Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/48AE0434E81B11EE876ADDC6775412E6.roa
File: 48AE0434E81B11EE876ADDC6775412E6.roa (raw, json)
Hash identifier: wJr/eaxq68q6pHClMi9x3b4zYhBKBXGZVN5loE10NCg=
Subject key identifier: 38:25:D9:D5:B6:62:B0:75:4C:0C:E6:31:61:7A:14:32:11:0B:56:32
Certificate issuer: /CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Certificate serial: 9F
Authority key identifier: D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/48AE0434E81B11EE876ADDC6775412E6.roa
Signing time: Fri 22 Mar 2024 07:10:38 +0000
ROA not before: Fri 22 Mar 2024 07:10:34 +0000
ROA not after: Tue 22 Mar 2044 07:10:34 +0000
asID: 36962
IP address blocks: 41.223.116.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.mft
rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159 (0x9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Validity
Not Before: Mar 22 07:10:34 2024 GMT
Not After : Mar 22 07:10:34 2044 GMT
Subject: CN=65fd2eee-bc2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:eb:40:d8:af:63:17:70:76:ec:f4:0a:9c:96:
2f:8c:80:2e:a0:14:29:77:64:71:88:9f:98:26:7e:
6c:a2:df:5a:51:4c:ee:82:18:44:cc:ae:97:1e:26:
33:5d:e5:a2:64:d3:5b:21:81:ee:e6:6c:10:f5:7a:
24:88:f3:c9:45:04:fb:2e:4b:ba:25:42:5e:68:a0:
91:b2:a0:4a:39:f5:5a:cf:a3:f3:d9:5f:b3:37:71:
0a:98:82:9a:c1:f2:f3:b0:99:99:70:47:c8:7a:da:
e5:7e:51:25:33:39:9a:fd:ca:2c:2e:5d:73:6d:6a:
7b:42:98:3a:2b:11:97:98:7e:02:b9:b5:1e:0c:04:
68:e3:53:49:c3:1e:b4:5c:a5:07:9c:75:83:b9:34:
7c:84:9c:d5:a5:0b:72:50:38:51:d7:a9:ab:65:e6:
c9:af:3f:ae:56:6d:c4:28:90:ab:ca:e6:16:8d:15:
79:dc:5f:ba:9f:47:64:92:bb:c6:b5:3d:3e:e5:15:
03:0d:05:5c:2c:97:2e:be:70:da:b2:84:ab:20:7f:
70:f3:9a:8f:65:d3:bf:7d:e1:75:e3:74:20:4e:89:
c2:03:3d:7a:43:41:ca:ab:df:f2:81:0b:95:5e:96:
6a:88:e6:41:e7:ae:7d:e4:1e:13:ed:6a:3b:88:d2:
a6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:25:D9:D5:B6:62:B0:75:4C:0C:E6:31:61:7A:14:32:11:0B:56:32
X509v3 Authority Key Identifier:
keyid:D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/48AE0434E81B11EE876ADDC6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.116.0/22
Signature Algorithm: sha256WithRSAEncryption
03:83:11:db:ad:51:ed:82:3b:73:99:86:24:55:ba:ee:a5:0a:
61:c7:9d:e7:0d:50:3f:4b:e2:1f:08:ef:f2:48:5e:cc:16:fa:
1d:ec:ba:dd:d5:14:fc:0e:e9:df:79:8c:08:c7:9b:c8:c6:bd:
f8:14:08:77:46:59:b3:74:1f:c8:80:08:18:04:d1:68:fd:7f:
84:da:a1:19:45:b1:e1:ec:4d:31:41:51:9f:c0:2c:58:ce:b0:
ad:12:5b:90:99:1b:0a:0b:5c:4b:5b:4d:b8:4d:19:d3:24:c7:
1b:be:7a:0e:d8:72:65:35:3b:8a:76:55:72:58:6e:78:85:e6:
3f:1c:a5:f4:3a:ae:f7:01:ac:95:c0:a1:f4:aa:90:55:cd:69:
f3:f7:6a:42:05:47:4b:ef:2b:05:13:5c:19:8f:40:02:27:4d:
7b:5c:39:99:86:6c:b1:b4:8c:8c:02:ca:f4:c3:05:98:e8:3b:
11:a5:30:8e:01:74:65:aa:ab:a1:e4:73:96:c6:b2:51:ac:bd:
af:2e:46:51:84:a4:ba:84:7f:ce:db:ce:10:de:a4:dd:0f:5c:
ac:95:71:8c:9b:f2:50:49:a1:b1:4d:b1:3f:c5:67:2e:f7:18:
0f:f2:ea:42:33:eb:5a:a5:22:02:1f:3b:87:ae:13:30:09:b5:
9c:d9:3f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org