Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/81D2A93E986211EF8DC64A77762E951A.roa
File: 81D2A93E986211EF8DC64A77762E951A.roa (raw, json)
Hash identifier: XCH2tO5kEYMyiAwzUo8LnwXXodXNXur00bVM7AU5ZV0=
Subject key identifier: B3:49:B5:BB:CB:0A:A8:AA:D2:1E:35:0F:EA:DA:5E:EA:43:AA:84:EE
Certificate issuer: /CN=F363460FAF/serialNumber=255F6A203E4D4299976913A6F62DE8C48EEC93BD
Certificate serial: 02
Authority key identifier: 25:5F:6A:20:3E:4D:42:99:97:69:13:A6:F6:2D:E8:C4:8E:EC:93:BD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JV9qID5NQpmXaROm9i3oxI7sk70.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/81D2A93E986211EF8DC64A77762E951A.roa
Signing time: Fri 01 Nov 2024 15:03:52 +0000
ROA not before: Fri 01 Nov 2024 15:03:49 +0000
ROA not after: Sun 31 Dec 2034 15:03:49 +0000
asID: 36976
IP address blocks: 41.223.164.0/24 maxlen: 24
41.223.165.0/24 maxlen: 24
41.223.166.0/24 maxlen: 24
41.223.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/JV9qID5NQpmXaROm9i3oxI7sk70.crl
rsync://rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/JV9qID5NQpmXaROm9i3oxI7sk70.mft
rsync://rpki.afrinic.net/repository/afrinic/JV9qID5NQpmXaROm9i3oxI7sk70.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363460FAF/serialNumber=255F6A203E4D4299976913A6F62DE8C48EEC93BD
Validity
Not Before: Nov 1 15:03:49 2024 GMT
Not After : Dec 31 15:03:49 2034 GMT
Subject: CN=6724edd8-73dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e8:d6:ce:7b:cc:0b:87:70:26:db:25:07:b9:
34:35:ac:24:ab:6f:45:a5:34:28:25:ca:7b:20:38:
3f:87:94:7f:9f:34:87:6b:77:6c:b6:c0:9a:b0:a6:
15:c2:48:b8:8e:f6:07:92:1e:dd:c8:ee:65:c4:d7:
f1:18:34:12:d3:fe:61:dc:26:60:8f:e4:9d:28:f5:
0e:b7:0d:76:4d:48:68:b7:b1:16:f7:c5:c5:61:b3:
80:d1:81:68:c7:b1:79:56:85:55:86:5b:d3:5f:12:
84:e4:67:4e:d7:7f:23:c3:2b:7a:a0:a2:ed:ae:77:
e4:30:49:41:78:0f:d4:45:4d:17:4e:a9:2f:d5:28:
e4:47:07:1c:68:4b:42:c1:76:5e:dc:67:50:66:98:
b5:b2:61:0f:ea:71:0d:1a:25:75:7c:03:d7:a9:e3:
56:94:ed:f9:d4:fd:b9:3f:a3:1b:08:bb:f5:ba:a5:
3d:fd:2f:1a:b5:e1:ac:56:98:cb:fb:3a:d7:76:3e:
02:d0:6e:a7:22:72:2f:0b:bd:6c:eb:74:d1:df:ac:
b5:fe:e3:34:97:ff:92:ec:1c:c0:92:42:fb:9f:ca:
58:8d:a3:9e:af:d5:47:f6:14:6b:eb:40:05:db:84:
13:e5:19:76:ea:b0:f5:8b:9b:53:2d:3b:cf:11:46:
a5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:49:B5:BB:CB:0A:A8:AA:D2:1E:35:0F:EA:DA:5E:EA:43:AA:84:EE
X509v3 Authority Key Identifier:
keyid:25:5F:6A:20:3E:4D:42:99:97:69:13:A6:F6:2D:E8:C4:8E:EC:93:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/JV9qID5NQpmXaROm9i3oxI7sk70.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JV9qID5NQpmXaROm9i3oxI7sk70.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363460F/09B5B7B2986111EFBC3A7F6E762E951A/81D2A93E986211EF8DC64A77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.164.0/22
Signature Algorithm: sha256WithRSAEncryption
24:31:7e:5e:34:3f:53:59:8b:b0:7e:64:69:d0:14:12:1f:c8:
9e:05:06:47:32:14:58:c2:98:57:02:03:bd:c2:f1:bc:d0:cf:
e7:a3:aa:24:79:ea:f0:41:e1:a6:98:e7:d9:c6:05:6e:33:51:
57:15:75:42:0b:cf:7e:b2:b1:a2:46:15:d5:3b:07:4c:d8:73:
2f:bc:85:12:03:73:f2:d0:42:4f:dd:29:4b:a4:5f:f9:29:07:
4f:8c:21:d9:1b:3d:da:22:dc:34:f5:ce:28:7a:91:66:16:8a:
47:03:85:5e:a3:cc:a8:b4:bb:41:3d:22:13:56:79:7e:b4:6e:
6a:69:63:e1:e0:88:d0:48:d9:8a:3a:e9:e2:d5:d7:33:a9:d3:
e4:b9:ee:ab:91:00:3f:30:d4:2f:bf:bc:7d:e2:a2:02:5e:a1:
31:46:a3:47:ae:39:de:c6:9a:d6:1c:b1:80:eb:d1:72:be:aa:
1b:d8:41:1b:cc:8a:b4:1a:f4:4b:db:2d:c0:08:d0:74:b3:71:
e8:52:25:db:81:69:c0:8e:92:61:b7:ff:be:fb:ac:46:78:60:
12:82:0f:ca:7e:1a:ea:ff:8a:89:6e:d1:79:df:41:09:ee:0b:
e4:25:4a:96:92:ec:26:59:86:a0:15:65:c1:1b:b1:89:9f:ca:
3c:e8:f5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org