Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/8474E3C0193511EFBBDCF64F017001B1.roa
File: 8474E3C0193511EFBBDCF64F017001B1.roa (raw, json)
Hash identifier: lD46K/SWIIlyy7r0WqwsbOFMFHdgeEoplVoIisW1eKI=
Subject key identifier: 6E:21:24:85:D6:3E:42:2A:3D:38:2C:5A:21:AC:C5:61:00:98:4D:04
Certificate issuer: /CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Certificate serial: 0762
Authority key identifier: 98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/8474E3C0193511EFBBDCF64F017001B1.roa
Signing time: Thu 23 May 2024 18:51:52 +0000
ROA not before: Thu 23 May 2024 18:51:48 +0000
ROA not after: Sun 31 Dec 2034 18:51:48 +0000
asID: 37501
IP address blocks: 196.21.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.mft
rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1890 (0x762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Validity
Not Before: May 23 18:51:48 2024 GMT
Not After : Dec 31 18:51:48 2034 GMT
Subject: CN=664f9048-459e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d4:3d:d1:d6:5b:5d:19:78:c3:9a:1d:c8:91:
80:47:2b:fd:91:92:cc:32:f0:b7:eb:50:e8:90:24:
e5:c1:7d:72:c8:d5:d0:62:9a:fc:59:01:95:ed:ab:
fd:f8:6e:5d:88:bb:42:aa:2f:7e:96:ce:50:ab:1c:
14:2a:73:ba:fd:a8:e2:d7:cb:1d:47:78:ba:6b:39:
57:72:cc:bf:7c:b4:bd:0a:1a:ff:94:3d:a6:c8:9f:
54:c3:e2:aa:c7:4d:1d:be:03:46:c8:06:99:0b:ea:
78:c0:36:f9:b2:9e:8e:b0:20:72:b5:23:27:2e:91:
9e:bf:dc:88:79:a0:29:6e:74:2d:7f:29:e7:eb:64:
c3:29:92:db:1b:9b:1f:1b:b0:60:50:52:31:99:4f:
80:83:72:54:18:42:8d:ba:07:75:c2:93:18:9c:3c:
21:32:26:9f:c5:c6:02:d3:1b:2a:49:9a:f1:01:cb:
43:99:54:19:d2:be:2e:b4:59:ee:91:f4:6b:c5:a9:
44:52:d2:50:c1:e7:e6:21:35:2f:bd:68:47:eb:11:
46:16:39:6d:75:9f:fb:10:77:83:45:35:62:da:15:
88:e9:38:35:20:29:da:d7:28:4f:7e:e1:cb:cc:d0:
d0:82:54:e3:21:66:97:79:aa:47:bd:f1:27:4c:c3:
cd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:21:24:85:D6:3E:42:2A:3D:38:2C:5A:21:AC:C5:61:00:98:4D:04
X509v3 Authority Key Identifier:
keyid:98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/8474E3C0193511EFBBDCF64F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.21.159.0/24
Signature Algorithm: sha256WithRSAEncryption
49:92:77:e2:02:ca:1b:10:cc:94:7f:32:cf:64:35:cd:96:de:
9f:8c:7e:b7:bf:4c:1a:e7:08:eb:27:a0:11:9c:62:e2:29:ae:
ab:c8:02:3b:45:7e:f2:85:c1:c7:bb:ea:56:15:46:28:87:26:
69:97:52:f1:4b:98:ec:0f:86:c1:1d:87:d2:74:40:0c:1d:2f:
ea:86:70:02:30:7c:25:82:62:aa:7c:f6:7e:2f:af:1f:4b:36:
d6:29:0d:db:d1:3a:2a:86:0e:c8:90:a3:81:c0:80:1c:fd:2f:
61:5a:1d:93:7c:c1:a1:bf:58:30:18:ce:00:bb:10:91:45:c5:
cb:03:14:dd:0c:57:47:87:70:09:f9:b7:22:f0:84:9f:7a:3e:
2d:d8:e4:04:f5:f6:9e:f4:75:87:28:e9:53:0f:e1:1d:b3:4d:
0b:16:a3:53:9a:d1:34:af:c2:8d:29:76:53:db:01:a3:0f:9e:
77:fd:e7:fe:11:b7:6c:28:fd:e3:52:54:19:0e:25:5c:01:6d:
33:3e:a7:bf:d9:dc:82:a9:e6:fd:0e:cd:79:f5:a0:73:bc:4a:
96:aa:63:2f:8f:21:80:6d:4b:83:ea:3d:44:7b:bd:f6:22:1a:
50:fd:64:01:cc:62:2a:45:74:a7:6d:a8:84:64:4f:66:de:05:
86:f4:6b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org