Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/3EC80414193B11EFA814C401017001B1.roa
File: 3EC80414193B11EFA814C401017001B1.roa (raw, json)
Hash identifier: RwdDWn+rCeNIP2TaM9FNS+HHzJKG99nTcmVTo1KCVzY=
Subject key identifier: 7C:9D:26:0C:DA:A4:69:79:03:AD:3C:19:45:8D:F7:DE:8F:59:D0:A2
Certificate issuer: /CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Certificate serial: 0764
Authority key identifier: 98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/3EC80414193B11EFA814C401017001B1.roa
Signing time: Thu 23 May 2024 19:32:52 +0000
ROA not before: Thu 23 May 2024 19:32:48 +0000
ROA not after: Sun 31 Dec 2034 19:32:48 +0000
asID: 37501
IP address blocks: 196.21.180.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.mft
rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1892 (0x764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Validity
Not Before: May 23 19:32:48 2024 GMT
Not After : Dec 31 19:32:48 2034 GMT
Subject: CN=664f99e4-912b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:d9:fa:24:8d:90:f5:a2:a2:40:35:17:2c:
33:72:46:24:44:df:53:df:cf:92:55:8d:90:f7:be:
74:af:c5:e9:18:b9:59:dc:d7:75:75:bf:58:84:8e:
68:8f:72:1b:ab:ff:5f:4f:5b:58:04:56:27:2c:ec:
9c:e4:b7:f9:24:b1:ab:19:09:ad:ae:55:de:3b:bb:
dd:9f:35:2b:c4:1e:d3:6c:e3:14:98:e6:5b:ff:cd:
7c:9d:6f:75:b8:13:22:67:12:aa:6d:56:10:ce:01:
5b:46:a3:48:5e:39:78:01:11:80:02:2d:d0:b2:51:
7d:b3:b3:61:f7:61:d5:23:05:ca:cf:0e:cc:44:c8:
99:0d:d1:47:8e:60:ea:5d:4b:d9:db:d0:8b:09:cd:
0f:07:26:5b:4c:04:cf:51:ae:a9:3c:80:cf:f4:a4:
d8:15:30:bb:cd:ed:9c:49:ee:18:49:34:a1:a6:1b:
1a:f8:ff:9e:58:fa:88:1f:9e:ac:2c:a5:4a:7f:62:
8e:96:50:b4:c6:7d:47:59:64:fe:33:7d:eb:0a:31:
65:65:34:f8:d3:eb:e3:46:64:5e:23:ae:5f:3d:3c:
55:48:2f:70:d6:fd:d9:f5:02:8b:86:76:13:e0:4d:
d8:dd:42:cb:c1:76:65:67:13:e7:c8:dc:af:73:c7:
46:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9D:26:0C:DA:A4:69:79:03:AD:3C:19:45:8D:F7:DE:8F:59:D0:A2
X509v3 Authority Key Identifier:
keyid:98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/3EC80414193B11EFA814C401017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.21.180.0/23
Signature Algorithm: sha256WithRSAEncryption
58:a0:62:83:32:60:a9:97:33:f2:d0:c8:e1:7d:61:d8:ad:31:
ea:8c:0b:a6:27:1d:46:86:f2:16:2a:8a:65:b9:06:e5:d0:43:
8f:83:50:9b:74:a0:54:8b:50:83:a4:fd:d7:9d:67:ba:eb:66:
39:a6:67:b0:3d:23:29:d2:20:7c:63:94:a6:22:2c:d0:64:fa:
c7:f6:cf:43:9a:75:bc:8c:20:5d:1b:75:1c:39:6e:32:78:6c:
a2:a5:d5:4e:4a:c4:98:da:a4:e7:e9:4a:77:41:3b:0e:cc:b6:
c4:01:ef:e0:1c:c9:af:48:4d:bc:88:bb:b1:39:f3:05:e6:38:
25:47:58:ea:32:a8:26:98:44:0f:a8:f9:b0:eb:11:6e:b8:7f:
e6:e3:bd:d2:06:ee:b4:2e:24:ca:22:e5:28:6e:52:b7:6b:a3:
a2:e8:42:7b:24:86:01:3f:d9:b1:6a:cb:57:4d:d5:3d:17:86:
18:b1:a0:d6:24:2e:2c:6e:de:1f:a9:51:90:09:79:37:00:fe:
e9:33:66:b9:1d:21:32:98:38:ad:70:cb:93:15:c1:d7:3e:eb:
10:c6:1f:75:5e:87:06:fa:b7:70:fa:6a:ae:40:51:bd:bb:8b:
fc:0c:96:31:2f:07:92:19:51:f2:cc:db:63:0b:77:4f:36:3b:
0f:bf:f4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org