Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/624DB26AFC1411EEA32C1066017001B1.roa
File: 624DB26AFC1411EEA32C1066017001B1.roa (raw, json)
Hash identifier: SAKc0hgZ+mEboWzvP3K7DMfU8rpiR8UT+kWecca89NE=
Subject key identifier: 1F:CE:4B:62:AE:D5:5E:49:63:E9:8B:F3:C9:B5:6D:0A:78:26:DB:12
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 16
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/624DB26AFC1411EEA32C1066017001B1.roa
Signing time: Tue 16 Apr 2024 17:11:37 +0000
ROA not before: Tue 16 Apr 2024 17:11:32 +0000
ROA not after: Fri 30 Apr 2027 17:11:32 +0000
asID: 37577
IP address blocks: 197.239.64.0/24 maxlen: 24
197.239.65.0/24 maxlen: 24
197.239.66.0/24 maxlen: 24
197.239.67.0/24 maxlen: 24
197.239.68.0/22 maxlen: 22
197.239.68.0/24 maxlen: 24
197.239.69.0/24 maxlen: 24
197.239.70.0/24 maxlen: 24
197.239.71.0/24 maxlen: 24
197.239.72.0/21 maxlen: 21
197.239.72.0/24 maxlen: 24
197.239.73.0/24 maxlen: 24
197.239.74.0/24 maxlen: 24
197.239.75.0/24 maxlen: 24
197.239.76.0/24 maxlen: 24
197.239.77.0/24 maxlen: 24
197.239.78.0/24 maxlen: 24
197.239.79.0/24 maxlen: 24
197.239.80.0/21 maxlen: 21
197.239.82.0/24 maxlen: 24
197.239.88.0/21 maxlen: 21
197.239.88.0/24 maxlen: 24
197.239.89.0/24 maxlen: 24
197.239.90.0/24 maxlen: 24
197.239.91.0/24 maxlen: 24
197.239.92.0/24 maxlen: 24
197.239.93.0/24 maxlen: 24
197.239.94.0/24 maxlen: 24
197.239.95.0/24 maxlen: 24
197.239.96.0/24 maxlen: 24
197.239.97.0/24 maxlen: 24
197.239.98.0/24 maxlen: 24
197.239.99.0/24 maxlen: 24
197.239.100.0/24 maxlen: 24
197.239.101.0/24 maxlen: 24
197.239.102.0/24 maxlen: 24
197.239.103.0/24 maxlen: 24
197.239.104.0/24 maxlen: 24
197.239.105.0/24 maxlen: 24
197.239.106.0/24 maxlen: 24
197.239.107.0/24 maxlen: 24
197.239.108.0/24 maxlen: 24
197.239.109.0/24 maxlen: 24
197.239.110.0/24 maxlen: 24
197.239.111.0/24 maxlen: 24
197.239.112.0/24 maxlen: 24
197.239.113.0/24 maxlen: 24
197.239.114.0/24 maxlen: 24
197.239.115.0/24 maxlen: 24
197.239.116.0/24 maxlen: 24
197.239.117.0/24 maxlen: 24
197.239.118.0/24 maxlen: 24
197.239.119.0/24 maxlen: 24
197.239.120.0/24 maxlen: 24
197.239.121.0/24 maxlen: 24
197.239.122.0/24 maxlen: 24
197.239.123.0/24 maxlen: 24
197.239.124.0/24 maxlen: 24
197.239.125.0/24 maxlen: 24
197.239.126.0/24 maxlen: 24
197.239.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22 (0x16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Apr 16 17:11:32 2024 GMT
Not After : Apr 30 17:11:32 2027 GMT
Subject: CN=661eb149-d343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:87:b1:64:ad:90:03:3c:11:9d:4e:57:65:99:
a2:45:e2:12:85:d2:ca:f0:16:0e:0e:95:6e:89:99:
78:2e:78:ba:86:6c:7e:80:4a:42:e6:9a:98:ac:5a:
72:7e:4a:ec:1f:73:e3:60:87:59:0b:ba:cd:b4:e7:
d2:d7:99:44:aa:12:f2:63:20:34:1c:82:f5:3e:7a:
06:e5:12:59:17:66:61:53:69:47:b8:da:d9:7f:30:
54:5e:dc:9d:8d:1a:50:59:fe:4f:d3:0f:bf:88:df:
46:c7:95:f4:0d:37:b4:88:34:1a:97:a5:df:6e:1b:
d3:13:a5:04:23:1c:2e:0e:6f:32:65:4d:ce:e3:ca:
1f:fb:8f:80:6b:fe:b9:9e:d1:6b:e6:0e:ce:c8:a5:
3e:7a:74:77:51:9a:71:30:44:ba:99:00:04:d5:b1:
67:b6:ab:b8:b0:76:7a:9c:31:df:4a:8a:23:97:b4:
7b:25:95:d5:a6:3f:e8:53:8d:70:ed:20:8a:6f:e4:
cb:29:bc:52:45:49:d3:1b:e2:df:17:00:1d:4a:04:
d0:0b:7a:30:78:2f:9c:e3:06:aa:3a:74:ef:5f:4b:
80:4f:0f:0c:30:93:4f:67:3f:f8:a7:a9:57:c3:ec:
24:f4:fa:4c:a1:45:73:ec:84:c5:7d:3f:df:c7:00:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CE:4B:62:AE:D5:5E:49:63:E9:8B:F3:C9:B5:6D:0A:78:26:DB:12
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/624DB26AFC1411EEA32C1066017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.239.64.0/18
Signature Algorithm: sha256WithRSAEncryption
68:42:55:13:b2:00:f7:37:be:f0:ed:13:be:f4:85:bf:94:1f:
fc:37:0d:0d:09:82:bf:25:21:87:e0:12:b8:d7:3d:b6:88:99:
b8:15:3f:d8:72:bd:39:45:82:91:01:ac:44:82:86:d4:ff:a6:
c0:05:f5:25:6c:b7:d8:0a:c0:83:06:46:22:b8:c9:e6:64:1e:
7b:6c:fe:b5:a7:09:69:d2:0c:1a:bc:31:1b:26:fc:c7:4e:71:
3e:6e:18:90:bb:61:5e:a6:a2:ab:f8:05:ce:7c:fd:03:44:0e:
4e:7e:50:c9:32:56:b2:68:8c:06:c1:97:a0:19:0c:90:95:f7:
ce:8e:76:27:59:85:2a:f1:39:f1:71:a7:25:17:db:72:ad:48:
ce:bd:cf:e2:59:93:4e:07:00:77:52:1d:74:e1:38:30:de:00:
77:59:1e:60:55:85:a5:cf:53:5a:69:7e:f7:50:bd:1c:66:05:
ff:8f:a7:06:51:31:37:e4:ba:53:90:22:aa:2e:8c:cf:62:9e:
22:99:4e:3d:c8:a7:33:9e:49:a2:a1:43:59:0d:00:38:5f:cc:
9c:fc:87:47:33:d6:a2:14:49:a0:b4:eb:dd:b0:11:ee:78:9d:
2c:fa:e0:6d:77:9d:16:c8:fd:dd:05:81:42:77:11:d6:0d:4a:
ee:83:b3:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org