Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/B8CAC7A2985B11EFB8B2954E762E951A.roa
File: B8CAC7A2985B11EFB8B2954E762E951A.roa (raw, json)
Hash identifier: 0SM5T8NNVkyg9HDp47V5o7gPmb06fjxNsfa8bT7ZCeg=
Subject key identifier: D3:22:F2:7F:9E:DA:E9:E1:DE:21:62:BD:15:75:BB:D0:04:39:AD:95
Certificate issuer: /CN=F36FCA07AF/serialNumber=BC3DE1E9840080B83C65278CDEA85EA298829481
Certificate serial: 018E
Authority key identifier: BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/B8CAC7A2985B11EFB8B2954E762E951A.roa
Signing time: Fri 01 Nov 2024 14:15:18 +0000
ROA not before: Fri 01 Nov 2024 14:15:15 +0000
ROA not after: Fri 01 Nov 2030 14:15:15 +0000
asID: 0
IP address blocks: 196.60.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.mft
rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398 (0x18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FCA07AF/serialNumber=BC3DE1E9840080B83C65278CDEA85EA298829481
Validity
Not Before: Nov 1 14:15:15 2024 GMT
Not After : Nov 1 14:15:15 2030 GMT
Subject: CN=6724e276-2cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2e:e1:71:60:29:fd:bf:e3:b0:13:fb:87:f9:
55:b9:ad:17:2d:7a:a4:cb:df:73:7b:a0:12:7f:b6:
bd:73:d9:22:3b:65:c5:77:f4:7a:f0:74:60:ab:1f:
ff:98:3f:2d:9d:e6:e7:e4:76:0f:55:94:97:82:3b:
45:1f:8f:b7:ef:21:2f:0e:41:77:8b:0c:70:83:47:
74:fe:62:3c:37:18:5e:57:0f:09:ee:e9:47:90:6d:
d4:40:ff:12:42:c2:90:ad:53:3e:4b:8f:cd:6f:0c:
08:7e:a2:d4:65:8c:d6:7b:06:58:09:db:d0:df:39:
0e:14:5f:d7:f0:25:93:54:c7:1c:d3:88:be:d9:39:
cc:1a:67:98:5d:94:40:2d:e0:f0:85:11:b2:ab:d9:
ff:d4:8d:a7:77:e6:44:fb:b3:b9:0b:b0:0f:70:1d:
e6:26:46:d2:b5:e3:82:be:3c:65:9d:db:3d:6e:61:
25:d5:9b:2e:fe:8d:f7:ed:f0:fa:0e:a3:51:c6:a7:
e4:63:fc:3e:b0:80:1c:a8:56:93:73:46:8b:bf:3a:
d3:1d:9d:88:df:81:eb:d5:d6:68:68:8f:54:88:d7:
f0:2b:a4:33:38:86:25:c2:c8:9f:51:9f:4a:55:a8:
bc:e8:de:bc:cc:aa:39:bb:87:64:bb:d3:29:e6:ef:
48:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:22:F2:7F:9E:DA:E9:E1:DE:21:62:BD:15:75:BB:D0:04:39:AD:95
X509v3 Authority Key Identifier:
keyid:BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/B8CAC7A2985B11EFB8B2954E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.60.74.0/24
Signature Algorithm: sha256WithRSAEncryption
56:36:a2:32:61:45:09:58:b2:53:df:f6:a0:a0:7e:98:1d:95:
85:41:f2:f5:07:07:ee:67:a0:2d:ac:59:f7:7d:df:09:33:3b:
8b:ad:ef:7d:de:0f:91:02:aa:53:93:a1:00:fa:0a:f5:19:79:
4a:c2:08:0a:f3:a5:1a:4d:a9:76:42:c0:a2:8c:ed:36:d8:d1:
45:9a:30:80:e2:81:be:65:56:31:dc:69:ab:ac:16:7b:80:6d:
76:24:69:4a:d9:86:83:dd:fd:ca:bd:da:7b:b9:eb:e6:78:be:
f0:85:71:ae:6d:71:36:c3:dc:80:69:1c:03:1e:63:39:26:f5:
9d:3f:1a:6c:41:62:ff:62:7f:73:3f:c0:8f:6a:1c:a4:3c:60:
22:f9:24:39:7f:1c:35:c2:76:87:5a:a8:74:21:e2:54:61:bf:
1d:fa:32:08:25:3c:91:77:1b:bf:81:47:b2:7a:c0:3a:06:5c:
73:c3:b1:63:c9:8f:88:9b:6d:37:ec:47:e7:0d:ac:0a:83:e2:
0a:c4:7f:b6:f5:ba:9e:14:9f:ba:d1:a5:12:d3:ce:f7:c5:c5:
cc:e4:43:5c:52:c9:96:5e:f1:ec:30:52:f4:6d:e1:dd:47:93:
22:b9:24:61:2f:5f:3f:42:4b:57:93:54:43:eb:a9:83:db:0a:
23:64:88:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:21:29 2024 by rpki-client on console-ams.rpki-client.org