Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/56367EDE95B211EF8FC62C8A762E951A.roa
File: 56367EDE95B211EF8FC62C8A762E951A.roa (raw, json)
Hash identifier: IGZwS70FkhCqGZrmAKx1+LfaU03w22Y03KIBxJ9X5n8=
Subject key identifier: 54:01:7F:F6:5B:62:0E:2C:C4:BD:53:C6:CE:11:99:03:51:49:54:38
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 4A
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/56367EDE95B211EF8FC62C8A762E951A.roa
Signing time: Tue 29 Oct 2024 04:57:45 +0000
ROA not before: Tue 29 Oct 2024 04:57:42 +0000
ROA not after: Sun 29 Oct 2034 04:57:42 +0000
asID: 37680
IP address blocks: 154.0.6.0/24 maxlen: 24
154.0.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74 (0x4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Oct 29 04:57:42 2024 GMT
Not After : Oct 29 04:57:42 2034 GMT
Subject: CN=67206b49-b32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:d5:1d:97:f8:2f:6b:7b:3e:d8:60:0a:3f:
45:2b:f4:6c:0f:78:d6:9e:00:a3:ee:e7:18:a1:39:
b6:ee:cf:e8:05:53:57:38:a0:88:d6:f7:1c:f9:e6:
95:d3:f1:b2:59:0c:b5:f8:34:2f:89:31:42:14:5d:
a3:f8:16:66:ce:ef:aa:6d:82:3c:2b:9b:53:e9:68:
83:eb:40:81:e6:a7:25:74:a3:63:e6:d2:9f:45:23:
2b:d7:eb:28:40:a2:03:8f:cd:55:6b:0f:f3:d6:5f:
21:0a:bb:c6:77:7e:f5:0b:a8:11:2c:83:cc:f2:23:
92:ac:8e:6b:03:40:d7:29:9d:31:74:de:06:b2:a1:
1a:39:f4:bb:28:65:b1:46:8b:86:ec:19:59:46:cb:
88:21:13:56:39:85:19:92:b9:96:1f:65:f2:94:4d:
f1:d5:7e:78:bb:07:22:c6:91:ad:a9:0e:10:35:6d:
0f:24:ee:e6:db:f8:c8:9b:90:8e:8e:8f:4e:c6:74:
25:85:8b:b9:5c:a5:e5:e3:42:73:ff:fd:49:c3:e7:
20:2b:f7:d7:0b:5b:0b:9e:1c:e1:92:31:1e:1a:a0:
4f:4d:09:58:f9:f3:4e:18:21:05:17:1a:16:be:a0:
6a:9a:d3:1b:e6:bc:27:5f:ff:9a:4a:3c:2c:1f:67:
c6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:01:7F:F6:5B:62:0E:2C:C4:BD:53:C6:CE:11:99:03:51:49:54:38
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/56367EDE95B211EF8FC62C8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.0.6.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:ee:16:69:aa:34:2e:d1:7d:4f:9b:a8:1f:fb:70:fc:7f:79:
e4:1b:26:4e:ad:a6:ae:06:b4:f1:a5:5a:f2:e9:ae:9d:8c:0d:
5c:f2:42:ee:aa:c0:a0:3e:3d:cf:85:24:9a:cf:5d:17:3e:65:
75:8a:41:0d:50:a9:7d:b4:37:26:92:bb:85:97:92:dc:a5:aa:
41:55:62:3f:77:81:e6:7f:52:ec:77:56:55:03:d1:8c:39:68:
0d:b2:fd:5e:7b:3f:bc:88:16:1b:95:4b:e7:3e:8d:14:79:aa:
88:28:26:d8:f1:ab:14:10:52:aa:f8:c9:ca:73:22:3c:dd:4a:
30:40:45:00:58:05:7e:25:38:25:bc:88:b8:27:b5:0c:15:c0:
15:8b:d5:63:2a:55:fd:b7:e7:88:56:a4:6a:5d:ce:4e:e9:e5:
f2:aa:13:ff:f6:d9:79:c5:eb:e6:af:81:d0:9f:dc:e2:a1:4c:
91:e8:bf:4d:f0:65:be:1c:00:9c:ce:41:b1:89:d3:fa:42:1b:
b4:42:c6:ce:fe:c4:ff:f6:a8:31:43:de:1a:21:99:1f:d0:a6:
c9:20:69:97:bb:9d:0e:ab:16:77:79:4f:b6:92:96:35:67:ad:
d8:85:6f:d0:cb:c1:ff:8c:32:0e:a0:55:7e:8a:6f:b3:68:21:
ab:23:59:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:33 2024 by rpki-client on console-ams.rpki-client.org