Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/46769BA6A71011ED8E13C6ADF1222468.roa
File: 46769BA6A71011ED8E13C6ADF1222468.roa (raw, json)
Hash identifier: R9x99ks/pEliB0qi0nkW24IgeK+W3nFZnfzH3UhqkQ8=
Subject key identifier: DA:81:A5:AB:18:1E:67:B1:56:E2:BD:60:03:43:DF:DF:D7:38:2A:47
Certificate issuer: /CN=F36C7A1BAF/serialNumber=21862A804A8E5251D3F4D55155324CABCB1B2CD1
Certificate serial: 05
Authority key identifier: 21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/46769BA6A71011ED8E13C6ADF1222468.roa
Signing time: Tue 07 Feb 2023 17:53:06 +0000
ROA not before: Tue 07 Feb 2023 17:53:01 +0000
ROA not after: Wed 01 Dec 2049 17:53:01 +0000
asID: 329158
IP address blocks: 196.49.92.0/24 maxlen: 24
2001:43f8:16a1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.mft
rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A1BAF/serialNumber=21862A804A8E5251D3F4D55155324CABCB1B2CD1
Validity
Not Before: Feb 7 17:53:01 2023 GMT
Not After : Dec 1 17:53:01 2049 GMT
Subject: CN=63e29002-4355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:f3:f2:8f:d0:1c:f8:d9:1c:ed:b2:df:9f:
1c:13:81:4f:6a:d1:4d:56:32:95:3a:95:2e:99:f6:
67:e8:25:5f:6e:62:df:a4:80:33:0d:5a:26:2a:5e:
f1:dd:f3:63:b4:9c:ab:04:a4:22:1d:1c:e1:81:2a:
e9:b9:63:bf:c0:86:c2:53:9f:eb:c0:2f:af:e7:b0:
7c:8e:53:b2:00:a0:e1:06:b7:bb:3f:ee:96:a0:41:
33:25:ab:a0:a0:9b:86:a6:a3:2e:9e:18:b2:80:b3:
1e:48:2b:ec:d1:39:88:d2:b3:85:d8:9f:55:15:9d:
e5:ab:2f:44:f9:2c:e9:82:c0:82:b4:4e:3f:8a:f2:
c0:10:7e:0e:da:24:5c:78:1b:a6:a1:20:92:45:2a:
da:df:61:54:c8:2d:d4:27:73:61:de:22:05:8f:44:
37:2c:99:8c:b5:b2:16:67:c9:8b:61:bd:8d:6d:71:
64:07:91:15:48:89:e6:15:5a:a6:ae:2c:01:eb:69:
e5:5b:53:24:d8:d3:44:aa:83:6b:c9:16:07:83:8d:
2e:7b:0c:4e:0e:0e:54:63:54:ec:09:86:bc:b5:d4:
e3:e5:c4:2c:e7:d4:5c:9a:48:32:13:fc:27:4d:20:
4f:6a:17:fb:36:39:9f:23:8f:a6:e5:ca:b2:8f:7f:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:81:A5:AB:18:1E:67:B1:56:E2:BD:60:03:43:DF:DF:D7:38:2A:47
X509v3 Authority Key Identifier:
keyid:21:86:2A:80:4A:8E:52:51:D3:F4:D5:51:55:32:4C:AB:CB:1B:2C:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/IYYqgEqOUlHT9NVRVTJMq8sbLNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/IYYqgEqOUlHT9NVRVTJMq8sbLNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A1B/8BF36EB2A70F11ED8E13A3ABF1222468/46769BA6A71011ED8E13C6ADF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.92.0/24
IPv6:
2001:43f8:16a1::/48
Signature Algorithm: sha256WithRSAEncryption
75:41:94:45:e5:ba:9a:2f:5f:55:98:f1:4d:6b:e9:71:88:77:
17:59:43:c6:a3:ec:17:69:5a:07:6a:12:94:18:6e:a1:8e:01:
57:a4:ed:0e:24:45:f7:3c:1c:02:a1:80:b6:28:49:50:87:d3:
e4:5f:13:16:b6:68:d3:79:0f:17:28:5b:42:22:79:0c:9e:38:
9d:f0:c5:df:5c:0c:8b:c1:12:7a:33:59:11:1a:05:be:67:f2:
17:a9:0c:a2:5a:1d:ca:5c:f9:2c:71:01:b0:82:d7:71:88:dd:
42:6c:fc:79:56:87:f1:01:84:21:61:3d:ca:96:ea:3f:bb:b1:
b6:01:79:2d:4d:2a:6b:88:c0:68:6e:52:45:23:f3:5d:88:5c:
3e:ca:a4:2e:5d:08:a7:c0:ea:8e:d4:55:a6:93:53:04:ed:3e:
a2:c0:9e:e9:6f:25:97:f2:1b:e8:05:b9:b0:dd:86:e9:3e:92:
66:98:95:cf:22:14:2e:12:1d:72:06:c9:d0:1b:93:2c:93:43:
06:54:bb:a5:50:bc:0d:ec:c1:e7:02:52:9a:ee:a1:cc:ad:25:
1f:52:54:c2:79:67:3d:5e:a5:4c:f6:38:b2:3a:f7:d1:7b:56:
7a:03:18:97:cc:eb:c2:d5:f5:d6:d0:d0:e1:35:e1:b6:bc:00:
20:a8:36:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org