Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/177E9DAA0A0511EEA103A75C4AD9E6FC.roa
File: 177E9DAA0A0511EEA103A75C4AD9E6FC.roa (raw, json)
Hash identifier: VAjsLrJtmU9JF7920IbvEqYSSlIX9yoqgjT2siekcPY=
Subject key identifier: 46:20:DB:79:68:F2:44:CA:41:12:67:00:76:18:B7:02:A3:6F:BE:31
Certificate issuer: /CN=F36E1028AF/serialNumber=7ECE78AE81BF4072B1DC4F6FB7E6CB9166252B34
Certificate serial: 01C1
Authority key identifier: 7E:CE:78:AE:81:BF:40:72:B1:DC:4F:6F:B7:E6:CB:91:66:25:2B:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/fs54roG_QHKx3E9vt-bLkWYlKzQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/177E9DAA0A0511EEA103A75C4AD9E6FC.roa
Signing time: Tue 13 Jun 2023 16:12:28 +0000
ROA not before: Tue 13 Jun 2023 16:12:24 +0000
ROA not after: Sat 13 Jun 2026 16:12:24 +0000
asID: 29286
IP address blocks: 196.200.240.0/21 maxlen: 21
196.200.248.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/fs54roG_QHKx3E9vt-bLkWYlKzQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/fs54roG_QHKx3E9vt-bLkWYlKzQ.mft
rsync://rpki.afrinic.net/repository/afrinic/fs54roG_QHKx3E9vt-bLkWYlKzQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449 (0x1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E1028AF/serialNumber=7ECE78AE81BF4072B1DC4F6FB7E6CB9166252B34
Validity
Not Before: Jun 13 16:12:24 2023 GMT
Not After : Jun 13 16:12:24 2026 GMT
Subject: CN=6488956c-c72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:eb:70:ea:e0:9c:30:b0:79:96:2f:fa:3a:3c:
73:c7:36:b9:ba:6a:9f:17:eb:47:60:41:3e:6d:cb:
f3:22:d3:19:42:70:5f:c0:fd:7c:1b:69:58:44:b1:
54:7f:68:e5:e3:39:6b:6a:be:9c:94:75:1e:7e:4a:
37:f3:31:c6:c4:b2:29:ef:f7:9e:05:ab:13:77:ab:
70:d7:21:47:d4:b7:31:2f:78:36:c2:bd:96:18:37:
1a:f1:ed:50:7d:52:99:f3:c8:55:37:ac:2e:4f:06:
60:f2:82:d2:95:c3:78:dc:2a:4e:38:92:f1:01:e4:
16:15:a1:e1:57:cf:3d:20:dc:72:a2:eb:c6:e4:4b:
11:23:c3:04:a5:ec:cd:6d:4c:95:44:0c:e0:fa:ad:
1e:e5:cc:94:62:43:36:0f:4b:97:27:ec:f0:85:cb:
0e:d6:40:ca:04:45:37:84:3a:53:ac:c1:0a:77:cf:
86:b0:9b:a8:ed:ed:16:3e:ec:f2:a6:97:e5:3b:87:
b2:27:5c:11:b4:11:9a:a8:03:9a:a7:f3:4a:ac:e2:
4c:c9:51:e2:2c:40:00:10:35:75:77:ca:67:d9:e9:
96:79:9a:7c:fc:bf:bb:f1:56:fc:9a:79:46:4f:d8:
79:bf:aa:c3:a6:27:18:fc:90:04:4e:5e:f9:a5:be:
bc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:20:DB:79:68:F2:44:CA:41:12:67:00:76:18:B7:02:A3:6F:BE:31
X509v3 Authority Key Identifier:
keyid:7E:CE:78:AE:81:BF:40:72:B1:DC:4F:6F:B7:E6:CB:91:66:25:2B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/fs54roG_QHKx3E9vt-bLkWYlKzQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/fs54roG_QHKx3E9vt-bLkWYlKzQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/10D59DBCC8A411ECB5E23199F1222468/177E9DAA0A0511EEA103A75C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.240.0-196.200.251.255
Signature Algorithm: sha256WithRSAEncryption
06:69:1b:91:05:d0:08:97:99:3b:72:e8:cd:fa:f7:fe:41:37:
ad:94:e4:55:77:8f:d9:84:06:39:18:a0:c6:25:91:f7:8f:37:
fa:01:44:c2:6f:ab:06:91:bc:db:5b:3b:c7:a6:df:73:e8:51:
e6:48:c6:c7:6e:f1:41:c9:cc:4e:19:7a:91:ee:01:08:1f:cb:
7d:a4:3c:75:55:6f:06:f1:be:97:42:ef:1e:cd:f4:4e:55:b0:
ed:c3:de:0c:89:ff:f0:12:4e:e9:b7:89:88:5f:5d:3f:0b:93:
98:66:cb:d3:be:aa:2b:53:3d:d9:7a:d5:d6:0c:62:d4:51:f9:
b1:1f:cb:92:7e:80:0a:a7:d1:e6:39:03:2d:f1:9e:08:c0:30:
38:8e:55:54:7f:8e:97:f5:85:6c:1c:c2:f1:9c:a6:ec:29:22:
3e:54:72:38:1b:78:eb:76:c6:b1:78:05:5c:2e:e3:7b:74:cd:
6d:59:f5:60:49:bd:01:92:93:51:16:49:39:7b:7a:be:31:7f:
89:e6:08:14:cc:d3:8a:ab:d4:bc:f7:64:d2:80:b8:19:22:ce:
86:85:4a:dc:d6:27:56:e1:b4:67:08:54:b9:12:5a:23:ad:56:
ba:3e:7f:ef:d8:fe:c0:1c:cb:e0:48:75:3b:63:1a:61:cb:17:
bf:ec:b5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org