Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/924F80688A4E11EC8639028F5A40D577.roa
File: 924F80688A4E11EC8639028F5A40D577.roa (raw, json)
Hash identifier: tnumgrytmuyUCUVB2UaM2OC8r2VqINNEld+/gxdsqJk=
Subject key identifier: 07:45:42:35:69:FB:45:7A:0A:05:F9:FE:0C:E9:F9:5A:D1:BA:D6:2C
Certificate issuer: /CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Certificate serial: 02FB
Authority key identifier: AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/924F80688A4E11EC8639028F5A40D577.roa
Signing time: Thu 10 Feb 2022 08:51:01 +0000
ROA not before: Thu 10 Feb 2022 08:50:57 +0000
ROA not after: Tue 10 Feb 2032 08:50:57 +0000
asID: 327926
IP address blocks: 196.251.232.0/21 maxlen: 24
2c0f:e8e0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.mft
rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 28 Nov 2024 00:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 763 (0x2fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Validity
Not Before: Feb 10 08:50:57 2022 GMT
Not After : Feb 10 08:50:57 2032 GMT
Subject: CN=6204d1f5-b7ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:1d:31:b1:0f:da:2e:39:9a:79:69:41:cc:
1e:c1:a5:89:69:90:32:25:20:5d:72:19:1c:25:a8:
e3:eb:de:0c:0b:9d:40:e0:86:c4:00:40:fc:0f:be:
7a:85:e2:93:56:72:15:e4:ef:fa:2a:64:8e:2d:88:
64:14:4c:a0:8f:b7:01:82:d5:a1:e1:3c:f6:94:b8:
2e:62:61:16:bc:cd:52:84:e2:5f:35:7e:3b:4b:f0:
59:37:58:36:b8:23:fd:96:51:b3:a4:5d:f2:f8:b4:
f9:03:8f:03:ce:18:71:91:1c:21:84:e8:42:d4:58:
b4:ce:0f:42:cf:24:96:f0:2d:9d:02:c1:72:88:d6:
f0:33:8c:3d:97:d7:97:e8:54:44:ef:69:1c:88:0b:
53:2e:0a:22:7d:bb:9f:c6:55:60:e0:8e:65:3d:bb:
c7:fc:38:36:de:07:4e:3c:18:69:f9:78:45:da:d0:
ce:12:a3:57:27:2d:97:a4:70:02:e1:b2:08:ad:a0:
39:e0:84:42:7d:53:37:70:b4:e9:02:87:d4:8c:56:
4f:94:b3:68:fa:6f:65:4f:d9:0b:14:0a:44:ed:bb:
c5:bc:38:08:81:a9:f7:14:03:29:e2:63:eb:93:23:
23:fb:9c:0c:18:a9:af:89:34:19:6f:11:26:22:4b:
10:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:45:42:35:69:FB:45:7A:0A:05:F9:FE:0C:E9:F9:5A:D1:BA:D6:2C
X509v3 Authority Key Identifier:
keyid:AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/924F80688A4E11EC8639028F5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.232.0/21
IPv6:
2c0f:e8e0::/32
Signature Algorithm: sha256WithRSAEncryption
25:3d:a4:03:d2:04:d0:1b:08:67:05:4d:3c:d3:7f:e3:b2:fd:
ed:81:5d:85:db:11:28:f9:9e:7a:c9:8d:04:67:a9:84:99:d2:
c3:7a:90:d0:38:e2:c8:35:ff:e9:c9:85:5d:45:c0:ba:6b:ca:
58:1e:fc:ee:3a:23:ed:37:59:02:26:60:12:eb:d0:01:21:b9:
e1:bd:63:e2:ae:1b:ef:e6:ed:52:8b:63:1f:25:35:97:cc:00:
71:e0:6d:cd:16:59:3a:d7:20:6c:00:43:65:75:66:7c:b9:53:
c3:68:03:a1:88:7b:18:7f:81:6b:85:28:25:99:a0:33:97:81:
b7:00:8f:db:57:1b:c7:85:9d:e6:a6:a1:88:ee:b7:b1:09:ef:
17:d2:25:55:c5:3f:21:56:26:f0:d5:56:a4:cb:29:c5:a9:8d:
a4:08:d3:cc:fa:06:a7:f1:e0:c5:e0:4e:f0:14:7f:48:d0:c5:
cd:3d:f4:77:87:10:e6:2b:65:3f:68:2e:f1:58:e6:1d:a0:b0:
0e:57:5f:20:5a:ff:b9:0d:b4:08:bc:71:0f:59:94:cc:95:8a:
93:44:3b:95:2b:5e:d7:ef:f1:4d:05:e9:d3:99:1a:69:e7:90:
3f:5a:68:fe:b0:97:02:c7:66:da:b8:f6:7d:45:64:45:65:42:
21:22:28:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 02:31:10 2024 by rpki-client on console-ams.rpki-client.org