Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/E62ABE44894911EF9073889A762E951A.roa
File: E62ABE44894911EF9073889A762E951A.roa (raw, json)
Hash identifier: k6GFZjq/ELsn53EHDEC5SQsxDLcUbBpipfgt1mqiG8I=
Subject key identifier: D0:90:12:01:41:95:A3:C7:91:34:29:C3:2B:59:AF:04:A6:A0:36:FB
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 051D
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/E62ABE44894911EF9073889A762E951A.roa
Signing time: Sun 13 Oct 2024 09:59:56 +0000
ROA not before: Sun 13 Oct 2024 09:59:52 +0000
ROA not after: Sun 13 Apr 2025 09:59:52 +0000
asID: 3320
IP address blocks: 196.44.120.0/22 maxlen: 24
196.44.125.0/24 maxlen: 24
196.44.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.mft
rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1309 (0x51d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: Oct 13 09:59:52 2024 GMT
Not After : Apr 13 09:59:52 2025 GMT
Subject: CN=670b9a1c-f440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:52:02:46:db:ae:9e:59:03:70:fa:59:2a:86:
95:8a:56:80:b0:7d:37:94:2b:b8:f2:9d:d6:e7:52:
0f:64:8c:81:ee:56:8d:4e:f7:7d:0e:57:95:c0:c4:
3c:6b:df:f7:23:90:76:44:56:0f:95:ba:80:d8:4d:
49:e7:38:9f:de:99:fa:13:d7:ee:b1:e8:ce:67:30:
63:e8:e5:d8:34:44:a7:43:82:f2:98:67:5f:e7:9f:
9c:90:68:7a:ba:01:97:cb:00:05:b0:a6:98:71:db:
9d:dd:64:f9:e1:56:b0:23:6b:52:19:d8:94:65:92:
24:1d:d9:22:1d:8f:f9:66:01:d5:4c:47:f5:7c:da:
61:57:2e:7f:81:9f:5c:dd:bf:f7:dd:5e:f4:9a:4f:
64:55:25:30:f2:c7:1b:bf:cd:47:f0:9b:d4:fe:38:
9f:93:a2:cd:31:2d:b0:7f:01:29:e8:1e:0a:ff:38:
2e:fa:f5:a9:05:a6:e3:d7:ef:45:13:cc:4d:02:b8:
df:e0:40:c2:a7:fe:fa:27:86:0d:ad:63:0e:d6:38:
31:f7:2d:bd:ef:38:31:66:ea:e5:93:14:cf:7f:8e:
7d:91:06:fd:59:5d:b7:97:85:ad:f7:7d:55:d4:80:
10:bb:0c:4e:53:f9:d6:6a:34:10:b7:61:81:6e:e7:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:90:12:01:41:95:A3:C7:91:34:29:C3:2B:59:AF:04:A6:A0:36:FB
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/E62ABE44894911EF9073889A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.120.0/22
196.44.125.0/24
196.44.127.0/24
Signature Algorithm: sha256WithRSAEncryption
63:48:68:cd:6e:5b:73:8c:50:d3:be:74:fa:9c:4a:dc:2d:d2:
cf:44:37:8a:10:3a:d4:09:69:8d:7d:ed:7b:78:0a:95:4d:47:
a9:9c:e1:f2:49:7d:d7:13:04:e5:40:9f:3e:68:65:ea:68:59:
64:1e:d8:87:e4:1c:6e:46:ea:4d:e2:1e:a3:b6:16:0b:06:1f:
b7:ca:12:12:50:00:59:2b:36:aa:6e:a5:53:ce:f0:c6:a2:cb:
c6:4d:44:f8:14:a1:20:f4:7b:ee:1f:87:33:a6:dd:1c:d2:be:
b9:cd:b5:6f:76:72:d2:7b:da:a1:2c:cb:de:88:a5:69:98:c8:
22:be:b5:33:ad:ff:9b:d3:f3:56:6b:6d:41:d1:64:46:6d:b9:
97:01:e5:3b:0b:5c:bc:26:36:7f:58:24:fb:ac:fd:be:2c:d4:
d5:29:c3:b7:f2:e0:b4:1d:0d:b6:9b:b8:f4:53:da:77:f2:35:
83:a3:d7:97:2b:c9:9c:c5:f1:31:2b:b2:f9:e7:72:3a:34:54:
12:1f:ef:d9:a4:b9:2c:22:d4:c1:6e:4c:89:dd:fa:2f:1c:ef:
1d:22:1d:d0:7a:7c:bc:a9:12:3f:b0:23:71:33:a0:4d:36:13:
0c:22:78:36:0d:bb:83:8c:25:79:38:b2:d4:ea:17:6f:02:08:
67:a1:ef:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org