Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/5929BAD6881811EF9F8726B0762E951A.roa
File: 5929BAD6881811EF9F8726B0762E951A.roa (raw, json)
Hash identifier: gqseLBT3raRF8qI8a39+TId/5s+ZYprcLYdDUSRWjC4=
Subject key identifier: DA:93:1F:12:F1:AC:13:9B:F0:1C:CC:F6:D5:5D:E3:24:6F:E3:6E:7E
Certificate issuer: /CN=F3656387AF/serialNumber=D1C657801ADFCE25694DFBB1A95C6CDA447E3BBA
Certificate serial: 03E6
Authority key identifier: D1:C6:57:80:1A:DF:CE:25:69:4D:FB:B1:A9:5C:6C:DA:44:7E:3B:BA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0cZXgBrfziVpTfuxqVxs2kR-O7o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/5929BAD6881811EF9F8726B0762E951A.roa
Signing time: Fri 11 Oct 2024 21:32:43 +0000
ROA not before: Fri 11 Oct 2024 21:32:39 +0000
ROA not after: Sat 31 Dec 2044 21:32:39 +0000
asID: 36955
IP address blocks: 41.211.96.0/20 maxlen: 24
41.211.112.0/20 maxlen: 24
2c0f:f7d0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/0cZXgBrfziVpTfuxqVxs2kR-O7o.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/0cZXgBrfziVpTfuxqVxs2kR-O7o.mft
rsync://rpki.afrinic.net/repository/afrinic/0cZXgBrfziVpTfuxqVxs2kR-O7o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 998 (0x3e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656387AF/serialNumber=D1C657801ADFCE25694DFBB1A95C6CDA447E3BBA
Validity
Not Before: Oct 11 21:32:39 2024 GMT
Not After : Dec 31 21:32:39 2044 GMT
Subject: CN=6709997b-6976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:27:73:58:bf:9a:0b:68:51:ac:8e:74:2f:62:
0d:d0:8e:19:2e:1e:31:88:b6:e6:ef:66:2a:23:2b:
57:e0:19:a3:63:a3:1d:c5:23:82:59:ac:da:22:14:
b1:7c:4d:20:59:d5:ae:92:46:b6:ef:7e:97:94:d3:
52:51:59:06:48:8b:82:38:a7:ad:f6:b3:9e:8d:6d:
a3:5b:e1:75:48:49:4d:c7:84:71:39:d7:a4:00:e8:
42:0f:a8:8f:f8:ec:c7:2c:30:05:a5:05:73:42:6a:
e4:7b:0b:8b:59:42:2a:2b:6f:b4:c9:8f:10:ef:9f:
36:52:ff:d5:25:63:bc:f7:1e:2f:eb:c6:fe:a4:3d:
c8:a0:84:59:6d:40:8a:76:f9:20:b8:1e:66:04:5e:
1d:49:db:6e:ec:38:75:01:12:a1:df:ec:68:c7:5b:
59:eb:0a:0c:01:87:77:57:54:f3:52:22:2a:03:d7:
a0:80:c4:5d:9d:16:b3:92:49:39:c7:95:72:be:c3:
34:15:8b:85:9b:a0:c6:db:e0:54:5d:d5:23:4d:de:
4a:50:20:7d:61:6c:fa:02:45:16:22:0b:ef:a2:98:
df:1c:9d:b3:49:f3:3a:79:b9:21:32:be:51:2c:15:
76:71:d9:22:70:81:44:e9:c7:cf:47:19:4d:3d:0b:
40:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:93:1F:12:F1:AC:13:9B:F0:1C:CC:F6:D5:5D:E3:24:6F:E3:6E:7E
X509v3 Authority Key Identifier:
keyid:D1:C6:57:80:1A:DF:CE:25:69:4D:FB:B1:A9:5C:6C:DA:44:7E:3B:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/0cZXgBrfziVpTfuxqVxs2kR-O7o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0cZXgBrfziVpTfuxqVxs2kR-O7o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656387/C78EEF9090CD11EC8B7B29A05A40D577/5929BAD6881811EF9F8726B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.211.96.0/19
IPv6:
2c0f:f7d0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:00:85:f2:60:74:9c:2c:c0:1d:2f:ff:b5:cc:e6:f4:e6:21:
a5:0b:fd:86:c0:1c:0d:48:ee:7c:84:cd:0d:ba:9f:88:d2:47:
22:ab:fe:e0:82:ba:ba:8b:ad:3c:50:46:0e:a7:75:09:36:87:
cd:98:53:07:f2:65:5a:56:d9:d2:96:62:d7:af:92:3e:60:63:
37:ad:69:3a:83:95:78:d0:df:0e:b1:cb:03:ba:d6:bd:43:29:
28:9a:5c:b3:33:77:2a:0a:ce:1c:3d:2e:e5:9b:71:a0:bb:46:
e4:d3:95:6b:fe:23:ed:e1:bb:f7:47:f0:9d:19:f3:c0:0e:12:
ee:75:f5:98:2c:d3:22:5f:16:1e:58:8b:11:50:b9:b4:1c:f4:
7f:61:a8:12:e4:d0:93:91:8e:2f:ab:65:4e:0c:6e:01:f5:61:
c6:c9:d6:4c:11:d6:37:98:7b:1f:a5:cb:3e:5a:32:88:a5:88:
cb:38:63:cf:1d:f9:ad:0b:88:05:fc:4b:26:ac:0a:64:35:f0:
73:52:02:85:9d:83:6e:4b:2d:2b:75:98:b4:82:31:64:81:bf:
8c:80:b3:ab:f7:63:7a:67:47:0b:88:eb:77:20:e2:2d:44:c1:
72:c6:1d:0b:05:cf:6a:ec:4a:c6:16:43:2d:62:01:08:5a:82:
d4:9d:85:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org