Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/4D1819725C0C11EBB458D830F8AEA228.roa
File: 4D1819725C0C11EBB458D830F8AEA228.roa (raw, json)
Hash identifier: Y5bEDudGZy2SxFSFnv47v/c/OeLSoqXcxTY9JA/Rm5g=
Subject key identifier: 57:50:89:CF:EE:CF:E7:4C:18:72:90:41:77:31:2D:39:5F:A4:AD:86
Certificate issuer: /CN=F362FF17AF/serialNumber=9CD41396ABCF9BB9EFF6E26855324F83C59DC69A
Certificate serial: 3D
Authority key identifier: 9C:D4:13:96:AB:CF:9B:B9:EF:F6:E2:68:55:32:4F:83:C5:9D:C6:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/4D1819725C0C11EBB458D830F8AEA228.roa
Signing time: Thu 21 Jan 2021 17:15:47 +0000
ROA not before: Thu 21 Jan 2021 17:15:43 +0000
ROA not after: Tue 21 Jan 2031 17:15:43 +0000
asID: 6453
IP address blocks: 41.206.184.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.crl
rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.mft
rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362FF17AF/serialNumber=9CD41396ABCF9BB9EFF6E26855324F83C59DC69A
Validity
Not Before: Jan 21 17:15:43 2021 GMT
Not After : Jan 21 17:15:43 2031 GMT
Subject: CN=6009b6c3-d248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:52:32:58:92:ea:a3:8b:bf:ce:13:bb:b7:3c:
c6:65:a1:cf:31:1e:35:84:84:98:31:69:bd:33:e0:
f0:15:73:02:2a:1c:73:bc:35:d5:9d:56:6c:c1:a9:
08:aa:53:19:c7:e9:6d:23:c2:47:45:62:0b:fe:78:
34:c3:ad:02:f1:f1:b7:7f:fb:f7:e6:62:e2:e3:fb:
64:2e:8d:b0:ee:d4:b7:df:a9:8c:6a:8c:89:99:f7:
6a:8e:3e:b6:ab:f3:f2:a6:95:29:5e:6b:5c:9d:40:
d0:38:07:20:07:7c:b3:39:76:bb:1f:db:69:4c:77:
e4:c3:f5:d1:91:01:81:96:77:79:df:a4:78:a7:62:
12:fa:18:61:2b:2e:a3:08:e5:33:17:b4:6d:78:bf:
90:6f:22:26:31:92:bd:f4:d7:b1:d1:91:02:4c:34:
51:c4:17:15:c0:c8:9e:07:10:51:be:b5:67:0d:17:
14:1b:e2:7f:38:b5:e7:33:f6:0d:2a:a3:e2:6c:9e:
10:b5:d1:6f:20:89:b3:70:e3:e4:67:f4:bd:e4:82:
34:21:3f:45:a7:92:5c:f7:3a:15:f5:a7:ec:37:b0:
dc:f0:02:7a:88:b3:f9:1a:24:21:cf:c0:0a:ce:0d:
a4:22:a6:b6:8e:74:a9:f4:6a:c1:8b:a9:c9:f7:8c:
03:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:50:89:CF:EE:CF:E7:4C:18:72:90:41:77:31:2D:39:5F:A4:AD:86
X509v3 Authority Key Identifier:
keyid:9C:D4:13:96:AB:CF:9B:B9:EF:F6:E2:68:55:32:4F:83:C5:9D:C6:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/4D1819725C0C11EBB458D830F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.206.184.0/23
Signature Algorithm: sha256WithRSAEncryption
20:35:95:e8:cf:7d:11:33:d7:6d:4b:f3:b3:61:68:77:f1:90:
b2:57:db:ca:27:9c:7a:38:52:f2:83:f6:bd:79:2a:62:b7:be:
b7:93:79:bb:ad:ad:d1:60:bf:f1:51:96:42:9d:9a:ef:21:39:
f1:b1:70:ee:e4:b5:ad:5c:fd:02:4e:73:ce:9c:d2:0d:61:8f:
a5:61:f9:4d:b0:34:6d:15:64:af:8e:41:75:fe:9f:83:4d:2e:
55:34:60:d4:80:bd:7c:37:2b:cc:2d:91:bc:c8:1b:9a:c2:2d:
04:ed:47:e2:c4:9f:02:9a:f7:1b:cc:65:a7:1c:7e:a6:22:d0:
50:ba:25:12:2c:8e:dc:2b:69:e9:5f:88:8a:b7:f2:c2:60:17:
4b:b7:48:60:4a:36:3c:5e:f5:1a:07:96:89:aa:7b:d7:3b:73:
64:4f:9a:79:c2:e6:ad:8d:16:ba:c8:c8:f1:a3:7d:30:56:5b:
d6:30:bf:be:23:78:53:4d:7a:95:e3:66:ca:03:2c:c0:4a:15:
55:b4:1a:9d:c0:0f:45:41:1b:6a:25:70:54:64:8b:cb:a9:f1:
57:a3:e0:31:b4:36:7b:5b:8d:11:c4:4d:73:4c:16:d1:18:da:
8d:01:3a:25:f6:e3:0f:b0:8d:00:a2:d9:0c:d7:68:64:a5:4a:
17:aa:18:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:52 2024 by rpki-client on console-fra.rpki-client.org