Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/597BF62065CC11EFBF743291762E951A.roa
File: 597BF62065CC11EFBF743291762E951A.roa (raw, json)
Hash identifier: l4HlkPwJ+awPbO7Z6yDcGLJG3/k4kKA73Iof+gPdMvU=
Subject key identifier: BC:F5:D8:68:E3:C8:F0:19:12:DE:95:2E:22:96:0C:A5:7E:9F:55:F2
Certificate issuer: /CN=F3654AEEAF/serialNumber=096DB3D3BDEEBB7D247066DC8B25B964CC4099D7
Certificate serial: C2
Authority key identifier: 09:6D:B3:D3:BD:EE:BB:7D:24:70:66:DC:8B:25:B9:64:CC:40:99:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CW2z073uu30kcGbciyW5ZMxAmdc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/597BF62065CC11EFBF743291762E951A.roa
Signing time: Thu 29 Aug 2024 06:03:02 +0000
ROA not before: Thu 29 Aug 2024 06:02:58 +0000
ROA not after: Sun 31 Mar 2030 06:02:58 +0000
asID: 36938
IP address blocks: 41.222.78.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/CW2z073uu30kcGbciyW5ZMxAmdc.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/CW2z073uu30kcGbciyW5ZMxAmdc.mft
rsync://rpki.afrinic.net/repository/afrinic/CW2z073uu30kcGbciyW5ZMxAmdc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194 (0xc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654AEEAF/serialNumber=096DB3D3BDEEBB7D247066DC8B25B964CC4099D7
Validity
Not Before: Aug 29 06:02:58 2024 GMT
Not After : Mar 31 06:02:58 2030 GMT
Subject: CN=66d00f16-abaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:89:52:0a:fc:af:11:c6:ec:20:d4:40:ba:b0:
c2:d8:b2:42:be:f8:82:fa:b2:d8:55:6a:26:c6:96:
75:12:63:25:6c:ac:8d:b7:49:b7:47:e3:d2:88:83:
97:5c:47:72:9d:f6:21:d8:a9:b0:44:74:f3:e6:99:
b8:1f:87:76:39:4a:04:db:19:c5:44:51:fb:f7:75:
8a:be:a9:9a:2e:c2:8a:e5:a6:14:47:10:1c:04:81:
bf:ae:6e:18:1f:7c:5f:9b:80:e3:de:cc:ec:81:e0:
f1:dc:62:b1:02:b8:aa:52:50:39:ea:0d:1a:ee:55:
a3:cd:b4:df:b4:6d:cb:23:8d:e2:9a:12:3c:29:59:
9d:5e:c4:a9:ff:21:e8:93:18:78:a2:dc:0b:8c:b7:
b3:95:45:cc:e6:2c:9a:28:aa:8d:71:e2:31:c1:9c:
7f:f6:27:7c:61:d4:7d:89:8d:1e:8a:94:06:44:9c:
b9:d0:90:ee:cc:19:cf:e9:38:99:56:2f:f3:b0:56:
54:14:81:3a:67:fb:32:37:7a:12:53:ed:ae:af:66:
6b:2d:0b:15:df:0f:20:12:56:15:3c:d0:ba:71:6f:
fa:2b:a8:80:cc:77:e6:2b:c7:04:23:b2:3b:03:6e:
b0:25:8b:9c:1b:c7:85:62:61:f7:55:60:a7:e1:12:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F5:D8:68:E3:C8:F0:19:12:DE:95:2E:22:96:0C:A5:7E:9F:55:F2
X509v3 Authority Key Identifier:
keyid:09:6D:B3:D3:BD:EE:BB:7D:24:70:66:DC:8B:25:B9:64:CC:40:99:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/CW2z073uu30kcGbciyW5ZMxAmdc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CW2z073uu30kcGbciyW5ZMxAmdc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/597BF62065CC11EFBF743291762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.78.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:34:df:47:3d:71:eb:cf:a4:bf:46:11:3c:b4:e5:85:7c:ba:
76:62:44:0e:f1:06:af:28:77:7f:b7:49:3b:41:9f:20:3a:b7:
a5:ab:fe:eb:91:1b:32:08:41:45:20:95:cc:0d:99:38:7c:29:
6b:ca:fa:f0:ea:34:51:b7:28:91:73:91:55:a0:bf:0d:69:6e:
dd:85:da:48:98:68:af:3a:85:7e:eb:05:1e:8d:53:c3:a7:ef:
1b:3c:5a:17:50:cf:01:c8:34:bc:92:95:97:c8:1a:ec:f4:d3:
bc:64:41:f6:38:a9:a2:0c:0c:17:b1:34:eb:0e:6e:85:d9:0b:
44:d9:0f:00:03:9d:3f:cc:87:b9:d1:4b:52:af:99:7d:54:84:
b3:bb:a9:48:05:5a:18:1d:a2:4c:28:47:d4:cb:cc:98:74:fb:
2f:44:25:5b:31:7b:46:96:30:66:ad:87:b5:a1:70:c2:ab:67:
b4:fc:50:7a:5c:df:1b:d5:7f:f5:3d:b2:1d:66:1f:f5:41:ff:
a3:08:95:55:5c:fc:e9:77:be:68:74:f1:20:41:f4:4f:6c:00:
32:22:d8:76:bc:dc:32:be:35:4b:0f:82:f9:b8:ae:26:0a:14:
ce:48:52:73:31:10:b6:26:23:1b:66:6a:43:23:bc:01:e4:ad:
3d:6c:db:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:23 2024 by rpki-client on console-fra.rpki-client.org