Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/C0824C54F24311EEAC2A08C9775412E6.roa
File: C0824C54F24311EEAC2A08C9775412E6.roa (raw, json)
Hash identifier: HK1RgUmg7yyo7g5XCNEgpSTZhf4OHzEmzrKfYIY/qvg=
Subject key identifier: FD:97:4F:98:C5:D7:B0:81:3C:E4:99:C0:42:B2:7B:BF:1D:51:07:CF
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 05D2
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/C0824C54F24311EEAC2A08C9775412E6.roa
Signing time: Thu 04 Apr 2024 05:25:30 +0000
ROA not before: Thu 04 Apr 2024 05:25:27 +0000
ROA not after: Wed 12 Feb 2048 05:25:27 +0000
asID: 37098
IP address blocks: 154.66.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1490 (0x5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Apr 4 05:25:27 2024 GMT
Not After : Feb 12 05:25:27 2048 GMT
Subject: CN=660e39ca-36c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:94:e3:36:c5:fa:1a:33:ca:6e:b3:dd:ac:8b:
b2:42:5b:c2:fa:88:39:40:3d:de:db:24:0f:d5:c4:
dd:5d:dc:60:e6:4e:4a:96:32:91:76:81:73:84:62:
ea:7d:72:45:f4:c2:12:da:d6:2a:80:07:0b:a8:93:
e6:6c:4b:44:a7:39:43:43:22:bf:38:af:1a:ce:48:
6f:10:c0:b9:be:55:90:17:22:af:fe:53:80:06:bf:
4f:c5:76:4b:48:78:44:d5:27:ec:e1:11:2b:bc:e7:
84:66:14:58:cd:ef:87:d7:ae:11:b7:ca:1c:68:ca:
97:84:7f:cc:3e:1e:da:8f:20:07:7d:1b:51:94:c1:
ff:13:df:9c:fb:f7:f6:94:36:a5:ef:7c:86:b4:01:
c0:d8:47:eb:23:a3:d0:f4:9f:0c:a8:b7:02:30:97:
b9:c7:3c:15:bf:d7:a0:30:6b:9d:98:16:ab:5d:65:
a9:b7:68:3e:91:98:9b:ed:b8:45:16:3b:98:f3:b0:
57:fd:a8:ee:90:7c:7f:a6:a9:34:d3:e3:6d:f6:14:
ba:f3:52:67:06:29:a2:7d:9e:20:5f:a8:7f:bf:f9:
b0:13:69:7f:60:71:5d:5c:2c:58:8e:d7:59:43:64:
34:c5:0c:a7:4a:34:dc:8c:30:4e:e6:37:3d:69:06:
8c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:97:4F:98:C5:D7:B0:81:3C:E4:99:C0:42:B2:7B:BF:1D:51:07:CF
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/C0824C54F24311EEAC2A08C9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:6a:b6:1a:47:07:4d:3c:43:8d:cf:97:20:1a:5e:84:26:df:
4f:18:c8:fc:77:ea:98:a7:97:b2:30:fd:f3:0b:36:88:09:19:
c4:88:30:56:61:57:11:ad:9e:cb:b1:5e:07:bc:f5:e4:61:bb:
86:84:6e:3a:ba:7a:8e:94:91:c2:94:18:86:f9:07:73:ac:76:
3e:83:37:1b:5d:b5:e4:7b:f8:2c:13:a9:10:fc:31:96:33:c8:
38:3b:76:60:aa:96:7f:06:0a:5e:22:5b:09:af:3c:ec:c8:61:
96:71:2c:a4:27:ad:cd:d5:c0:f8:a7:59:15:9d:70:ce:ff:67:
ab:0e:6f:84:ab:ee:f4:c0:81:e6:ee:72:2d:a3:57:17:ae:6a:
c6:45:fd:57:de:8a:f5:9a:b6:0a:02:0d:17:a7:e9:ea:a1:74:
f1:f7:24:69:b7:bc:ce:50:e8:d0:58:29:ee:5b:95:59:f4:ee:
82:de:aa:2f:a5:ff:a8:bc:16:9b:78:81:fa:62:af:79:6d:d9:
5f:21:3e:c2:4a:e5:8e:8f:89:29:3c:67:0d:d9:6f:c3:16:69:
fc:ce:fb:d2:9a:f1:64:79:45:21:2b:26:61:96:99:52:21:dd:
d2:e9:5a:93:69:6a:cb:b2:09:ef:af:5d:71:70:71:29:6b:34:
97:ac:84:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:01:05 2024 by rpki-client on console-ams.rpki-client.org