Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/CB965B0C193B11EFBA223A03017001B1.roa
File: CB965B0C193B11EFBA223A03017001B1.roa (raw, json)
Hash identifier: sMbPGMNRNs/HWlVnJHU38gLkDR93KstBJHkGXN3mkos=
Subject key identifier: A2:6E:6A:CF:7A:EB:AD:05:24:41:80:BB:C5:13:F2:9A:13:3C:AF:D4
Certificate issuer: /CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Certificate serial: 076C
Authority key identifier: 98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/CB965B0C193B11EFBA223A03017001B1.roa
Signing time: Thu 23 May 2024 19:36:48 +0000
ROA not before: Thu 23 May 2024 19:36:45 +0000
ROA not after: Sun 31 Dec 2034 19:36:45 +0000
asID: 36982
IP address blocks: 196.24.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.mft
rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1900 (0x76c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9F4BAF/serialNumber=9821C87221D270B42FF9DD826048B992C0E0E3F8
Validity
Not Before: May 23 19:36:45 2024 GMT
Not After : Dec 31 19:36:45 2034 GMT
Subject: CN=664f9ad0-bd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:b0:ab:48:8b:48:28:fd:bd:07:7c:f2:20:
e7:86:6a:83:de:db:44:90:0e:d1:4b:12:8f:5d:a2:
26:e1:57:e1:ad:95:19:25:35:e6:71:94:26:d7:e8:
9c:0e:cb:9a:c2:e8:05:16:cd:3a:89:4d:5a:e4:80:
be:c4:b0:da:59:3f:e3:99:64:f1:3f:ed:be:2a:8e:
33:a9:c1:df:77:a4:06:2a:17:31:28:0f:96:f8:f5:
ce:71:2f:88:93:4c:e7:f1:7a:7b:36:c8:11:96:77:
ce:0f:b5:5f:a8:cf:46:e3:ea:7d:89:bc:51:99:d3:
2c:ce:d7:5f:6d:aa:7f:af:16:8d:f2:88:ba:62:fe:
50:6b:e4:73:86:33:99:a1:50:1a:2e:57:95:92:7f:
0a:19:27:34:98:bf:27:31:1e:d9:d2:db:48:17:26:
72:ca:64:97:aa:6c:20:48:8c:5c:68:66:96:d7:db:
39:0f:ec:28:85:6d:0d:e7:02:83:dd:2b:3a:08:2c:
eb:22:85:76:55:76:03:de:f1:a2:eb:3a:1b:b6:89:
a3:42:5e:14:95:32:79:71:30:a8:0b:f6:56:af:e5:
9d:79:6f:cc:b5:40:6c:ec:91:7d:c3:fe:c6:5a:7c:
4d:0c:bd:6c:01:ae:3f:44:27:8a:5a:04:3e:6b:ab:
c8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6E:6A:CF:7A:EB:AD:05:24:41:80:BB:C5:13:F2:9A:13:3C:AF:D4
X509v3 Authority Key Identifier:
keyid:98:21:C8:72:21:D2:70:B4:2F:F9:DD:82:60:48:B9:92:C0:E0:E3:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/mCHIciHScLQv-d2CYEi5ksDg4_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mCHIciHScLQv-d2CYEi5ksDg4_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9F4B/61A2E1A28DE011E9AC14F632F8AEA228/CB965B0C193B11EFBA223A03017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.24.40.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:18:3d:f7:29:99:0e:df:fc:a0:3d:80:e0:5a:51:55:44:c2:
6c:d3:3c:97:65:e1:f9:b8:30:22:ed:8c:fc:8d:78:c1:2e:4f:
ac:ef:e4:20:97:1c:7b:02:67:87:af:be:66:23:fa:83:22:8d:
c2:43:a8:00:ac:77:98:42:a0:d9:8e:86:88:1d:52:e7:3c:d5:
6c:62:05:6c:3b:21:65:62:f4:16:1f:e9:bd:04:e7:c1:63:e5:
83:28:b9:ff:74:6d:88:29:31:59:a7:a4:0b:20:88:34:ab:a0:
ad:e5:42:9f:58:3b:7c:fe:9d:dd:47:82:19:7f:5d:cc:71:f3:
c0:e8:c7:dc:6a:de:2a:5b:a7:84:45:13:df:50:13:27:43:05:
f7:88:7a:56:68:ef:ea:27:86:74:13:8b:00:25:ab:3d:a3:8b:
75:dc:ca:fd:ee:20:fb:2c:75:59:82:1d:ee:f0:34:16:a8:0b:
29:8b:9d:a5:d0:a1:36:56:01:33:b7:56:af:a2:a5:0e:3d:af:
84:8e:ad:69:ac:b0:e6:07:be:4b:4a:fc:38:18:1e:f3:d4:a0:
0c:b2:5e:3b:85:29:90:88:e3:05:64:7b:bf:10:16:9a:9a:b8:
e8:dc:26:b7:b9:a7:9a:81:be:69:89:7f:5c:a6:60:d2:70:e3:
25:80:72:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org