Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/3BA2665EC99E11EE86A1DB6A775412E6.roa
File: 3BA2665EC99E11EE86A1DB6A775412E6.roa (raw, json)
Hash identifier: rvuBIHZ0MsQsAnNFjdP7+k2TSvK7jCLmLslBiuksEqI=
Subject key identifier: 0D:6F:94:ED:BF:23:1E:D4:35:EE:BB:9C:97:B9:2C:10:8D:3F:A5:37
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 0593
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/3BA2665EC99E11EE86A1DB6A775412E6.roa
Signing time: Mon 12 Feb 2024 11:59:54 +0000
ROA not before: Mon 12 Feb 2024 11:59:50 +0000
ROA not after: Wed 12 Feb 2048 11:59:50 +0000
asID: 37098
IP address blocks: 154.66.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1427 (0x593)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:59:50 2024 GMT
Not After : Feb 12 11:59:50 2048 GMT
Subject: CN=65ca083a-8337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7b:64:ae:2f:f4:6a:8b:f2:b2:a8:8f:ba:b6:
dd:45:8b:35:9d:fc:e6:f2:46:d2:42:fe:f8:97:57:
10:cb:39:45:48:ea:3b:6e:19:5e:a1:a1:7e:29:5b:
67:83:9e:d9:7f:00:f0:ae:71:b4:01:c4:59:7d:76:
ac:26:3f:1e:d7:35:e7:d4:ad:88:c5:7d:54:4e:1a:
0a:ed:57:0f:f1:11:14:4f:8a:20:68:75:01:e0:81:
3c:08:69:94:36:7c:d1:78:8d:51:e4:70:cf:34:84:
f8:d4:38:0a:3b:08:6d:ae:cf:cb:c8:e4:74:0a:ef:
0f:51:ac:de:b6:95:9f:84:96:75:0e:8b:37:29:2f:
39:4a:7f:bb:40:d0:03:52:e6:21:98:db:6e:70:c7:
e7:1d:7d:d7:39:ac:c7:f7:a5:f2:2c:7e:a5:bb:bd:
71:52:84:99:8c:44:39:08:a9:86:19:c7:11:68:ab:
6b:1f:9b:a0:70:9c:04:11:d8:cb:3a:bb:1a:c6:ce:
2c:8c:df:11:0b:7b:b1:75:e7:28:73:88:b7:9c:e4:
77:fa:82:3c:9f:76:52:2d:98:2f:f4:9f:36:47:a5:
a1:72:08:2c:3a:bb:5c:47:0d:7f:18:37:6c:6b:96:
74:d7:d2:ea:f3:58:ee:64:d7:87:c4:3a:46:02:65:
03:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6F:94:ED:BF:23:1E:D4:35:EE:BB:9C:97:B9:2C:10:8D:3F:A5:37
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/3BA2665EC99E11EE86A1DB6A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.127.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3d:2f:af:96:d0:2e:6c:66:80:02:50:d9:7d:64:d5:5f:b9:
2c:60:22:2d:a6:83:89:ed:59:33:e6:21:c4:44:62:d7:bc:71:
a0:de:ff:f8:78:b4:72:05:91:ed:ab:58:aa:65:59:62:d2:5a:
8c:02:4f:ca:53:b6:55:9e:8c:cc:76:a9:9c:45:a8:e8:9e:e4:
75:d3:b4:c1:d5:04:6a:3c:21:84:a0:fc:df:c6:7f:f2:62:3e:
99:7a:22:33:f3:b0:05:ad:4c:6a:83:3b:6d:db:29:38:34:4e:
24:32:1f:2a:35:bd:14:73:b3:f8:bc:6e:3b:fa:c1:f3:97:65:
3d:ee:7e:3e:0a:4c:03:58:44:70:63:c1:a2:77:ff:be:b9:64:
70:7c:75:35:5a:8d:0a:56:f1:59:d4:c9:68:4c:4d:35:bb:bb:
51:be:81:68:e0:91:1d:93:dd:0b:dc:05:76:8c:82:d4:07:6a:
17:e0:19:6a:e8:14:7b:56:6a:dd:17:3c:56:95:c0:c7:02:55:
6e:47:0c:01:29:13:19:74:ea:bc:57:bc:7a:6f:7d:e6:12:21:
43:24:5e:19:3f:1c:c2:e8:a8:92:6a:ce:96:41:59:b1:16:52:
5a:4e:ac:5a:e3:39:67:51:c7:62:8e:9b:1a:f3:9c:62:39:62:
c2:94:c5:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org