Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/6B867142864C11EF92D39262762E951A.roa
File: 6B867142864C11EF92D39262762E951A.roa (raw, json)
Hash identifier: q/5PVa0Y5jiVYanPXInC3+mN2koWYpdxJKq6XS413jQ=
Subject key identifier: 51:6A:59:5B:49:15:21:D7:32:7C:69:36:F3:3A:23:B8:A5:84:0F:A2
Certificate issuer: /CN=F36B52A6RI/serialNumber=542881B293D6E2E2A1F21952C8BC032126EEBBC9
Certificate serial: 07F1
Authority key identifier: 54:28:81:B2:93:D6:E2:E2:A1:F2:19:52:C8:BC:03:21:26:EE:BB:C9
Authority info access: rsync://rpki.afrinic.net/repository/ripe/VCiBspPW4uKh8hlSyLwDISbuu8k.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/6B867142864C11EF92D39262762E951A.roa
Signing time: Wed 09 Oct 2024 14:40:25 +0000
ROA not before: Wed 09 Oct 2024 14:40:20 +0000
ROA not after: Mon 30 Oct 2034 14:40:20 +0000
asID: 8346
IP address blocks: 213.154.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/VCiBspPW4uKh8hlSyLwDISbuu8k.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/VCiBspPW4uKh8hlSyLwDISbuu8k.mft
rsync://rpki.afrinic.net/repository/ripe/VCiBspPW4uKh8hlSyLwDISbuu8k.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2033 (0x7f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B52A6RI/serialNumber=542881B293D6E2E2A1F21952C8BC032126EEBBC9
Validity
Not Before: Oct 9 14:40:20 2024 GMT
Not After : Oct 30 14:40:20 2034 GMT
Subject: CN=670695d9-0b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:a4:19:bb:b3:6f:a1:9a:3e:cd:da:f0:f0:
93:76:ef:ef:2b:a6:36:4c:55:0a:f6:b2:20:d0:fe:
74:a3:5e:6a:d7:b1:2e:f4:15:3b:62:b2:74:43:f8:
bd:f4:79:79:97:ff:94:6c:c1:a9:b9:a0:4d:aa:18:
fd:8b:e4:05:49:89:ea:c3:ba:62:ea:c4:a8:ee:7a:
99:f1:7e:b1:2a:1f:c8:a9:4e:8b:2a:0d:e6:31:3d:
d1:9d:d5:7b:a4:db:82:10:11:37:26:e4:12:f7:ad:
42:f7:3b:71:76:23:56:4c:72:ea:c2:f8:7a:76:1b:
3e:1a:bb:36:70:4c:86:27:1e:c4:84:a0:4b:91:94:
63:4f:1d:78:b3:db:48:6a:62:70:e6:ec:cf:17:08:
4c:ef:d0:3f:03:2d:b6:2b:47:2a:40:a1:b9:8a:7c:
45:13:74:95:a7:5e:6c:eb:74:e1:be:1c:4e:8e:b6:
ba:e3:89:99:27:e7:2a:74:3e:c9:58:c4:9c:09:47:
4c:92:42:c1:e1:87:f3:13:54:cf:aa:a1:a7:21:38:
0b:7e:9a:c7:d3:d0:ad:cf:51:f8:b2:ab:3b:0d:e3:
b6:3f:2a:48:87:57:e9:53:07:f4:de:14:56:f2:c4:
a3:0f:5b:66:86:ac:d4:e0:86:39:57:35:81:a2:4d:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6A:59:5B:49:15:21:D7:32:7C:69:36:F3:3A:23:B8:A5:84:0F:A2
X509v3 Authority Key Identifier:
keyid:54:28:81:B2:93:D6:E2:E2:A1:F2:19:52:C8:BC:03:21:26:EE:BB:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/VCiBspPW4uKh8hlSyLwDISbuu8k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/VCiBspPW4uKh8hlSyLwDISbuu8k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/982543566FFD11E9ACC6EB34F8AEA228/6B867142864C11EF92D39262762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
213.154.64.0/19
Signature Algorithm: sha256WithRSAEncryption
33:96:53:b2:65:68:e4:f8:c8:95:1f:85:20:cc:4c:57:e5:e6:
8d:39:bc:65:ad:d6:c5:ec:5b:fe:9e:cc:38:b4:46:72:18:e5:
de:01:97:d7:1e:ef:7a:a9:ab:1a:91:87:02:13:c3:f4:3b:dc:
30:5d:49:33:75:66:ef:2d:be:82:39:39:b6:4e:d9:09:97:5a:
c4:05:8e:24:d7:dd:a9:eb:7d:94:75:5a:73:21:74:76:95:7b:
1e:3d:7e:e7:9a:06:f4:7c:f2:fb:d3:50:70:e3:0a:ad:7e:83:
8b:d4:d7:3d:fa:74:69:0d:7d:46:b3:1e:22:35:b2:33:d8:35:
d9:56:de:df:d9:bd:da:88:f2:e1:a1:8c:42:07:ad:56:19:df:
c1:e0:db:20:95:92:66:d5:12:25:ea:89:fd:89:d0:88:d2:ac:
c4:4b:f7:aa:db:93:36:dd:68:fd:aa:23:20:2c:0a:54:12:35:
fa:ca:7c:44:9f:3c:67:70:2c:21:2c:ba:fe:41:fd:0c:64:47:
f7:6e:f8:2d:2e:e2:d6:7f:34:00:35:dc:b2:9f:07:03:18:1b:
11:ec:5d:49:08:e9:60:22:4c:ca:e1:5c:a5:3d:26:d7:4f:b9:
b5:4c:f3:38:33:a8:73:26:8d:58:ac:7b:4c:73:91:3d:f5:6d:
cd:9c:b0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org