Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/034D2B64846E11EF9FCBBFA3762E951A.roa
File: 034D2B64846E11EF9FCBBFA3762E951A.roa (raw, json)
Hash identifier: MyH4BxPN5oQf/ANUALV0gIzKpengDwYp7tXNj92dOUA=
Subject key identifier: 7D:D9:3D:F0:6C:BB:77:F7:E6:18:5D:20:6D:C8:15:2A:88:0D:C1:D4
Certificate issuer: /CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Certificate serial: 0818
Authority key identifier: 7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/034D2B64846E11EF9FCBBFA3762E951A.roa
Signing time: Mon 07 Oct 2024 05:35:51 +0000
ROA not before: Mon 07 Oct 2024 05:35:47 +0000
ROA not after: Sun 07 Oct 2029 05:35:47 +0000
asID: 327804
IP address blocks: 154.68.168.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.mft
rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2072 (0x818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AF/serialNumber=7B965B64C3E724B93FC00B186E15E35CED535DC7
Validity
Not Before: Oct 7 05:35:47 2024 GMT
Not After : Oct 7 05:35:47 2029 GMT
Subject: CN=67037337-94fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:51:d4:c8:4e:2f:54:53:29:f8:0b:c7:e1:b1:
45:f8:df:29:21:be:ea:0e:a5:65:96:8a:5b:6a:2a:
02:50:d2:f7:c7:1c:01:cf:e1:ef:5f:85:81:39:7e:
a1:ff:b3:d0:41:79:4d:2c:75:88:96:7a:5b:e4:b3:
25:b2:7c:93:81:ef:bf:56:ab:9d:b7:fd:92:a2:51:
b0:9c:ba:0d:a4:7a:42:c3:1e:e4:07:64:6c:dd:7e:
59:e3:57:d7:8d:15:c3:55:a9:61:58:6a:26:22:7c:
10:8c:90:8c:7f:5c:5c:ad:17:3a:d4:5c:b3:c9:de:
08:b2:4d:1e:cf:46:c6:01:82:d8:ab:1d:e9:46:22:
33:59:21:88:5f:a6:2c:a0:06:e9:09:fc:58:bf:c1:
76:d4:11:5f:8e:35:5b:19:2e:e7:b3:8a:d6:a5:7c:
0b:77:df:11:82:ea:04:57:33:7a:18:1f:e5:e7:83:
cd:de:30:b5:46:d2:1b:01:45:87:46:c9:e6:ac:0d:
2d:ab:23:df:f6:f3:f6:7d:d1:17:8f:d9:98:1a:f3:
70:3a:d7:b0:07:21:82:ff:aa:64:da:16:97:fe:94:
22:14:5a:c0:23:19:d6:c9:31:85:3d:21:9f:18:dc:
d2:20:84:de:d9:67:97:8b:cc:cb:19:d8:e3:35:8f:
28:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D9:3D:F0:6C:BB:77:F7:E6:18:5D:20:6D:C8:15:2A:88:0D:C1:D4
X509v3 Authority Key Identifier:
keyid:7B:96:5B:64:C3:E7:24:B9:3F:C0:0B:18:6E:15:E3:5C:ED:53:5D:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e5ZbZMPnJLk_wAsYbhXjXO1TXcc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/EC0AE8747AFA11E988A3C33CF8AEA228/034D2B64846E11EF9FCBBFA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.68.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:fc:07:7e:b4:17:b7:d4:73:fb:0f:f5:ef:df:e7:8f:2d:66:
44:cb:e4:34:dc:66:0f:5c:7c:11:a2:d4:3e:d2:01:fe:1e:c9:
a5:4e:85:ec:1e:88:a2:3f:cb:d2:3d:80:06:ed:49:3c:68:33:
bb:88:05:3a:c3:a7:0f:d9:35:9c:8b:94:a1:2a:dd:64:e9:52:
53:1f:68:c4:4c:b8:ae:90:59:94:84:42:03:26:92:de:f2:8d:
26:d1:7c:7e:71:ae:a0:bc:64:24:8e:3a:46:a4:4c:33:de:f1:
02:3b:a9:af:2c:68:f3:e8:46:5a:56:5b:e5:42:73:08:e7:48:
61:d8:07:7c:fe:40:f9:9a:3e:6d:86:f6:b6:9c:cb:ac:8b:08:
8e:9c:3e:61:1d:94:3d:91:cf:24:ad:d5:19:e3:1b:b4:4e:bf:
73:17:92:d9:f6:e6:04:a9:e7:4b:fe:73:ad:9a:24:9c:4e:3c:
32:81:b7:1b:57:ee:36:aa:c3:00:d4:53:b7:50:5c:18:bd:f4:
e5:d1:46:c8:8a:b7:15:8e:ba:9e:82:39:5a:37:1b:58:09:ae:
72:fe:69:a7:cb:dd:81:66:cd:e8:3f:af:9b:49:3e:a7:32:a0:
a0:ff:93:a3:c3:de:1e:07:2f:95:3a:f1:2b:78:f6:56:5c:fc:
4b:87:dc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org