Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/EF3DCDA6C11F11EAAC3FD985F8AEA228.roa
File: EF3DCDA6C11F11EAAC3FD985F8AEA228.roa (raw, json)
Hash identifier: BzM1IEUZwfKoV+6np+K+8w9pchQT/TrD2qSvldsz9X0=
Subject key identifier: C2:BD:7F:44:BF:EA:77:9F:01:3C:8C:1E:63:57:BF:24:89:FF:4C:70
Certificate issuer: /CN=F36FDE36AF/serialNumber=06E1BC8D2D3415B27909F2A9A5441C50F75009F7
Certificate serial: 02
Authority key identifier: 06:E1:BC:8D:2D:34:15:B2:79:09:F2:A9:A5:44:1C:50:F7:50:09:F7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BuG8jS00FbJ5CfKppUQcUPdQCfc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/EF3DCDA6C11F11EAAC3FD985F8AEA228.roa
Signing time: Wed 08 Jul 2020 13:35:49 +0000
ROA not before: Wed 08 Jul 2020 13:35:43 +0000
ROA not after: Tue 08 Jul 2025 13:35:43 +0000
asID: 11845
IP address blocks: 196.3.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/BuG8jS00FbJ5CfKppUQcUPdQCfc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/BuG8jS00FbJ5CfKppUQcUPdQCfc.mft
rsync://rpki.afrinic.net/repository/afrinic/BuG8jS00FbJ5CfKppUQcUPdQCfc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FDE36AF/serialNumber=06E1BC8D2D3415B27909F2A9A5441C50F75009F7
Validity
Not Before: Jul 8 13:35:43 2020 GMT
Not After : Jul 8 13:35:43 2025 GMT
Subject: CN=5f05cbb5-4da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:64:36:8e:22:c2:54:5f:4d:cd:2b:01:1e:c8:
c6:a5:41:aa:53:74:c1:a5:61:d6:58:04:4b:3c:34:
8c:50:7a:31:6c:d7:e2:8d:41:ec:13:4a:98:aa:27:
22:66:4b:0e:07:ee:67:2f:a4:d8:82:eb:83:dc:3c:
51:40:3b:bd:a5:13:2c:b6:16:be:30:42:5f:16:45:
7a:dd:0b:60:c2:cc:10:14:6b:97:c1:7d:a2:02:63:
d9:ec:a5:9f:e3:d4:ec:2b:b8:d5:17:ae:5e:69:52:
54:57:79:1c:02:e5:cb:4a:35:d7:d6:71:b9:89:14:
fb:c1:f3:33:d0:39:dd:f7:54:a2:9e:0d:d0:0a:ee:
95:99:d8:38:bb:12:63:94:72:02:bb:2e:73:0b:ab:
03:af:49:2c:66:74:b2:2b:32:26:d5:89:94:03:31:
a3:fd:4f:7c:50:58:c8:6c:bb:58:cc:47:b4:f6:92:
13:73:f6:36:d6:84:d0:67:7f:97:86:a1:ac:e0:0f:
9d:f5:42:8c:0d:27:d3:83:8e:70:d6:82:ff:c0:aa:
ec:f5:c2:ae:76:74:36:da:b7:06:10:d6:bd:08:c9:
db:ae:78:29:5c:e6:ff:47:35:f5:74:7b:54:7e:95:
54:33:e1:3d:af:e0:2e:b4:8f:1a:6f:86:23:40:b0:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BD:7F:44:BF:EA:77:9F:01:3C:8C:1E:63:57:BF:24:89:FF:4C:70
X509v3 Authority Key Identifier:
keyid:06:E1:BC:8D:2D:34:15:B2:79:09:F2:A9:A5:44:1C:50:F7:50:09:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/BuG8jS00FbJ5CfKppUQcUPdQCfc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BuG8jS00FbJ5CfKppUQcUPdQCfc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDE36/76CDA4B8C11F11EA93036785F8AEA228/EF3DCDA6C11F11EAAC3FD985F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.3.105.0/24
Signature Algorithm: sha256WithRSAEncryption
49:29:76:d7:0a:d3:01:aa:aa:89:58:1f:16:3a:08:76:30:a4:
5a:51:cd:06:5a:9d:46:1f:08:d1:bb:f0:53:12:5c:39:2d:90:
ba:12:36:55:74:15:a6:cc:ae:99:b2:80:8c:16:47:c8:d8:5c:
65:9c:d2:88:3a:62:1d:9c:2d:87:aa:a5:93:cf:a1:64:cc:26:
e9:9b:5f:6c:0c:06:fa:5a:c0:67:90:ee:5b:d4:53:79:3e:f6:
1f:3f:e7:21:e2:20:a8:b8:e3:a6:cb:30:48:31:8b:7b:ca:70:
47:6b:43:03:eb:9c:2a:19:3a:a3:a7:14:55:3d:5e:99:74:12:
a4:60:ee:4d:fe:ca:0f:4b:11:0b:b5:c9:b5:59:36:67:78:d7:
39:d3:e5:63:3e:3d:fc:f4:2f:c8:36:7d:90:52:42:10:b2:e7:
b7:bd:67:86:e2:61:d4:ed:67:f1:cd:29:54:a9:e2:f0:a6:7a:
f3:74:6a:af:3b:70:5d:b8:9e:41:62:d9:97:ac:46:c5:69:a4:
c5:eb:fe:6a:17:be:3f:bd:4b:75:84:93:78:5e:07:3d:8c:98:
fb:fa:a1:dc:7f:fe:68:43:d5:3a:ed:16:35:71:ef:5d:a9:47:
cd:ae:ec:32:ea:7b:0b:d9:d6:41:59:84:72:4e:0e:49:8b:7e:
dc:6f:37:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org