Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/3BB9461C0A9A11EEB90FD5294AD9E6FC.roa
File: 3BB9461C0A9A11EEB90FD5294AD9E6FC.roa (raw, json)
Hash identifier: Tae9uYsJEm2EQyNZaJjgk20CLEDDhMv3lRYM23y3kYM=
Subject key identifier: F6:4C:21:6C:6F:93:26:4D:0B:F4:64:15:A2:8A:A7:68:3D:2A:00:F3
Certificate issuer: /CN=F36FE536AF/serialNumber=7B5895FF6900470AA81A342DE5F971E5D3C74777
Certificate serial: 1A
Authority key identifier: 7B:58:95:FF:69:00:47:0A:A8:1A:34:2D:E5:F9:71:E5:D3:C7:47:77
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/3BB9461C0A9A11EEB90FD5294AD9E6FC.roa
Signing time: Wed 14 Jun 2023 10:00:04 +0000
ROA not before: Wed 14 Jun 2023 10:00:00 +0000
ROA not after: Mon 15 Jun 2026 10:00:00 +0000
asID: 37358
IP address blocks: 154.117.128.0/18 maxlen: 18
154.117.137.0/24 maxlen: 24
154.117.145.0/24 maxlen: 24
154.117.148.0/24 maxlen: 24
154.117.152.0/24 maxlen: 24
154.117.154.0/24 maxlen: 24
154.117.155.0/24 maxlen: 24
154.117.158.0/24 maxlen: 24
154.117.161.0/24 maxlen: 24
154.117.165.0/24 maxlen: 24
154.117.168.0/24 maxlen: 24
154.117.175.0/24 maxlen: 24
154.117.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.mft
rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE536AF/serialNumber=7B5895FF6900470AA81A342DE5F971E5D3C74777
Validity
Not Before: Jun 14 10:00:00 2023 GMT
Not After : Jun 15 10:00:00 2026 GMT
Subject: CN=64898fa4-f7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7b:7a:c1:96:f1:95:95:1b:c3:43:3b:a1:88:
1f:e4:ab:2e:e2:f7:d0:45:d2:a4:38:34:40:60:ba:
60:ad:b4:16:0b:0d:98:77:62:88:81:f5:ac:bf:35:
77:36:8e:ba:27:01:20:13:f4:38:4a:4f:6f:04:a5:
e0:f6:9b:4f:24:98:31:61:fb:64:33:01:5b:67:a1:
9a:d9:5b:82:b4:de:87:a9:0e:cc:54:64:f7:20:af:
ff:f7:f3:0e:e8:c5:46:04:af:60:78:a1:45:df:f3:
96:7a:3a:04:7c:a0:0f:fc:64:80:b6:fa:e4:48:94:
30:48:d0:a4:d3:6f:fc:b6:8d:75:e5:29:54:22:d2:
81:a5:ad:b4:a0:20:62:02:45:e8:7b:2a:18:e2:c9:
ab:92:a1:ef:1e:21:8b:e6:71:6f:f1:81:cf:f7:dc:
91:24:0c:02:a8:d6:0c:9f:32:71:f3:f0:42:5d:a6:
1a:ef:a6:bf:b6:1c:9e:e4:a8:24:c5:28:d8:46:b6:
34:2e:aa:af:37:c2:2d:ff:fb:c3:21:73:dd:d0:58:
24:38:aa:1c:0f:19:ef:c7:9b:fd:66:bc:0f:7e:a2:
f4:84:d0:16:02:48:1f:ee:2a:93:9e:0e:d6:dc:fc:
9f:09:8f:f5:c9:c4:72:e4:fd:3d:dc:af:2b:b7:81:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4C:21:6C:6F:93:26:4D:0B:F4:64:15:A2:8A:A7:68:3D:2A:00:F3
X509v3 Authority Key Identifier:
keyid:7B:58:95:FF:69:00:47:0A:A8:1A:34:2D:E5:F9:71:E5:D3:C7:47:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/e1iV_2kARwqoGjQt5flx5dPHR3c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e1iV_2kARwqoGjQt5flx5dPHR3c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE536/4A7E2C3EFDE911ED9A9DFA3A4AD9E6FC/3BB9461C0A9A11EEB90FD5294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.117.128.0/18
Signature Algorithm: sha256WithRSAEncryption
37:1d:b0:29:df:6e:b1:13:8b:49:5b:8a:1f:0a:fd:62:14:9f:
d4:34:c5:bf:c0:35:e5:59:3f:b9:5b:19:40:01:2f:c4:10:e4:
8d:df:a0:e2:85:09:4a:ec:9f:a0:ff:ec:13:88:26:34:3f:39:
45:4b:74:96:68:24:4f:cb:3c:6e:96:ab:57:ac:a3:32:aa:df:
38:e3:33:1f:0e:5f:a7:84:16:57:35:3d:b0:11:32:cf:d2:fb:
44:ca:28:48:a3:db:7f:39:7d:a5:22:53:24:f6:d8:a2:ee:d3:
23:0e:77:20:39:49:36:4c:d9:10:97:9e:2a:59:8a:8d:03:c3:
af:15:91:ba:1a:bc:92:50:0a:f5:27:06:ce:b6:00:6c:e8:f7:
89:89:cd:e7:15:c8:84:5f:14:e4:82:f9:72:a3:49:e6:6c:08:
a0:dc:cf:ac:43:2a:0a:2e:03:97:44:b9:51:4b:d2:e0:57:d7:
d7:59:66:49:d6:c3:94:e6:f7:c5:60:24:58:40:79:69:0e:ab:
f2:3b:16:db:ab:c3:6a:32:c1:87:33:64:25:ed:d4:4d:9e:09:
8c:40:85:92:be:40:95:13:5a:93:cf:66:20:c4:1d:d0:2c:19:
97:4d:b8:7e:a8:20:95:89:71:d7:57:b4:9b:ce:3d:2f:4d:69:
49:ef:be:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:37 2024 by rpki-client on console-fra.rpki-client.org