Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/68052C5292E611EEB89A3D5ED25BE465.roa
File: 68052C5292E611EEB89A3D5ED25BE465.roa (raw, json)
Hash identifier: tfitjgyPV0bS1mdpb1R7yScmPtiSMrRxv3bQMLGjivw=
Subject key identifier: 86:62:69:B9:67:64:B8:83:46:74:1F:82:5E:87:29:AF:0F:A2:05:F6
Certificate issuer: /CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Certificate serial: 02
Authority key identifier: F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/68052C5292E611EEB89A3D5ED25BE465.roa
Signing time: Mon 04 Dec 2023 20:47:58 +0000
ROA not before: Mon 04 Dec 2023 20:47:55 +0000
ROA not after: Tue 31 Dec 2030 20:47:55 +0000
asID: 37129
IP address blocks: 196.22.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.mft
rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Validity
Not Before: Dec 4 20:47:55 2023 GMT
Not After : Dec 31 20:47:55 2030 GMT
Subject: CN=656e3afe-ad5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:15:7a:a5:09:7f:e8:96:e3:17:a1:e7:60:
45:9d:89:18:5f:16:8b:6a:ca:1e:e9:26:69:72:13:
1e:3f:40:f3:96:da:ca:18:10:2f:21:9f:db:6d:f7:
89:92:b0:17:86:8d:3f:55:35:6a:57:32:93:cd:ff:
fd:89:2c:c6:eb:a8:f2:cf:70:b9:09:01:10:88:dd:
55:6f:71:fe:bb:1f:9e:c9:f9:be:04:35:62:61:05:
c6:1a:fa:99:19:ff:a6:c9:d9:c1:3c:c4:5d:66:77:
65:70:76:81:d5:00:fc:9e:22:45:0d:53:81:96:ef:
c5:ef:af:2a:89:5d:12:d8:50:41:04:1f:1e:a4:7e:
8e:91:82:a6:6c:f8:bd:90:11:7c:be:44:a6:b5:09:
68:39:53:30:44:d9:00:90:36:51:28:d7:05:9d:d3:
c9:da:d1:f5:ba:8d:9d:34:f2:8e:b5:a8:1a:20:4b:
9c:4e:34:75:05:9e:44:e8:36:07:67:56:13:c2:99:
09:7b:c2:24:db:9c:0b:52:00:2f:46:23:ba:8b:72:
7b:38:d7:26:10:0e:f3:ad:00:1f:d6:76:c9:6b:d9:
48:ff:7c:af:58:84:64:b2:e4:17:5e:5f:0b:35:a6:
a0:3c:95:3a:37:76:50:d6:9f:90:84:38:4d:03:68:
d7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:62:69:B9:67:64:B8:83:46:74:1F:82:5E:87:29:AF:0F:A2:05:F6
X509v3 Authority Key Identifier:
keyid:F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/68052C5292E611EEB89A3D5ED25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.22.131.0/24
Signature Algorithm: sha256WithRSAEncryption
92:f7:cd:ae:d1:a7:07:32:25:ad:3d:15:98:2e:89:1e:8c:e2:
c5:04:ba:d4:a4:1a:86:5a:05:50:19:d0:b1:26:86:54:41:c4:
1e:1f:f1:4a:b4:c8:e7:f5:0a:02:b1:21:b2:21:ce:c6:af:1a:
21:76:a1:e6:4d:70:42:88:bf:bb:f0:fd:10:93:2f:9c:19:e2:
44:bb:96:a9:49:4e:bc:de:39:cc:4d:6f:74:5d:dc:78:10:e2:
f7:0f:cd:94:42:0d:8e:9f:90:f9:de:f5:6e:dd:7c:1c:9d:a7:
2d:2c:26:28:d6:25:90:2a:2d:e4:21:1d:fe:96:80:e5:a0:d5:
c7:f7:85:20:bc:e3:95:5d:08:e8:8d:d6:12:85:d2:0f:30:ee:
04:59:01:b9:ff:89:48:f7:81:ff:d1:65:45:7e:96:41:4c:8b:
be:41:66:8c:c9:c5:1a:3a:2d:61:47:a3:37:b6:05:96:e9:1d:
a7:4e:0e:d6:39:b0:0c:b1:8b:05:b4:ac:55:ca:32:86:88:5c:
46:02:be:73:a5:12:bd:dd:52:08:e8:46:44:97:b0:ab:7c:96:
d0:ad:81:ac:7a:1f:f9:af:73:52:cb:c6:39:44:28:2b:18:b2:
6a:97:11:7b:d4:37:68:fe:f1:f2:90:02:80:d8:44:22:c1:db:
c5:94:68:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org