Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/74AB9A52C99D11EE966AB969775412E6.roa
File: 74AB9A52C99D11EE966AB969775412E6.roa (raw, json)
Hash identifier: L6zdyCVDaIVgr+0hckVAHvQQy0uRUVNQxJCmvoAc0+g=
Subject key identifier: 12:7E:E1:C3:7A:4F:5C:D3:11:73:15:A5:2B:E6:F3:72:FA:BF:85:12
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 0589
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/74AB9A52C99D11EE966AB969775412E6.roa
Signing time: Mon 12 Feb 2024 11:54:20 +0000
ROA not before: Mon 12 Feb 2024 11:54:17 +0000
ROA not after: Wed 12 Feb 2048 11:54:17 +0000
asID: 37098
IP address blocks: 154.66.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1417 (0x589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:54:17 2024 GMT
Not After : Feb 12 11:54:17 2048 GMT
Subject: CN=65ca06ec-c1fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:17:9a:45:73:68:dc:bf:06:8c:74:69:6f:08:
4e:1e:e6:b3:ea:11:a2:39:c7:59:e3:0d:cb:fb:41:
59:92:ed:1d:0c:62:49:fe:2d:65:d5:66:08:18:cd:
16:0c:f2:b8:3b:13:ec:c0:3a:64:46:12:db:ac:17:
b1:e7:fc:f4:dd:df:ce:cc:bb:cf:6e:1b:b4:68:f1:
23:9f:df:b2:e8:5d:a0:6e:37:69:21:51:13:14:6a:
50:be:71:79:36:af:d8:79:61:44:f7:f8:21:0a:3d:
dc:e6:b6:f8:9c:2e:1c:e5:da:91:1e:e5:42:50:fd:
26:80:3c:9a:9f:56:c4:8d:ea:0a:e0:b0:2e:ef:7b:
e9:97:25:ad:f5:86:e5:f2:89:c8:71:70:06:66:1b:
ea:ad:a8:55:90:f7:4e:c1:07:f0:25:da:8b:dd:0f:
df:e4:d2:2f:0a:09:d6:a9:8d:a9:52:f7:f4:3d:e8:
7b:37:0f:ad:2c:41:ab:09:57:eb:dc:6a:06:15:c7:
39:1e:5b:91:df:6a:4e:69:7b:df:04:77:62:06:11:
23:03:8b:fa:ea:81:f3:9b:db:41:a8:67:78:11:3c:
33:a4:bf:c3:66:ac:a1:cc:92:96:55:57:f6:32:73:
43:83:4b:0d:10:2b:2f:03:73:fd:e5:d7:d8:40:4f:
75:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7E:E1:C3:7A:4F:5C:D3:11:73:15:A5:2B:E6:F3:72:FA:BF:85:12
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/74AB9A52C99D11EE966AB969775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.122.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ec:6b:8d:8e:66:12:c4:48:ca:ba:21:5c:eb:77:d6:a3:0e:
2c:4b:d9:68:b1:e4:9a:4a:67:be:b8:22:ec:95:64:c2:cb:59:
a9:30:99:3c:5d:ae:73:45:b9:9a:e5:02:56:af:c4:fa:39:69:
0b:fd:13:4c:f4:1c:b2:e1:16:b8:70:89:2d:b2:65:8e:60:b9:
c6:19:e5:e2:a9:8f:d0:d5:7d:69:d1:82:80:9d:e9:bb:9b:a6:
ae:e4:39:d9:5f:0f:ed:b1:21:64:87:cb:19:41:36:e3:6c:c2:
2e:1c:9e:f5:f2:98:a4:d6:5e:6a:66:a6:b8:97:ad:65:7b:fe:
b2:b7:8e:bb:e7:42:3a:f3:62:21:b5:66:24:cf:ec:fc:99:0d:
24:1f:b3:b4:63:5c:48:37:e9:7e:bb:ed:b0:72:ac:2b:fe:c5:
c8:8a:db:d0:60:b3:ad:3f:dc:44:e4:f7:38:a4:1a:ed:8d:a0:
e2:49:38:86:f5:45:c9:8a:a5:74:18:0c:46:d8:dd:ec:e7:f6:
05:ae:2d:a3:53:a9:34:d3:17:6c:d0:a8:4c:06:23:23:e8:35:
23:c3:c9:34:d6:cb:20:14:96:76:3e:cd:39:b2:7b:f7:f8:9b:
8a:b4:e7:02:18:f7:be:0d:df:b8:32:19:5c:7f:2e:c5:c9:3b:
09:0b:f7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org