Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/75F8ADB6193C11EF939DBA08017001B1.roa
File: 75F8ADB6193C11EF939DBA08017001B1.roa (raw, json)
Hash identifier: 2AwJdyG/BsOF6Nkf1Pa3H+rtG00IJDTE6LVwear3MT0=
Subject key identifier: E7:A8:F1:14:0E:3E:30:E2:97:DB:6A:BD:37:E3:79:E6:6B:2C:DD:E3
Certificate issuer: /CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Certificate serial: 0774
Authority key identifier: 98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/75F8ADB6193C11EF939DBA08017001B1.roa
Signing time: Thu 23 May 2024 19:41:34 +0000
ROA not before: Thu 23 May 2024 19:41:31 +0000
ROA not after: Sun 31 Dec 2034 19:41:31 +0000
asID: 37501
IP address blocks: 196.21.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.mft
rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Validity
Not Before: May 23 19:41:31 2024 GMT
Not After : Dec 31 19:41:31 2034 GMT
Subject: CN=664f9bee-f041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c8:3b:12:e8:74:a1:b8:c3:b7:9e:f3:23:0a:
42:5d:af:30:d0:a2:fd:dc:5e:54:ec:a7:94:48:6a:
e6:be:07:21:af:77:18:44:79:f6:43:38:b9:14:5b:
36:8b:a7:3d:00:52:c7:99:67:a7:08:a9:a7:b2:e5:
84:37:eb:e9:fa:ac:1d:b5:14:73:b6:28:e8:b5:b6:
a0:f0:8d:51:83:c8:e1:63:05:61:10:30:ce:82:a6:
0d:8e:58:0c:99:73:98:71:a6:d6:f9:9e:bb:eb:ec:
f5:a9:10:6c:fd:79:bc:d7:da:6e:aa:c9:73:b3:f6:
c7:05:2d:fa:d9:15:e9:8d:13:38:18:3e:13:a4:7f:
25:5a:a1:6b:a4:01:52:c8:af:3b:c5:92:fa:ec:32:
41:0d:63:34:28:bb:fc:2e:99:42:fc:09:06:1c:63:
82:41:f7:a8:bb:1e:c4:8a:84:94:c1:31:81:0f:cf:
b0:40:d2:be:c9:2e:c8:c9:9b:b9:ab:fd:5d:f2:4e:
ca:74:ff:af:09:f3:48:6c:4c:55:41:ac:94:61:90:
1e:bb:be:41:59:af:fd:84:dc:0e:72:94:1d:85:cb:
b3:ff:c7:6b:0c:13:85:bd:91:fc:bf:2e:ab:e5:a0:
c7:2c:db:94:e7:a0:2b:86:d9:43:15:0f:7a:90:b0:
02:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A8:F1:14:0E:3E:30:E2:97:DB:6A:BD:37:E3:79:E6:6B:2C:DD:E3
X509v3 Authority Key Identifier:
keyid:98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/75F8ADB6193C11EF939DBA08017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.21.158.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:40:96:26:31:92:d3:06:b7:eb:c1:1f:71:34:47:93:0c:f0:
9b:40:0f:17:a7:01:22:cc:71:6b:cb:7b:ac:31:d0:5b:c3:7b:
33:34:55:8c:97:bf:b8:1a:b5:61:4f:04:1a:bd:d0:aa:c2:67:
97:ac:4c:cf:b5:87:e9:19:59:87:78:8d:b8:60:15:1c:8e:ef:
60:b5:3a:0b:57:75:d6:bc:c6:06:b6:01:83:e9:e6:e9:aa:38:
1e:7d:c0:ff:3a:cb:39:48:54:9e:6f:ce:e2:a7:e7:eb:82:a6:
ed:75:65:fb:b5:c6:96:69:89:d0:54:1f:fd:a3:2a:91:83:58:
13:26:05:3c:48:50:47:f0:c1:d9:e8:1b:e1:9e:59:10:71:2a:
a5:ee:71:f0:ff:b4:54:ee:21:d7:6e:a6:4e:c6:1f:12:25:ad:
50:02:2d:b0:ff:14:c3:3d:85:34:a0:1d:37:36:85:9a:94:46:
64:f7:07:19:7b:d1:33:4b:b2:e8:b5:c3:b4:10:41:df:4f:f5:
bf:ac:e4:55:e9:fe:33:d9:ea:ec:07:7c:89:64:75:ab:d9:ef:
4d:c6:b9:85:e1:38:a4:e2:d9:89:b4:38:91:15:2f:e1:c4:37:
ff:e7:d5:da:2e:a2:29:78:0c:42:41:a6:f4:d1:4a:81:b2:24:
c5:86:6f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org