Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/064FBE62B48511EE94086CC2775412E6.roa
File: 064FBE62B48511EE94086CC2775412E6.roa (raw, json)
Hash identifier: Prszv3VMXDkLcU4u+emBb4paVzHIJbSy0I9b5Aob610=
Subject key identifier: F2:8A:DE:B4:4B:21:C7:70:04:0F:F6:53:3A:1D:0E:8E:F9:67:E1:83
Certificate issuer: /CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Certificate serial: 0E
Authority key identifier: 13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/064FBE62B48511EE94086CC2775412E6.roa
Signing time: Tue 16 Jan 2024 15:36:32 +0000
ROA not before: Tue 16 Jan 2024 15:36:29 +0000
ROA not after: Wed 15 Jan 2025 15:36:29 +0000
asID: 328446
IP address blocks: 41.222.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.mft
rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Validity
Not Before: Jan 16 15:36:29 2024 GMT
Not After : Jan 15 15:36:29 2025 GMT
Subject: CN=65a6a280-a922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c6:9c:91:3e:9e:0f:c6:e8:9f:c1:9e:50:eb:
09:7f:bb:5f:1b:77:44:bb:a9:44:93:a9:35:75:e5:
20:71:04:02:f2:90:bb:9e:98:96:a5:b2:98:f8:9f:
b7:7c:de:2a:87:53:39:4a:ca:f0:bb:69:16:3a:c2:
a2:9f:23:50:c7:5d:93:1f:ab:41:b0:b4:3b:8e:ec:
02:30:05:35:37:60:fd:1a:c9:0d:42:b5:a1:ab:ee:
2d:68:22:fa:da:5f:78:3c:45:79:23:78:98:cc:3f:
2b:93:94:cb:cd:28:db:8a:4e:88:22:53:44:55:d5:
85:28:cd:f5:43:a8:c8:d2:4d:67:3e:58:a8:ed:b1:
c2:22:86:d7:01:38:55:83:ff:58:ee:72:c0:97:b3:
36:54:12:83:25:ad:96:89:eb:35:da:40:12:74:8b:
e8:49:7b:35:af:2f:ec:2f:c0:b9:e9:1e:b4:83:71:
15:63:4a:5d:a0:c9:23:4f:69:18:1b:19:87:f3:05:
11:51:da:42:df:41:41:75:ff:3a:48:d6:12:5a:66:
81:2d:31:f2:2d:48:3f:ed:c9:f9:83:48:d4:51:7d:
12:76:26:a1:f3:b1:78:7b:db:96:19:cf:19:68:cd:
76:5f:b8:9f:83:8a:29:38:94:50:16:21:aa:77:93:
dd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8A:DE:B4:4B:21:C7:70:04:0F:F6:53:3A:1D:0E:8E:F9:67:E1:83
X509v3 Authority Key Identifier:
keyid:13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/064FBE62B48511EE94086CC2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.126.0/24
Signature Algorithm: sha256WithRSAEncryption
96:7f:8b:01:e6:77:11:a2:4b:29:83:2d:3b:25:a7:eb:b8:05:
b9:f5:a4:5e:8e:84:5d:83:63:5a:e0:a1:e7:52:bc:d7:f0:82:
4c:20:a9:db:40:e2:3c:b2:90:40:4b:c5:51:92:8e:88:63:37:
86:1b:e7:c9:c4:5e:3e:6c:30:e5:ed:c0:ea:1b:e7:c0:7b:9c:
b1:2f:78:34:7f:8b:bc:a1:77:fa:93:83:1f:bd:69:7e:1e:3f:
b1:98:79:3d:d2:ff:14:66:14:30:92:3b:42:b4:d3:46:87:79:
55:96:8b:85:89:dd:32:9a:63:e5:07:27:bf:75:95:aa:c5:2e:
25:28:23:82:c3:e3:ee:fa:1b:9b:e7:5f:04:55:ca:da:2f:09:
d1:8d:5d:f1:55:6a:3a:81:81:f9:84:6a:03:5f:34:01:08:ab:
6d:b7:1a:99:69:23:c9:bc:f2:de:b7:85:51:6c:c3:55:30:75:
93:ee:fb:f8:16:6a:09:71:b9:a0:f5:0f:06:53:9a:05:df:04:
f4:0e:6e:91:ae:4f:7f:0e:c2:12:5c:c8:07:72:b6:cc:f1:a7:
39:92:0d:29:2c:c0:5a:47:2b:d7:ce:89:c1:5e:fb:e5:4c:71:
81:21:73:52:bd:bf:3b:91:fc:b1:f8:85:f0:73:8f:e2:6a:83:
b9:57:34:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:33 2024 by rpki-client on console-fra.rpki-client.org