Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/34DBEC7699EB11EC9372B76D5A40D577.roa
File: 34DBEC7699EB11EC9372B76D5A40D577.roa (raw, json)
Hash identifier: MN5wtkLxmPGFtBOwYPI7i0/t4eHvC/HYaygEOCTvp4Y=
Subject key identifier: F9:C2:E8:15:A6:99:52:82:FB:1C:A4:F7:A7:0C:38:1E:A1:32:A3:42
Certificate issuer: /CN=F36DC7ABAF/serialNumber=7BA891054608365FB8EB2380DD6700FDD36B930D
Certificate serial: 04
Authority key identifier: 7B:A8:91:05:46:08:36:5F:B8:EB:23:80:DD:67:00:FD:D3:6B:93:0D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e6iRBUYINl-46yOA3WcA_dNrkw0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/34DBEC7699EB11EC9372B76D5A40D577.roa
Signing time: Wed 02 Mar 2022 05:40:02 +0000
ROA not before: Wed 02 Mar 2022 05:39:59 +0000
ROA not after: Wed 27 Feb 2030 05:39:59 +0000
asID: 37441
IP address blocks: 196.3.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/e6iRBUYINl-46yOA3WcA_dNrkw0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/e6iRBUYINl-46yOA3WcA_dNrkw0.mft
rsync://rpki.afrinic.net/repository/afrinic/e6iRBUYINl-46yOA3WcA_dNrkw0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DC7ABAF/serialNumber=7BA891054608365FB8EB2380DD6700FDD36B930D
Validity
Not Before: Mar 2 05:39:59 2022 GMT
Not After : Feb 27 05:39:59 2030 GMT
Subject: CN=621f0332-256d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5b:21:2e:e5:2c:8f:e1:7d:a3:69:28:c2:f2:
39:40:ef:d2:ab:76:6f:9c:c3:96:4d:3e:48:22:9a:
3f:2c:89:46:1f:f4:cd:e9:4e:ee:d3:0a:a9:a4:aa:
d9:a6:bc:8d:14:1d:fa:0c:57:92:b3:79:34:de:f5:
2b:92:87:02:57:d6:2f:b6:bb:90:fc:d8:da:d5:50:
33:6e:fc:5b:01:95:d2:2f:8d:7e:fe:38:68:0f:a6:
cc:1a:20:6f:e6:88:f4:05:7a:74:d7:f4:f6:ae:dd:
ab:63:fa:44:38:eb:99:be:ba:c1:4e:cb:a2:27:d4:
a5:55:7c:e1:b7:34:1b:37:b3:4a:ae:4d:39:87:8d:
c2:bc:73:46:90:98:12:00:c5:7b:bf:0d:64:83:7e:
48:32:59:52:42:84:d2:43:c8:8d:30:7c:6f:73:12:
94:27:e5:3d:af:03:a2:aa:dd:95:1c:84:4d:05:98:
9b:a8:4a:68:a6:e3:5c:77:53:ed:51:08:ce:53:38:
8a:17:f2:bd:df:7f:9b:c1:d9:06:5b:08:35:75:32:
f5:b5:04:84:8c:5e:4d:76:ed:0f:f4:3b:4d:17:8d:
80:a9:dd:00:1d:a1:f1:79:00:98:70:33:b8:f4:bd:
99:e6:86:be:e4:07:96:87:76:42:19:b9:ea:5b:3a:
2a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C2:E8:15:A6:99:52:82:FB:1C:A4:F7:A7:0C:38:1E:A1:32:A3:42
X509v3 Authority Key Identifier:
keyid:7B:A8:91:05:46:08:36:5F:B8:EB:23:80:DD:67:00:FD:D3:6B:93:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/e6iRBUYINl-46yOA3WcA_dNrkw0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e6iRBUYINl-46yOA3WcA_dNrkw0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DC7AB/2B4A370E99EA11ECAD087A6A5A40D577/34DBEC7699EB11EC9372B76D5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.162.0/24
Signature Algorithm: sha256WithRSAEncryption
50:62:cc:86:47:72:03:e6:82:fe:53:0f:63:7a:9d:70:28:74:
a0:01:a3:3c:f7:5e:98:20:ca:3b:5b:e5:98:a7:30:96:9c:3c:
5d:de:00:62:e3:5d:49:27:9e:ad:be:78:c8:0b:1c:d6:b0:55:
35:6b:13:11:64:71:16:45:d9:9a:27:ab:92:8c:c6:8f:30:9b:
56:7c:c8:a5:f1:39:4f:dd:1f:a4:43:5a:18:ee:c4:e6:14:ba:
7a:c2:81:2b:ec:7f:78:24:18:05:72:02:40:90:a9:e4:1f:f9:
ed:a7:ed:f5:47:64:de:45:29:7d:35:04:6f:ba:2f:dc:cc:bf:
05:98:49:12:a3:0f:88:9f:b2:ee:8e:85:76:bb:70:c7:e6:19:
78:59:b9:a2:c8:bc:44:00:9a:23:9a:66:99:c2:a5:1c:1e:c3:
99:ef:a4:5a:fe:2e:42:57:7f:fa:cd:25:67:99:9a:99:1e:5c:
03:75:00:d7:ef:3d:ea:7d:3e:88:f2:df:71:54:99:b7:74:fb:
50:ad:c3:b6:ee:2c:d7:3e:84:2f:cd:d1:33:f0:f4:e6:5f:39:
52:0a:ed:79:63:e2:70:4b:d0:3e:23:79:c4:6b:f8:97:2b:b6:
ab:b2:76:50:dc:98:e6:44:67:48:99:f1:90:18:59:5d:3d:7f:
34:0b:7f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:29 2024 by rpki-client on console-ams.rpki-client.org