e:f8:1d:37:
3c:0e:ca:51:c0:7f:bb:28:2e:a2:93:ec:17:99:79:61:0b:6f:
d5:df:23:d2:51:81:43:93:81:11:92:aa:c7:c5:5a:3b:0f:8d:
ed:08:12:93:96:48:57:44:84:eb:0c:24:6a:32:cd:3a:aa:ed:
36:d2:eb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org