Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/8D2F2D3A950F11EA81C70365F8AEA228.roa
File: 8D2F2D3A950F11EA81C70365F8AEA228.roa (raw, json)
Hash identifier: E1m+mH12Mpyg/MvJKWPzJArtMLQOdegnE9nX0zGb32g=
Subject key identifier: 80:04:8E:8E:C2:72:FA:90:22:C6:DB:07:A0:9B:BF:20:08:D2:3B:28
Certificate issuer: /CN=F363AFA1AF/serialNumber=8F8C0979F73CE852DB9A4B81F79511C42F9D1B33
Certificate serial: 06
Authority key identifier: 8F:8C:09:79:F7:3C:E8:52:DB:9A:4B:81:F7:95:11:C4:2F:9D:1B:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/8D2F2D3A950F11EA81C70365F8AEA228.roa
Signing time: Wed 13 May 2020 11:47:42 +0000
ROA not before: Wed 13 May 2020 11:47:37 +0000
ROA not after: Fri 31 May 2030 11:47:37 +0000
asID: 36996
IP address blocks: 41.205.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.crl
rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.mft
rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363AFA1AF/serialNumber=8F8C0979F73CE852DB9A4B81F79511C42F9D1B33
Validity
Not Before: May 13 11:47:37 2020 GMT
Not After : May 31 11:47:37 2030 GMT
Subject: CN=5ebbde5d-f158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:88:aa:55:30:38:b5:aa:39:95:df:20:9d:
08:cb:a7:d2:a7:56:b7:2f:f4:a6:f0:3e:ba:22:41:
48:a6:e5:bf:f9:13:ca:51:31:57:a4:45:26:90:70:
e3:02:65:b8:ad:e4:0a:bb:9c:22:ae:45:5e:41:46:
72:46:f0:15:de:47:40:bc:b7:b2:a9:0e:be:67:2f:
88:22:1c:29:af:e0:7e:bc:54:b1:85:92:c4:aa:7e:
51:51:82:b9:db:c9:72:5c:57:5e:e3:66:65:98:a6:
dd:85:c8:ef:dc:ef:5c:52:fb:13:76:94:df:1c:fe:
0a:e8:9a:33:aa:e7:4a:56:31:9c:97:38:eb:22:2f:
81:89:4a:03:b2:5c:99:40:94:4b:0a:45:d7:99:a8:
03:b0:31:be:50:24:34:f7:40:00:20:63:d0:82:85:
ed:02:4f:a6:a4:ce:7e:74:2b:8c:33:84:ae:49:bc:
64:d5:59:82:38:7c:52:1e:7e:9c:4f:b1:d8:0a:39:
31:3a:d4:cd:d5:72:ec:e6:fb:0d:8c:11:c0:cc:ac:
18:a0:d6:76:03:e5:21:68:76:5c:0b:3a:e8:a9:f5:
16:b6:f4:6c:5c:53:42:6c:31:e2:65:df:54:bf:ae:
93:52:38:9d:cd:82:e3:3c:b6:4b:00:cd:69:37:04:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:04:8E:8E:C2:72:FA:90:22:C6:DB:07:A0:9B:BF:20:08:D2:3B:28
X509v3 Authority Key Identifier:
keyid:8F:8C:09:79:F7:3C:E8:52:DB:9A:4B:81:F7:95:11:C4:2F:9D:1B:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/8D2F2D3A950F11EA81C70365F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.205.128.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:0c:62:f6:7e:e9:9e:8a:af:36:5f:1e:88:bb:3e:a2:8c:c9:
06:6d:c8:3f:8b:e7:74:04:1f:67:34:fc:f2:7a:e4:37:b0:a2:
95:66:78:0e:5d:0e:38:7e:6a:1f:d9:91:bd:36:34:16:5c:cc:
18:9e:8f:10:fa:6a:09:99:dd:cf:a8:b8:b1:33:92:76:3a:ea:
1f:8c:7e:6b:11:c2:85:06:17:10:66:b8:72:43:84:69:94:9e:
ee:db:9b:93:f4:ca:c3:e4:02:eb:3f:ba:cf:7e:9e:0d:90:f1:
c2:5e:3f:82:2e:7a:6c:43:f2:10:d2:99:77:83:05:5f:69:8c:
18:9f:34:1b:ec:1e:5a:0d:d3:82:da:86:84:49:23:af:9c:be:
3f:41:0b:47:65:bf:e0:17:b8:57:fe:99:65:b8:eb:06:0d:b6:
b8:e8:7e:d7:4a:49:a7:3b:db:f9:7b:12:d9:9c:b5:03:0b:2d:
f9:7e:77:68:d8:0b:90:ed:a9:47:75:40:d1:37:be:13:46:df:
93:d9:05:02:b6:ad:af:a8:53:73:a0:03:ec:ce:e7:32:b9:55:
f9:18:38:3a:1b:a5:7e:71:16:b1:f6:78:93:64:82:6d:2f:20:
c4:18:d9:cf:28:14:00:ae:e4:0b:4d:f7:01:bc:75:57:fd:c6:
fb:5f:89:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:48:44 2024 by rpki-client on console-fra.rpki-client.org