Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/3D132C64715A11EDA3BFFAA3F1222468.roa
File: 3D132C64715A11EDA3BFFAA3F1222468.roa (raw, json)
Hash identifier: 6Yt2DZ8AkJ2LvNfQsKCtW8w0HFsA5nQmXM/fp7Y6++U=
Subject key identifier: 38:F2:2B:AC:AF:77:EA:A5:B8:A6:83:E2:64:D7:E3:FC:13:B2:F8:5F
Certificate issuer: /CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Certificate serial: 0A
Authority key identifier: E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/3D132C64715A11EDA3BFFAA3F1222468.roa
Signing time: Thu 01 Dec 2022 09:26:30 +0000
ROA not before: Thu 01 Dec 2022 09:26:27 +0000
ROA not after: Wed 01 Dec 2032 09:26:27 +0000
asID: 37009
IP address blocks: 196.3.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.mft
rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Validity
Not Before: Dec 1 09:26:27 2022 GMT
Not After : Dec 1 09:26:27 2032 GMT
Subject: CN=63887346-e495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:d8:e9:12:82:a4:e3:48:59:23:c8:52:03:
48:bd:f4:31:a4:8a:07:16:08:26:c9:d5:f2:6d:ad:
01:b7:37:9d:1c:0c:aa:8c:62:c7:9f:16:a6:43:c0:
c5:68:54:97:2b:6e:c3:3b:d2:77:fb:db:a0:69:73:
f1:41:ad:fc:78:ac:01:48:71:43:1e:aa:b0:24:2f:
e4:7c:40:62:9d:84:aa:a6:1e:2f:d8:3e:04:9f:c0:
33:25:ca:d9:a8:b8:99:f2:95:8d:37:29:34:ac:d1:
b7:72:c8:4a:c6:02:6a:d9:ed:f8:cf:95:57:38:44:
f4:62:64:54:9b:c3:88:6f:27:a8:90:cb:c9:a1:84:
25:66:1b:db:f3:b2:ae:ac:78:31:e4:0b:47:30:07:
87:0e:04:77:d5:4b:6f:51:c3:68:4a:78:a9:eb:4d:
06:9a:60:41:be:56:44:cf:11:a2:0a:00:f3:c9:c5:
61:2c:4c:25:c5:f2:0e:e8:2d:99:25:c7:d1:f8:fd:
ef:41:8a:27:e0:94:f0:f9:90:21:a0:b5:83:e6:4f:
ab:2a:42:e0:8f:6b:ab:49:b8:1f:52:ca:51:9e:33:
72:2e:7e:81:00:54:96:d6:c5:41:cb:ad:7a:a0:57:
b5:0a:6a:78:e1:7f:e8:73:62:4a:4b:ac:9c:7e:50:
76:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F2:2B:AC:AF:77:EA:A5:B8:A6:83:E2:64:D7:E3:FC:13:B2:F8:5F
X509v3 Authority Key Identifier:
keyid:E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/3D132C64715A11EDA3BFFAA3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.94.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0a:04:28:43:6d:76:68:f8:d0:79:77:52:ab:92:69:8f:94:
b7:31:f1:4b:0a:8a:ac:77:26:06:5c:f0:6f:3f:f5:e4:6d:21:
a8:c2:e9:08:a1:a6:a9:ca:e1:90:0a:16:ef:02:f7:70:69:15:
a5:0c:23:eb:1c:28:33:10:8d:3e:f4:1a:52:57:02:57:0e:29:
91:98:a9:78:ac:e7:7c:fa:bd:dc:56:bf:e9:17:43:b9:6d:38:
97:5f:29:d9:77:69:dc:30:18:9a:2e:bb:62:00:af:9b:4d:6b:
6b:20:f8:c5:15:68:68:88:f7:be:da:10:d7:ef:54:4a:95:45:
f2:0a:ca:5d:23:cc:41:1e:11:08:61:61:7a:dc:c3:ca:52:bc:
5b:6e:a2:a1:27:c8:62:4e:a8:36:44:94:b3:9a:cd:52:04:3e:
0d:09:5c:ab:09:ae:53:ac:77:3d:5f:50:b2:3c:b8:28:7d:ad:
bd:53:2d:3f:ae:f1:31:c2:41:85:21:0a:6e:72:b8:16:7f:b5:
e9:48:27:73:ed:78:5d:31:1b:b2:c4:b2:c8:cd:83:85:8e:01:
46:c3:51:6a:c5:ad:04:70:c9:18:ee:69:0c:72:b5:9b:bf:b9:
14:fd:f7:46:c0:a3:6e:08:f3:33:62:03:51:5a:f7:f3:6c:e6:
c3:d1:fc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org