Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/7C44F4DC848911EA90931282F8AEA228.roa
File: 7C44F4DC848911EA90931282F8AEA228.roa (raw, json)
Hash identifier: QfoaU5Ky8RVqOkIQ17yEvkYjKQ50BS0NCNYxaP7M7Pg=
Subject key identifier: 91:14:02:26:1E:BB:91:EC:5A:62:19:47:E9:96:29:BB:E1:DE:00:DC
Certificate issuer: /CN=F363520FAF/serialNumber=143DA5777CDBB49388A52FF583DB432CBC7E5774
Certificate serial: 02
Authority key identifier: 14:3D:A5:77:7C:DB:B4:93:88:A5:2F:F5:83:DB:43:2C:BC:7E:57:74
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/7C44F4DC848911EA90931282F8AEA228.roa
Signing time: Wed 22 Apr 2020 11:07:42 +0000
ROA not before: Wed 22 Apr 2020 11:07:35 +0000
ROA not after: Mon 22 Apr 2030 11:07:35 +0000
asID: 37611
IP address blocks: 41.76.208.0/21 maxlen: 21
102.182.0.0/16 maxlen: 16
154.0.160.0/20 maxlen: 20
197.242.144.0/20 maxlen: 20
2c0f:f4c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.mft
rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363520FAF/serialNumber=143DA5777CDBB49388A52FF583DB432CBC7E5774
Validity
Not Before: Apr 22 11:07:35 2020 GMT
Not After : Apr 22 11:07:35 2030 GMT
Subject: CN=5ea0257e-149d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:71:28:8e:6d:b3:23:fb:c5:f2:bb:c7:aa:fe:
f6:4a:94:3f:5d:76:17:f7:e5:e5:69:a4:b1:5b:55:
09:74:0f:b2:12:5e:92:25:b6:76:9f:b5:cf:f1:1d:
cb:e9:bd:60:c1:6f:41:47:92:05:e3:8a:46:3d:bb:
ad:e4:57:ec:42:35:79:58:48:a3:d0:d8:7e:1f:b1:
cd:11:99:a8:15:e8:d7:7d:54:1c:94:f8:94:5d:25:
d5:3e:ea:c2:8c:9c:2e:3b:98:71:e4:a7:b0:ad:5c:
06:2c:b9:4f:77:cb:5b:9c:3e:01:e3:96:55:c1:e2:
62:c1:0b:06:14:d2:82:17:09:c0:c2:34:f0:04:e4:
41:0a:88:60:4f:10:a7:ad:11:b2:f3:e2:a8:26:e9:
dd:8f:e3:75:1d:a7:ca:a5:31:cb:7f:93:c6:0e:fd:
c0:ba:a7:c2:f5:22:ce:d1:1c:00:60:be:92:2a:c3:
0d:f5:6a:e9:85:a7:e8:db:2e:ab:8e:81:31:37:25:
ef:3b:83:60:65:46:32:42:4a:78:98:bd:59:85:67:
1b:a7:ce:cb:cb:12:84:94:c2:b1:6c:bd:5e:5c:26:
1a:5c:f6:57:00:b3:5d:4a:13:3e:d2:d2:c2:85:f6:
9e:b5:30:01:2d:b4:9f:dd:5d:d0:45:25:54:76:dc:
1e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:14:02:26:1E:BB:91:EC:5A:62:19:47:E9:96:29:BB:E1:DE:00:DC
X509v3 Authority Key Identifier:
keyid:14:3D:A5:77:7C:DB:B4:93:88:A5:2F:F5:83:DB:43:2C:BC:7E:57:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/7C44F4DC848911EA90931282F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.208.0/21
102.182.0.0/16
154.0.160.0/20
197.242.144.0/20
IPv6:
2c0f:f4c0::/32
Signature Algorithm: sha256WithRSAEncryption
1e:5c:32:bd:8a:14:49:31:7a:19:16:57:53:b0:88:78:a6:d8:
36:e4:76:35:39:bc:0a:39:17:39:a4:b8:7b:08:6d:9f:b1:b5:
c1:5f:4c:7f:f2:a9:9f:8b:cb:b2:dc:18:f4:cf:a7:67:6c:98:
69:50:d9:99:51:99:8b:43:4b:1f:a0:84:00:37:b1:81:d8:d0:
d1:3e:b6:5c:b7:ce:f2:27:81:1e:bf:dc:4d:05:af:ea:80:1f:
00:6f:17:6d:48:8b:1e:0f:04:81:74:3c:e0:f4:6d:94:eb:49:
41:04:ab:94:e6:97:f1:ac:79:91:7b:dc:89:be:f4:27:a3:2e:
d3:a4:3a:d0:a8:c8:0b:4f:9c:24:8a:6b:a9:d0:dc:2f:aa:1d:
dd:8e:47:34:bb:fa:e9:9a:3e:be:12:ef:2b:a5:c3:36:a5:3e:
b8:03:d8:e9:0a:db:86:44:b3:73:e4:28:03:16:28:0a:9c:3a:
7a:80:3a:a5:e3:9b:23:a5:55:02:f9:18:bb:c7:6a:32:6b:b9:
0a:d5:ec:d3:c0:f2:90:5a:34:21:04:38:70:28:ea:b5:d3:8c:
0f:20:b6:45:43:33:98:e8:44:2b:04:1f:8b:3b:09:47:15:03:
49:d4:91:32:14:c2:72:d5:10:66:fd:f8:b1:26:a6:8a:9e:60:
c9:a5:ea:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org