Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/D6EDC7E0517E11EEB8E0E4124AD9E6FC.roa
File: D6EDC7E0517E11EEB8E0E4124AD9E6FC.roa (raw, json)
Hash identifier: FEIMhfmeS/WDUY9eK4oDCHAUgtEzM8qgwjxj7XmdiaM=
Subject key identifier: FB:08:2C:C4:FE:F3:D6:9A:3C:05:A2:4B:CA:4F:89:D2:62:1E:3D:AC
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: 03B4
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/D6EDC7E0517E11EEB8E0E4124AD9E6FC.roa
Signing time: Tue 12 Sep 2023 15:12:51 +0000
ROA not before: Tue 12 Sep 2023 15:12:47 +0000
ROA not after: Fri 30 Sep 2033 15:12:47 +0000
asID: 36994
IP address blocks: 41.24.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948 (0x3b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Validity
Not Before: Sep 12 15:12:47 2023 GMT
Not After : Sep 30 15:12:47 2033 GMT
Subject: CN=65007ff3-0927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:50:9c:07:20:90:0e:e2:7d:1a:3d:fc:83:b6:
3a:75:b6:8b:8b:fd:ce:d9:b1:92:75:e6:55:1b:2d:
ad:56:86:92:6c:57:04:29:e4:0c:24:34:6c:fe:34:
5f:af:ce:40:bf:84:60:8c:09:b3:c0:5c:83:86:87:
7a:7e:12:94:36:b8:78:3d:f1:79:f5:11:44:e2:09:
09:f3:e0:e8:02:9a:98:f4:49:5f:09:21:5a:11:0a:
7b:fa:45:b4:00:07:6a:d7:7d:8c:58:c2:53:43:03:
03:3c:56:77:51:7e:f3:25:f6:d0:cc:99:13:85:98:
37:9b:93:81:ec:0c:46:80:f1:72:8e:52:75:46:d5:
cf:b8:e2:f3:cc:bf:89:c2:d0:94:3b:3d:c0:bc:3a:
02:f0:8e:63:c5:a7:65:6b:39:63:ac:e8:19:e7:1d:
7c:19:09:09:9f:5d:aa:94:69:fd:78:61:8a:3b:f2:
61:48:4a:a6:07:dd:18:c0:72:e9:79:38:40:8f:c2:
4a:b7:eb:5b:14:d5:1f:23:7b:b2:45:6e:23:fe:85:
b0:c8:de:b7:c2:da:76:b6:d4:e6:c3:db:d3:9c:cd:
01:d9:ab:4c:ff:ea:a7:ce:c8:a2:b9:70:a4:94:f1:
44:8c:80:72:c7:64:a6:e3:83:57:d9:f0:6a:66:3e:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:08:2C:C4:FE:F3:D6:9A:3C:05:A2:4B:CA:4F:89:D2:62:1E:3D:AC
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/D6EDC7E0517E11EEB8E0E4124AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.24.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6a:df:1a:01:4b:9a:30:24:6b:16:b5:2a:da:b2:2c:38:ae:1a:
28:33:9a:ef:42:df:92:a2:d8:6b:d1:94:d9:bc:49:7e:28:b7:
08:08:17:17:eb:14:01:02:2b:fe:0d:57:44:2d:be:63:5e:be:
b2:45:ff:43:1b:5f:00:fc:e9:d5:8f:2e:9a:20:e0:ac:f7:e9:
23:82:b1:3c:dd:ec:47:5b:72:7e:99:79:56:fc:09:e5:33:1d:
ca:c3:b9:2d:85:f8:4e:08:18:87:0a:e7:9c:ae:07:df:bb:f7:
06:27:a8:8a:a8:89:20:c8:70:62:0c:63:ab:10:64:03:a0:3a:
0c:64:49:83:a7:86:13:e3:61:d0:4d:d9:b4:00:37:a1:81:ec:
7c:4c:3f:c1:a8:7b:9a:69:3c:3f:ce:24:8c:71:df:94:f1:f6:
a6:ed:a5:28:0f:87:bf:a8:19:1e:a0:bc:fd:97:46:7d:21:71:
f4:76:55:62:22:13:a1:a4:f0:c3:a8:c6:cc:6c:4c:48:26:32:
93:6c:d7:ba:55:07:e9:da:83:43:83:b7:ed:cf:10:12:2c:aa:
be:0b:74:f9:a8:ea:97:fb:f8:83:0d:69:95:ee:ca:09:f0:d7:
ac:a2:0e:db:88:29:bc:ba:31:72:01:42:77:e0:3a:3c:59:c5:
4b:d1:f8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 03:27:11 2024 by rpki-client on console-ams.rpki-client.org