Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/09404144A38211EB9403A411F8AEA228.roa
File: 09404144A38211EB9403A411F8AEA228.roa (raw, json)
Hash identifier: XszKqqcugifGQ7P7cFMGaXWJ1rKb7154oh90pRoXSnM=
Subject key identifier: F0:91:59:75:B5:B8:25:B0:19:0E:5F:54:4B:3C:4E:F7:24:80:A5:72
Certificate issuer: /CN=F36E084CAF/serialNumber=BB9AF1B86F31ACF277AB3A06D18E79EF5C8BAD79
Certificate serial: 020F
Authority key identifier: BB:9A:F1:B8:6F:31:AC:F2:77:AB:3A:06:D1:8E:79:EF:5C:8B:AD:79
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/u5rxuG8xrPJ3qzoG0Y5571yLrXk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/09404144A38211EB9403A411F8AEA228.roa
Signing time: Thu 22 Apr 2021 15:47:26 +0000
ROA not before: Thu 22 Apr 2021 15:47:22 +0000
ROA not after: Tue 22 Apr 2031 15:47:22 +0000
asID: 37704
IP address blocks: 196.6.220.0/24 maxlen: 24
2001:43f8:7b0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/u5rxuG8xrPJ3qzoG0Y5571yLrXk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/u5rxuG8xrPJ3qzoG0Y5571yLrXk.mft
rsync://rpki.afrinic.net/repository/afrinic/u5rxuG8xrPJ3qzoG0Y5571yLrXk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 527 (0x20f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E084CAF/serialNumber=BB9AF1B86F31ACF277AB3A06D18E79EF5C8BAD79
Validity
Not Before: Apr 22 15:47:22 2021 GMT
Not After : Apr 22 15:47:22 2031 GMT
Subject: CN=60819a8e-bb6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:7b:55:09:5a:62:ff:8a:2e:26:df:8b:7e:
1c:c3:60:f3:d7:78:37:7f:c4:04:b6:12:77:44:b4:
db:b6:9a:ea:78:eb:b9:10:ed:04:f0:49:c8:37:4a:
1a:69:59:0a:cc:c3:f2:53:eb:15:29:7f:11:11:32:
d7:c8:45:4c:59:05:e8:97:05:92:b4:a4:11:2d:aa:
02:4c:5a:be:0c:87:72:5d:9d:57:3e:e4:8d:ea:35:
da:ed:1b:c8:9a:1b:82:72:1c:9a:06:e6:64:a1:10:
38:e8:2a:73:d2:10:a7:ac:5d:56:53:d9:39:13:17:
85:84:8f:bf:ce:b3:59:60:40:d3:cf:f2:3d:42:80:
16:fd:24:6a:05:dc:39:29:3e:50:db:63:cc:7e:3d:
c3:84:69:de:ce:e1:8d:2c:64:5c:03:7f:83:06:7a:
36:20:ca:a9:d6:06:73:a1:2b:e3:a6:fc:e7:54:93:
de:5f:7f:44:65:a1:cd:af:30:fd:f2:00:f8:2b:b6:
c9:d3:71:84:c4:36:7f:cc:0b:44:a4:c2:78:95:8b:
e7:ea:c9:a0:98:1a:00:7e:30:59:c3:6c:c0:4c:e6:
58:02:d4:f4:6b:6f:04:91:38:da:b3:5f:9f:2b:46:
0f:38:b0:92:72:be:8b:55:30:1b:c9:d2:60:b3:7a:
98:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:91:59:75:B5:B8:25:B0:19:0E:5F:54:4B:3C:4E:F7:24:80:A5:72
X509v3 Authority Key Identifier:
keyid:BB:9A:F1:B8:6F:31:AC:F2:77:AB:3A:06:D1:8E:79:EF:5C:8B:AD:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/u5rxuG8xrPJ3qzoG0Y5571yLrXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/u5rxuG8xrPJ3qzoG0Y5571yLrXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E084C/6A9DAE420F5C11EA915D5341F8AEA228/09404144A38211EB9403A411F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.6.220.0/24
IPv6:
2001:43f8:7b0::/48
Signature Algorithm: sha256WithRSAEncryption
a5:a3:6e:16:53:04:2a:02:2f:85:12:93:ce:a8:da:e7:62:c6:
d6:b5:c7:2d:6b:09:28:39:f3:c9:e1:43:9c:88:a3:ca:5e:a2:
5b:03:1e:5b:ad:c8:89:a4:f6:50:42:1c:dd:15:88:c8:17:f3:
63:c2:a9:fd:13:a3:15:3c:33:cd:c7:5e:b3:42:9e:2f:88:25:
ba:55:cb:72:61:44:59:ea:1a:52:07:86:8c:e2:49:ae:df:dc:
fc:a9:95:04:84:a6:35:06:98:61:c1:21:40:0b:1d:36:0c:af:
72:e5:13:43:1a:11:8f:df:59:28:7d:d5:e8:6b:7c:d8:ec:7d:
07:1c:44:d1:d6:8d:fd:3b:92:ac:fa:d1:5e:a7:b7:0a:73:6e:
82:68:f8:7b:b3:a1:33:34:eb:05:9f:ad:05:53:7a:16:63:7c:
b5:36:aa:c4:8b:48:32:d2:21:69:b2:90:73:79:e3:e2:37:1c:
d3:94:ca:b9:53:20:c3:2d:53:be:50:04:b0:3e:2d:09:5c:d3:
c9:d7:21:ca:71:b5:ad:6c:82:04:a7:bc:37:94:54:c3:43:c6:
eb:4b:26:61:11:2d:70:0a:64:7f:18:db:e5:7f:ca:39:44:d2:
38:03:30:85:2a:22:90:cd:d3:c3:af:1c:31:ad:33:9f:d0:2f:
d7:21:81:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org