Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/6E9310449EAA11EBB4E64442F8AEA228.roa
File: 6E9310449EAA11EBB4E64442F8AEA228.roa (raw, json)
Hash identifier: Hv+jSs3D/YdVMnFhqJVvMuYCEdqqrHrk+9Aqx/UNgKo=
Subject key identifier: 8E:69:E1:56:AB:5D:E8:32:BD:50:89:74:35:20:64:4A:8C:F9:D2:4A
Certificate issuer: /CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Certificate serial: 10
Authority key identifier: DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/6E9310449EAA11EBB4E64442F8AEA228.roa
Signing time: Fri 16 Apr 2021 11:54:01 +0000
ROA not before: Fri 16 Apr 2021 11:53:55 +0000
ROA not after: Wed 16 Apr 2031 11:53:55 +0000
asID: 37053
IP address blocks: 41.74.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.mft
rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Validity
Not Before: Apr 16 11:53:55 2021 GMT
Not After : Apr 16 11:53:55 2031 GMT
Subject: CN=60797ad8-1ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fb:92:8c:3b:9f:6c:70:65:f0:0f:cc:00:0a:
ff:0f:18:4b:bf:05:67:1f:93:85:ed:70:48:d8:82:
3b:9f:d1:39:3c:ee:7b:95:ee:98:5d:ee:ab:30:66:
20:b1:43:52:4b:fa:b3:e8:7b:83:80:24:d5:a2:ab:
68:f4:be:43:6e:0c:7a:31:e5:8a:44:97:1b:ac:97:
99:93:d5:d3:6f:00:f4:1e:76:6b:c3:6a:55:df:56:
87:22:90:5a:29:1d:93:83:c0:e3:bd:49:e0:ca:8a:
d6:92:bb:1f:cc:70:a8:c1:10:5a:6b:7a:c6:4d:26:
f2:42:f1:4f:63:5d:dc:fb:a4:c7:01:aa:f9:f2:54:
9c:1d:bf:62:56:3e:cb:8c:03:55:cc:87:8c:21:b5:
50:f9:ce:06:88:76:00:f4:52:e3:70:c0:21:b9:d1:
f3:30:0c:9e:1a:2e:de:d3:fd:28:cf:89:c5:c8:55:
12:10:3e:12:5b:cf:c2:97:50:24:62:9a:7f:70:32:
c1:ef:8f:13:fb:6e:cf:ab:0e:a3:82:a4:1f:25:5b:
02:e6:eb:36:95:e6:46:ef:9d:ba:8a:45:d2:52:a9:
cd:f0:7a:53:8d:49:6f:19:f7:87:f8:31:a1:0f:e4:
1e:13:6e:59:66:5f:44:69:f3:f4:26:df:f7:27:e6:
5c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:69:E1:56:AB:5D:E8:32:BD:50:89:74:35:20:64:4A:8C:F9:D2:4A
X509v3 Authority Key Identifier:
keyid:DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/6E9310449EAA11EBB4E64442F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.74.176.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:ca:32:a1:82:87:18:68:0d:ad:7d:9e:69:43:84:15:b1:43:
46:fc:a5:ce:81:a5:b4:ed:7d:89:e6:27:f9:52:a7:bf:58:44:
42:12:ad:32:b1:7c:c9:f1:81:57:6d:d6:35:aa:de:4b:a5:b1:
58:a3:27:da:44:2c:01:41:79:45:7d:18:bf:26:2d:a6:a6:72:
99:82:52:bb:4a:99:0c:6a:76:58:67:07:ec:1b:68:ce:a2:67:
fb:0f:ff:78:4e:28:b2:18:7c:4a:f0:c0:63:e4:53:cb:ac:90:
d1:8e:be:ed:fe:46:73:b3:bb:82:9f:6c:98:61:9e:de:30:23:
49:eb:27:70:71:bc:a2:e5:d3:25:51:38:b6:a9:73:66:f3:93:
25:f5:88:5a:62:9f:4e:13:a8:c1:7a:62:f1:c3:73:10:25:7c:
77:6f:a7:ff:c4:5c:14:79:1a:94:62:ef:fc:6e:cc:21:89:56:
af:3a:49:73:f6:43:b2:e4:0a:62:7a:7b:d6:03:0c:1b:5c:7b:
46:8b:cc:67:9c:31:ae:6d:b1:52:61:60:5a:72:ad:a8:c4:64:
c6:a0:c6:10:ea:16:b7:17:80:75:a2:f0:be:f1:5f:d8:1a:e0:
45:2f:b8:2f:ec:50:b0:b2:cc:e4:c8:b9:38:03:ad:9e:21:50:
47:ab:c8:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org