Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/8BDFF64E9EAA11EB9E498842F8AEA228.roa
File: 8BDFF64E9EAA11EB9E498842F8AEA228.roa (raw, json)
Hash identifier: zV3obduva5V+wbQ0DLEaMrifvrDZUFDKELgGrlIfqWQ=
Subject key identifier: 45:53:59:D7:89:BB:58:0E:B3:C4:DB:15:B2:E7:68:A5:10:5D:BE:19
Certificate issuer: /CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Certificate serial: 12
Authority key identifier: DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/8BDFF64E9EAA11EB9E498842F8AEA228.roa
Signing time: Fri 16 Apr 2021 11:54:49 +0000
ROA not before: Fri 16 Apr 2021 11:54:46 +0000
ROA not after: Wed 16 Apr 2031 11:54:46 +0000
asID: 37053
IP address blocks: 41.215.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.mft
rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Validity
Not Before: Apr 16 11:54:46 2021 GMT
Not After : Apr 16 11:54:46 2031 GMT
Subject: CN=60797b09-c7c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:31:ed:46:ef:db:e0:3e:e6:45:34:ba:80:
31:2a:9e:32:78:42:4c:38:cc:da:be:d9:3e:54:d3:
5f:8a:72:97:e9:49:f9:d8:40:0f:40:c9:89:bf:30:
46:fe:d1:f5:ed:de:fa:e8:a0:16:d1:e7:81:a7:b7:
6f:8d:84:7e:70:c6:87:02:45:1a:82:92:a1:c9:bc:
b2:60:88:23:a6:69:f2:7b:58:70:9a:0e:2a:00:98:
84:fc:e2:cf:0a:f0:ab:d6:d7:d6:08:60:d5:06:45:
59:3c:cd:69:36:f7:3b:9f:71:28:56:a9:1c:5b:82:
54:89:2a:25:1b:c7:0d:ff:a9:a0:07:48:67:ea:8f:
ab:7e:34:53:71:83:1f:f3:f0:bf:90:d2:9b:de:7b:
90:c2:f2:f4:7e:02:18:64:17:e8:e3:0b:b1:f4:a8:
28:bf:ce:3b:e8:ae:82:e3:d1:a4:40:39:9c:58:69:
ce:40:3c:c9:bb:b5:ac:dd:d6:50:bb:2e:2e:82:1d:
b8:53:07:b4:47:73:02:01:83:c8:12:0d:21:cf:b9:
61:17:93:80:b4:c3:72:b1:c5:c2:d8:51:af:e5:47:
68:0f:8a:0b:22:c2:0f:ae:43:cb:c1:01:0a:8a:30:
4b:d7:67:0f:13:ab:2a:11:4d:dc:b3:84:f5:c4:db:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:53:59:D7:89:BB:58:0E:B3:C4:DB:15:B2:E7:68:A5:10:5D:BE:19
X509v3 Authority Key Identifier:
keyid:DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/8BDFF64E9EAA11EB9E498842F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.215.232.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:20:e3:ec:5f:1f:30:e9:18:8c:65:db:de:1a:2e:1f:af:ee:
8d:16:4a:2a:e1:c3:00:71:98:78:0a:99:e0:e1:dd:c5:16:0b:
d3:1d:11:e3:32:0b:cd:68:39:ba:0a:78:da:d4:2a:18:4c:3b:
84:2d:9c:8c:a3:90:d3:aa:b9:2b:6d:d3:d6:f1:b8:0c:65:5a:
2d:0a:4f:db:70:c2:e6:c6:a4:64:83:db:27:44:a9:b1:61:aa:
de:87:ec:89:4c:5a:00:5b:f3:87:24:3e:7c:fa:4b:64:86:b0:
35:1f:9c:66:4d:09:b6:28:c9:8e:b6:83:24:70:4d:8b:b7:cd:
1e:62:6f:fa:5b:42:86:3d:45:90:d3:65:83:fe:0a:50:06:73:
90:27:1c:a6:8a:cb:e4:d1:44:1e:a9:b1:f4:e1:59:03:ed:c6:
f8:19:db:36:9c:bc:b0:21:0b:87:c1:19:b7:b1:d0:9f:47:6a:
9f:ec:fd:3d:a0:53:ac:d4:a5:5e:4f:3c:b3:67:85:dd:5f:5d:
a5:03:4f:5e:16:47:35:71:e4:d5:1d:cd:e7:98:62:79:59:29:
a8:1c:69:09:14:da:be:26:bc:85:44:d1:0d:64:14:40:31:e8:
fd:71:d2:5f:b7:4e:8e:54:4a:13:c3:68:76:ce:16:ad:2d:2c:
9b:f7:bc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org