Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/2836E3E2983811EFB48AAD6F762E951A.roa
File: 2836E3E2983811EFB48AAD6F762E951A.roa (raw, json)
Hash identifier: ilc1+7HG6/OhpNZjczTeMOkT7vcZALpZGaGEFuomW1E=
Subject key identifier: E6:B3:88:A4:9E:08:73:5C:B2:EF:74:70:A8:ED:AA:77:BC:9C:12:DF
Certificate issuer: /CN=F36FC75CAF/serialNumber=B2763D504C5AF9FB75D9AEB6072422F87A1A6BF6
Certificate serial: 02
Authority key identifier: B2:76:3D:50:4C:5A:F9:FB:75:D9:AE:B6:07:24:22:F8:7A:1A:6B:F6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/snY9UExa-ft12a62ByQi-Hoaa_Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/2836E3E2983811EFB48AAD6F762E951A.roa
Signing time: Fri 01 Nov 2024 10:00:43 +0000
ROA not before: Fri 01 Nov 2024 10:00:39 +0000
ROA not after: Thu 30 Nov 2034 10:00:39 +0000
asID: 37087
IP address blocks: 41.191.96.0/22 maxlen: 22
41.191.96.0/24 maxlen: 24
41.191.97.0/24 maxlen: 24
41.191.98.0/24 maxlen: 24
41.191.99.0/24 maxlen: 24
196.50.28.0/22 maxlen: 22
196.50.28.0/24 maxlen: 24
196.50.29.0/24 maxlen: 24
196.50.30.0/24 maxlen: 24
196.50.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/snY9UExa-ft12a62ByQi-Hoaa_Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/snY9UExa-ft12a62ByQi-Hoaa_Y.mft
rsync://rpki.afrinic.net/repository/afrinic/snY9UExa-ft12a62ByQi-Hoaa_Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC75CAF/serialNumber=B2763D504C5AF9FB75D9AEB6072422F87A1A6BF6
Validity
Not Before: Nov 1 10:00:39 2024 GMT
Not After : Nov 30 10:00:39 2034 GMT
Subject: CN=6724a6cb-0788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0c:86:c2:78:e0:ff:e8:6d:8b:89:27:c2:a4:
30:86:40:71:1f:dd:05:d4:87:95:c1:58:80:a7:67:
89:4b:cf:26:3b:41:43:00:96:50:55:5a:4a:65:cf:
31:52:61:04:90:08:62:70:14:43:5a:3a:74:76:e6:
f4:62:29:89:e1:27:9a:5e:ff:eb:f9:b0:db:fd:32:
dc:70:60:ad:60:d6:a6:23:a6:54:d5:a8:a7:30:5d:
bc:35:4e:dc:93:7d:af:e3:4c:db:62:93:b4:89:63:
29:d9:88:65:27:51:76:c5:1d:1c:74:fe:b7:68:dd:
a2:b0:c8:f5:1e:13:a1:55:1d:ce:72:fa:c3:f8:73:
e6:a5:5b:02:89:1f:b3:c1:cc:1c:29:42:54:3d:a0:
4e:eb:90:6e:89:6f:65:24:83:67:65:e6:db:5e:dd:
40:ef:39:7a:de:e6:60:bd:fd:45:da:ea:16:2e:16:
22:63:30:f5:e1:7c:ef:e0:49:b0:43:c1:26:65:70:
7c:fe:3a:b5:f2:1b:96:e8:58:f7:a7:d9:c4:0f:31:
3c:aa:ef:d4:98:7d:24:6d:c0:12:cc:ae:31:20:d7:
53:a1:3e:df:26:e0:94:f9:a9:1f:06:46:73:f1:ec:
5b:10:ad:e5:05:45:d4:a6:83:ed:5e:48:8a:2a:01:
22:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B3:88:A4:9E:08:73:5C:B2:EF:74:70:A8:ED:AA:77:BC:9C:12:DF
X509v3 Authority Key Identifier:
keyid:B2:76:3D:50:4C:5A:F9:FB:75:D9:AE:B6:07:24:22:F8:7A:1A:6B:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/snY9UExa-ft12a62ByQi-Hoaa_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/snY9UExa-ft12a62ByQi-Hoaa_Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC75C/9E14B5BE983611EFB97BD164762E951A/2836E3E2983811EFB48AAD6F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.191.96.0/22
196.50.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:1f:73:e0:97:f6:2b:32:22:65:67:15:d8:bd:8c:65:0b:7b:
83:b6:df:dd:df:06:ee:31:ad:3a:36:dc:84:29:ac:ad:b4:15:
f9:2d:27:ff:71:8a:79:78:8b:8a:9b:b0:40:61:e5:f1:a5:a6:
82:33:5c:50:8a:9e:65:fc:4d:9a:8f:2b:e9:7c:6b:6d:ec:09:
4e:30:66:e0:65:0a:d5:53:fc:05:4e:b7:16:67:1c:f4:e8:3c:
2c:20:13:96:7f:3b:b2:4c:4d:3a:4c:8b:24:59:b8:5c:b6:e6:
2b:31:56:dc:9f:b7:9c:04:40:ab:df:78:98:a9:c5:8d:3d:64:
41:bf:bf:7e:02:b5:d3:44:4c:a8:b1:3d:b4:13:37:1f:e1:9f:
61:89:30:7a:47:5a:05:f7:ee:fc:29:fd:1d:82:69:0f:e8:21:
a0:84:78:04:84:4c:fa:30:07:77:2c:93:4f:9a:a8:6a:f8:22:
ec:48:24:e4:9e:be:d8:99:67:0c:e3:c2:f3:05:06:b5:76:bf:
16:4f:25:fa:bc:8e:e3:db:96:a1:7c:3d:d8:69:39:ea:df:38:
fb:cb:f5:8f:1f:fd:ce:06:1c:39:24:7b:a5:7a:98:65:e7:42:
d9:43:4f:24:f1:27:63:78:2c:17:e2:b5:04:64:c8:7f:e5:c7:
47:13:74:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org