Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/0A83FCC6FDD611ECB973D5CCF1222468.roa
File: 0A83FCC6FDD611ECB973D5CCF1222468.roa (raw, json)
Hash identifier: J2EjyvsMLAU8QVrEU8FLmq3scuZEbHz6LqaLiEYZ8gI=
Subject key identifier: F8:EA:D1:CC:3A:4D:82:39:BE:05:25:4E:16:F1:6B:85:3B:1A:3A:93
Certificate issuer: /CN=F364ECB6AF/serialNumber=E774A130238F972BAED328BD4038FCAF82D784B7
Certificate serial: 02
Authority key identifier: E7:74:A1:30:23:8F:97:2B:AE:D3:28:BD:40:38:FC:AF:82:D7:84:B7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/53ShMCOPlyuu0yi9QDj8r4LXhLc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/0A83FCC6FDD611ECB973D5CCF1222468.roa
Signing time: Thu 07 Jul 2022 09:20:28 +0000
ROA not before: Thu 07 Jul 2022 09:20:25 +0000
ROA not after: Tue 09 Jul 2024 09:20:25 +0000
asID: 36902
IP address blocks: 41.203.240.0/20 maxlen: 24
41.220.96.0/20 maxlen: 24
154.70.160.0/19 maxlen: 24
196.46.148.0/22 maxlen: 24
197.234.0.0/20 maxlen: 24
2c0f:efa0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/53ShMCOPlyuu0yi9QDj8r4LXhLc.crl
rsync://rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/53ShMCOPlyuu0yi9QDj8r4LXhLc.mft
rsync://rpki.afrinic.net/repository/afrinic/53ShMCOPlyuu0yi9QDj8r4LXhLc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364ECB6AF/serialNumber=E774A130238F972BAED328BD4038FCAF82D784B7
Validity
Not Before: Jul 7 09:20:25 2022 GMT
Not After : Jul 9 09:20:25 2024 GMT
Subject: CN=62c6a55c-3985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:de:a4:c5:11:b5:40:00:79:95:c7:e9:d5:49:
3c:80:d9:9f:54:a1:d2:4d:1e:a3:b7:a7:e8:c2:b4:
54:ed:fd:04:c1:2c:1d:85:5f:c2:85:3f:92:09:37:
49:b9:b3:0c:d3:32:3d:6c:b4:aa:a0:ac:ac:ec:66:
47:86:37:89:ad:b3:c9:ab:38:b2:61:58:5d:93:e2:
d1:24:1b:2c:85:62:9a:b2:fe:ac:6f:ce:2f:cc:f3:
fc:6d:f8:82:74:f7:65:49:35:90:8f:b8:fd:24:c4:
7e:c1:03:e3:ca:0d:cb:ec:fc:36:38:cd:42:df:53:
a3:50:b0:ec:c7:8e:d4:72:ec:70:32:14:3a:ff:b9:
0b:77:58:fd:85:95:22:24:b9:22:9f:e9:00:53:ca:
98:0d:19:b7:52:4e:9f:65:79:3a:a5:0d:d8:e0:34:
b2:d6:45:19:e3:1b:50:12:25:a0:a8:9b:78:65:27:
f4:d7:6b:dd:0b:ae:be:08:53:a5:16:80:ac:73:20:
dc:32:f0:85:2f:de:79:41:f4:d1:93:25:c8:36:1a:
75:da:2a:b2:b2:c5:aa:89:63:28:cc:66:14:fa:d0:
39:ae:09:b0:4e:30:ee:97:02:33:27:70:d3:16:26:
6e:14:ff:8c:52:27:c7:f1:e9:8b:63:b2:c5:c3:09:
6a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EA:D1:CC:3A:4D:82:39:BE:05:25:4E:16:F1:6B:85:3B:1A:3A:93
X509v3 Authority Key Identifier:
keyid:E7:74:A1:30:23:8F:97:2B:AE:D3:28:BD:40:38:FC:AF:82:D7:84:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/53ShMCOPlyuu0yi9QDj8r4LXhLc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/53ShMCOPlyuu0yi9QDj8r4LXhLc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364ECB6/8696F7A6FDD511EC94AA4FCBF1222468/0A83FCC6FDD611ECB973D5CCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.203.240.0/20
41.220.96.0/20
154.70.160.0/19
196.46.148.0/22
197.234.0.0/20
IPv6:
2c0f:efa0::/32
Signature Algorithm: sha256WithRSAEncryption
4f:1c:e2:26:45:bc:5d:a4:ac:16:65:8d:e3:14:cd:4d:6d:58:
22:13:41:68:91:61:f5:4d:8b:e9:f8:99:8a:37:92:c8:65:ef:
e5:67:d1:1a:40:01:b9:22:cb:f9:fb:0d:3a:8b:84:42:2f:41:
80:ae:bd:ce:a7:cc:59:8f:84:4e:39:bf:af:18:bc:16:de:5b:
0c:92:0e:b6:f8:e4:80:97:62:23:fc:99:f9:a6:03:5a:a8:bb:
eb:32:fa:7c:9e:3c:fd:e8:46:9d:92:62:64:39:84:7e:2c:a1:
f3:68:dd:65:7b:07:61:4d:e1:54:7c:21:83:a4:d0:d8:2d:c4:
82:98:8b:a7:9b:3f:b3:a6:67:cc:e1:5b:95:ab:55:22:bc:56:
24:5f:82:d0:b7:7d:83:6a:5f:08:5e:0e:9d:76:78:0b:7d:33:
f0:4f:59:dc:c5:51:7d:db:77:95:e7:2d:55:c5:71:13:47:7a:
7e:df:76:db:b4:66:11:ad:ce:b9:94:09:e8:98:58:ea:05:47:
c9:a5:e8:1c:a2:7c:d0:01:55:9a:15:dd:58:d6:78:81:13:0c:
8d:e5:65:6a:42:90:8e:86:fb:ca:4a:04:e1:2f:63:51:3e:c1:
20:ee:8b:43:0b:da:eb:3a:06:c3:71:cc:db:f4:0d:54:7e:af:
ab:2e:e4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:06:25 2024 by rpki-client on console-ams.rpki-client.org