Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/FCC2B53CC09311EE973207B5775412E6.roa
File: FCC2B53CC09311EE973207B5775412E6.roa (raw, json)
Hash identifier: nXq9HLYp0GlNmQIEUdb1IZ99wB3H3x5IMG8Jb1p7VY4=
Subject key identifier: 28:6E:C9:3B:59:0F:20:2E:4A:09:8D:DE:57:3B:36:FF:02:C2:DE:1B
Certificate issuer: /CN=F3636185AF/serialNumber=EF8798989E4B8FB35946574F7BC7F08E2CF7FE4B
Certificate serial: 0381
Authority key identifier: EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/FCC2B53CC09311EE973207B5775412E6.roa
Signing time: Wed 31 Jan 2024 23:53:53 +0000
ROA not before: Wed 31 Jan 2024 23:53:50 +0000
ROA not after: Sun 31 Jan 2027 23:53:50 +0000
asID: 26506
IP address blocks: 41.63.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.mft
rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897 (0x381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3636185AF/serialNumber=EF8798989E4B8FB35946574F7BC7F08E2CF7FE4B
Validity
Not Before: Jan 31 23:53:50 2024 GMT
Not After : Jan 31 23:53:50 2027 GMT
Subject: CN=65badd91-bc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d8:75:01:9b:7a:c5:83:e0:0b:8b:11:bf:05:
47:9d:fc:81:ea:42:c7:a1:eb:9f:0c:1b:94:cf:a8:
8a:08:52:6f:c9:f9:71:ba:0a:00:1b:98:d0:68:fb:
fd:98:e9:fe:55:42:1c:f5:09:34:9b:80:19:c7:2c:
18:e1:1a:0a:be:10:5d:94:02:5f:57:ad:3c:26:da:
de:b4:9f:6c:fe:5e:e0:4b:e4:22:85:26:8b:f8:40:
86:91:3c:f7:c2:02:6b:97:16:bd:2c:48:fc:d7:d1:
7c:79:ea:84:8f:31:b9:db:ee:ef:aa:81:38:07:ee:
42:13:10:13:5c:61:32:bc:1b:30:35:4d:df:bd:c3:
52:99:a7:ff:19:71:b6:1d:ac:ca:50:93:00:aa:7f:
c0:f4:9f:b8:13:fe:41:14:8e:a6:be:56:61:26:68:
e4:66:8b:d7:7c:e0:86:3e:f3:01:09:7f:ef:62:f6:
a5:0c:54:47:7d:cf:28:02:ca:cb:56:f6:45:e4:6a:
d1:b8:3f:df:16:0a:2a:3f:9f:25:0c:49:59:59:f9:
e2:38:a0:d6:15:99:a9:44:c8:e5:52:ca:42:fa:f8:
fe:85:7e:f7:85:c5:a6:3f:c7:a7:9a:3a:e4:93:28:
c9:6d:99:a0:11:f3:af:71:bf:05:13:2d:38:e0:0f:
a0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6E:C9:3B:59:0F:20:2E:4A:09:8D:DE:57:3B:36:FF:02:C2:DE:1B
X509v3 Authority Key Identifier:
keyid:EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/FCC2B53CC09311EE973207B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.63.64.0/18
Signature Algorithm: sha256WithRSAEncryption
cf:35:0d:a4:ba:ed:2e:59:9f:d9:1f:53:c7:e8:46:2f:fa:b8:
38:fa:fe:4b:e8:a1:d2:4a:2d:09:2d:00:37:83:9b:a0:c9:17:
47:2b:54:55:5e:d0:72:6b:36:75:58:25:13:0d:07:cc:58:e7:
45:f2:fc:ca:7c:1f:b0:f5:aa:87:63:d9:00:3e:f0:8a:2a:ef:
eb:3a:8c:fd:1a:3a:91:06:14:9d:70:f9:0d:62:4d:50:8f:a8:
f9:2a:f4:c4:58:42:1c:3b:f7:a0:f0:a8:b7:76:b5:ce:c4:ca:
ed:15:be:a5:5b:44:9d:87:d7:58:a0:8f:aa:5f:fb:00:fc:12:
69:a1:00:e6:f7:e3:60:f3:fd:9d:48:08:00:6c:a6:a5:32:f4:
15:56:e9:47:26:0a:24:9f:58:fe:8b:81:e6:a3:01:c9:6d:dc:
11:f3:e1:b8:3e:10:68:ff:fa:ce:a4:6c:63:e5:cc:74:5f:88:
78:7d:01:dd:c3:25:fe:74:1c:45:9f:ec:80:ac:bb:04:c5:1b:
b1:5e:ec:29:c5:a7:b8:d5:78:c4:62:5a:21:91:43:f8:68:79:
f4:92:b6:4e:5f:00:6b:50:3c:fa:1c:af:e3:4b:b4:dd:1d:43:
e6:9d:e9:0f:9c:8c:66:e9:d7:95:f8:4f:c8:8a:b1:53:08:50:
d5:50:f3:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:52:49 2024 by rpki-client on console-fra.rpki-client.org