Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/CC06753C9B9411EFB98A1EA2762E951A.roa
File: CC06753C9B9411EFB98A1EA2762E951A.roa (raw, json)
Hash identifier: PrWrPFpz78YhUoGxQ7jEkZFHzPPsv0jeCPOMzZB31PQ=
Subject key identifier: 1A:F0:00:05:8E:43:4F:8E:88:9C:21:0C:58:FA:B5:FB:3D:9D:D1:17
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 0275
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/CC06753C9B9411EFB98A1EA2762E951A.roa
Signing time: Tue 05 Nov 2024 16:41:25 +0000
ROA not before: Tue 05 Nov 2024 16:41:18 +0000
ROA not after: Sun 05 Nov 2034 16:41:18 +0000
asID: 37105
IP address blocks: 197.184.0.0/16 maxlen: 16
197.185.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 629 (0x275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Nov 5 16:41:18 2024 GMT
Not After : Nov 5 16:41:18 2034 GMT
Subject: CN=672a4ab5-a086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8d:0d:91:99:7d:94:cd:62:bb:e9:99:69:8e:
8a:b9:8f:ca:e5:d3:be:3b:24:39:5b:f1:5b:e3:d8:
8f:ad:34:c0:e7:5c:d3:ac:71:77:ed:1e:90:e7:e7:
0d:f1:fd:47:d2:37:be:fc:c8:eb:2c:35:79:22:67:
7b:d4:d8:46:3f:10:1f:83:64:34:22:d2:5b:fd:b2:
73:fa:d3:5b:0c:31:d6:84:2c:c4:cf:63:f6:2e:2e:
cf:b0:c6:d4:b0:eb:95:ab:65:ed:b9:3c:bd:7f:21:
49:76:09:29:96:cf:85:2d:c1:1e:7c:93:64:6f:63:
86:63:52:96:d5:39:ac:2e:03:47:b9:50:b9:39:a1:
5e:07:6e:0b:ba:3d:d0:c5:52:0d:a8:9a:d8:28:b4:
0b:95:db:88:59:24:42:19:ac:4e:da:8a:66:54:3e:
4d:9f:db:ee:06:3c:02:d0:f9:03:f4:45:15:4d:ac:
1f:63:92:b6:65:9a:89:a2:03:e8:3f:fd:8d:53:4e:
84:78:e3:f8:5f:dc:80:22:3d:61:37:70:8c:04:f0:
46:8e:25:8d:72:d0:c7:d9:60:b9:00:4c:0c:62:03:
33:57:cd:83:0c:9d:01:d9:d1:5b:92:a0:1f:d0:3c:
d6:ac:49:77:cc:9a:86:86:89:1a:68:9e:3a:fd:71:
96:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F0:00:05:8E:43:4F:8E:88:9C:21:0C:58:FA:B5:FB:3D:9D:D1:17
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/CC06753C9B9411EFB98A1EA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.184.0.0/15
Signature Algorithm: sha256WithRSAEncryption
58:09:d5:88:50:47:30:eb:ea:af:6f:4a:39:2c:51:ed:dd:66:
a5:e0:9a:40:43:44:79:7c:22:4c:ff:6f:68:a8:65:28:99:da:
fc:c7:85:d0:a2:49:e3:43:7e:3f:01:7a:22:82:11:44:48:83:
fc:44:47:d8:6a:87:77:46:78:37:6e:e2:31:e4:62:c0:58:6e:
c8:10:79:be:c1:a8:66:1b:b3:78:fa:aa:3e:14:e1:c7:76:f3:
38:0e:ea:06:2a:49:ef:9d:36:61:af:2b:cb:82:45:fd:3d:02:
14:ca:77:9b:d7:8d:4e:f4:10:27:4c:75:07:3c:54:23:db:98:
70:d6:c6:75:68:43:40:3b:d5:41:8b:2e:93:5d:ee:63:0b:52:
51:7d:2c:06:49:b3:46:74:5d:01:86:87:d1:55:9b:fb:f4:b1:
4e:5c:cd:78:9b:6a:8c:2a:35:98:70:53:09:33:e9:d9:4e:e4:
66:db:82:df:43:79:ba:e7:17:7e:6b:be:a7:66:ba:81:7a:67:
d0:da:c2:cc:d0:b2:1a:a0:3b:ca:0e:02:3f:c1:e7:b5:fb:a3:
ed:3f:1f:42:0c:98:eb:85:22:93:f0:1c:77:e4:b2:bb:9f:f1:
fe:11:ff:db:4a:c9:d9:ea:67:1e:9a:c3:81:fb:e0:4b:92:fa:
fa:f9:a2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org