Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/5F5C762E343B11ED8107BC8DF1222468.roa
File: 5F5C762E343B11ED8107BC8DF1222468.roa (raw, json)
Hash identifier: UY9fesmRjhCAtSt7ylIqZRb84VTjMeAJ6kuCyASadn4=
Subject key identifier: 88:4C:FD:DD:4F:E3:99:3F:51:97:C4:37:B4:DF:B0:FA:87:04:FF:D7
Certificate issuer: /CN=F36B4943AF/serialNumber=3876135BFCA9AAF0B00B42D87651846E70AC4785
Certificate serial: 02
Authority key identifier: 38:76:13:5B:FC:A9:AA:F0:B0:0B:42:D8:76:51:84:6E:70:AC:47:85
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OHYTW_ypqvCwC0LYdlGEbnCsR4U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/5F5C762E343B11ED8107BC8DF1222468.roa
Signing time: Wed 14 Sep 2022 14:41:53 +0000
ROA not before: Wed 14 Sep 2022 14:41:49 +0000
ROA not after: Tue 14 Sep 2032 14:41:49 +0000
asID: 327950
IP address blocks: 196.223.224.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/OHYTW_ypqvCwC0LYdlGEbnCsR4U.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/OHYTW_ypqvCwC0LYdlGEbnCsR4U.mft
rsync://rpki.afrinic.net/repository/afrinic/OHYTW_ypqvCwC0LYdlGEbnCsR4U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B4943AF/serialNumber=3876135BFCA9AAF0B00B42D87651846E70AC4785
Validity
Not Before: Sep 14 14:41:49 2022 GMT
Not After : Sep 14 14:41:49 2032 GMT
Subject: CN=6321e831-b5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:33:26:84:05:58:11:7f:c3:fa:4b:a4:66:9b:
54:ad:57:57:78:a0:35:a5:88:5c:74:f7:dd:f0:55:
23:c1:e5:dc:60:6f:6e:49:31:61:c7:30:a3:e5:54:
07:61:39:74:aa:b4:11:86:b5:e2:a8:73:6b:2d:5e:
01:e5:a3:16:e0:ab:29:cb:a2:68:91:b2:1e:7c:f5:
95:a0:4e:ff:27:a3:12:e4:31:41:a2:d6:7f:f4:b7:
2e:2f:80:d6:1a:71:30:75:29:fb:a3:75:bb:6e:ce:
36:89:b8:cc:8f:c9:88:93:c4:db:b9:79:a0:e9:26:
d4:0f:db:b4:f6:78:5e:39:01:11:f6:21:53:97:56:
4a:35:90:f2:33:1c:04:d4:24:ff:0a:89:cf:da:2d:
b5:cf:5f:19:b3:5a:5a:78:93:36:fc:7a:e4:0e:1a:
5d:76:d3:fe:93:ff:7b:60:4f:d0:17:ca:88:a7:6d:
7d:d8:b1:b6:06:e5:6e:e2:46:15:82:a4:ef:b9:be:
88:58:36:f2:cc:d9:aa:45:59:e2:c3:d1:61:f5:1e:
9d:4c:a4:92:e6:2b:89:94:62:92:87:db:ef:8f:1a:
e9:5a:f3:6b:12:d6:d6:2f:4a:17:9b:af:74:8a:4c:
7e:51:ce:90:9a:13:a2:dd:98:18:c6:bc:a6:97:56:
eb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4C:FD:DD:4F:E3:99:3F:51:97:C4:37:B4:DF:B0:FA:87:04:FF:D7
X509v3 Authority Key Identifier:
keyid:38:76:13:5B:FC:A9:AA:F0:B0:0B:42:D8:76:51:84:6E:70:AC:47:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/OHYTW_ypqvCwC0LYdlGEbnCsR4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OHYTW_ypqvCwC0LYdlGEbnCsR4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4943/0196FAB6343911EDA3B58C87F1222468/5F5C762E343B11ED8107BC8DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.223.224.0/21
Signature Algorithm: sha256WithRSAEncryption
96:35:22:70:0f:e2:58:e3:86:60:a2:94:53:fa:49:d4:7e:69:
ce:74:52:8e:b3:b7:d1:fe:61:3e:f7:e7:14:f2:5c:5a:c8:87:
1a:33:79:fd:ed:c5:8a:5a:62:03:21:64:42:ca:d6:24:ef:d7:
6d:8d:77:05:90:c8:c0:db:8a:46:d3:68:3e:99:bd:b8:d9:71:
db:14:de:cb:28:a4:1d:3a:5e:32:78:cd:97:32:c3:9b:0f:2e:
a8:9d:99:df:8a:5f:3d:bb:14:1f:96:4e:4b:af:5d:41:77:82:
08:9d:23:e8:f3:ab:6f:b1:ed:e8:65:f1:2c:80:61:7b:3f:45:
cd:f6:86:21:c3:6b:ec:32:fa:89:03:e9:b6:8b:ef:e7:97:55:
10:63:87:ab:4a:06:82:1a:a0:0b:dd:de:d5:ab:2d:cb:25:ca:
ba:85:33:f2:3a:ae:49:01:42:5e:5e:47:ff:e2:0a:73:95:a3:
d7:7d:ed:ec:88:a4:ff:b0:d9:ab:c8:25:2a:1b:94:2a:1d:be:
2b:1b:a2:99:54:fb:74:ac:a3:e2:4b:54:69:be:f2:e9:12:10:
95:92:ab:fe:4a:d1:ec:bb:47:89:94:cf:7b:ae:83:2d:f5:eb:
3f:bc:77:0b:8c:f3:59:e3:c0:a7:22:0d:e7:61:6f:70:c2:b1:
b0:33:de:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org