Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/B742F0BAB48311EEB421EFBF775412E6.roa
File: B742F0BAB48311EEB421EFBF775412E6.roa (raw, json)
Hash identifier: dzhniQod8GCshnmvAOvgCSWPjOuLpMvsHBnI3GYH5wI=
Subject key identifier: BB:9B:81:09:79:62:D7:BE:1C:A2:FA:1C:6A:38:69:B6:76:A1:2A:4A
Certificate issuer: /CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Certificate serial: 02
Authority key identifier: 13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/B742F0BAB48311EEB421EFBF775412E6.roa
Signing time: Tue 16 Jan 2024 15:27:10 +0000
ROA not before: Tue 16 Jan 2024 15:27:07 +0000
ROA not after: Wed 15 Jan 2025 15:27:07 +0000
asID: 328446
IP address blocks: 41.222.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.mft
rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Validity
Not Before: Jan 16 15:27:07 2024 GMT
Not After : Jan 15 15:27:07 2025 GMT
Subject: CN=65a6a04e-6d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:30:50:60:85:83:59:1b:da:db:52:46:38:93:
3c:55:54:cb:81:4c:5a:c5:21:70:61:ad:2a:5c:9d:
84:fb:3b:75:69:7c:66:81:e1:06:7c:bc:09:e4:e3:
21:d1:a8:be:d8:1f:3f:a5:cd:06:15:49:87:71:d2:
57:cc:a4:4b:b3:a1:bf:62:48:c7:d0:db:69:92:59:
b7:44:da:fa:a4:5f:06:f1:91:7a:78:87:ef:b4:ed:
ad:38:da:9e:a7:3e:85:1a:92:74:10:ca:2d:6d:cb:
35:7c:b3:1f:a1:c0:6b:ac:52:69:ea:28:70:3b:e9:
f7:5a:cd:cd:f5:d6:6a:ed:a5:ca:11:84:2d:3b:d2:
44:f0:1c:de:f1:1a:2e:24:0c:28:94:ac:43:f5:e2:
99:ed:53:e3:5d:2b:68:6c:2a:9a:28:12:a9:28:c2:
e8:9b:41:48:b8:02:15:55:4e:ab:1a:98:03:10:d5:
02:c8:25:f1:dc:5d:e8:03:80:f9:79:91:a0:91:3d:
c7:29:ea:2e:d5:50:ed:59:33:26:b8:f1:8d:9a:27:
56:48:b2:2a:a1:63:11:6e:7c:45:34:ac:0f:d7:3a:
4c:94:6d:bb:11:d9:10:ab:7b:b8:fc:95:f4:67:d2:
12:50:14:68:ec:ca:f8:8c:84:70:29:2d:60:ba:1b:
f9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9B:81:09:79:62:D7:BE:1C:A2:FA:1C:6A:38:69:B6:76:A1:2A:4A
X509v3 Authority Key Identifier:
keyid:13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/B742F0BAB48311EEB421EFBF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:da:80:e7:41:9f:bd:f1:44:5c:8e:52:9b:0d:10:e8:ed:98:
05:33:5c:14:95:d2:8c:31:7d:7b:5c:4f:bd:b6:c8:ca:84:da:
04:d0:b1:92:21:80:66:6a:d1:4e:68:b6:75:84:13:26:c5:26:
dc:38:8c:78:92:63:36:5a:0c:ca:8d:36:bf:ad:44:49:98:8c:
16:85:fe:21:b2:10:ff:02:5f:0a:85:6b:eb:d4:67:80:34:5b:
52:13:72:45:b4:c6:89:b5:22:33:28:4d:6e:99:a1:cd:c4:28:
3e:15:4b:55:cb:ba:3c:ff:cc:da:73:90:37:d6:30:22:16:a0:
e4:16:7e:5f:9d:1b:2c:02:45:00:ec:be:bb:b1:9a:17:91:0d:
96:fc:db:cb:00:de:71:6e:d1:4d:c7:4e:c4:05:d8:6f:36:d2:
71:c8:2a:6e:b9:ff:b1:ac:ef:14:44:48:1c:ec:a3:43:bf:79:
cf:f2:fc:e1:23:de:44:c6:d9:aa:8d:7e:62:63:3e:b8:88:56:
20:37:e2:de:bd:a1:5b:4c:c7:7c:1f:ae:20:71:13:97:e6:bc:
b4:8c:7a:ab:f2:d3:bb:b8:04:d6:f6:11:06:a8:a4:0f:f1:39:
e8:ae:6e:24:81:5a:18:16:bc:47:93:2b:49:78:79:38:83:46:
98:4a:24:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:23 2024 by rpki-client on console-fra.rpki-client.org