Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/0AADBD8E2A6611EC8DAA1141D8A014CE.roa
File: 0AADBD8E2A6611EC8DAA1141D8A014CE.roa (raw, json)
Hash identifier: LmTEFWyk5FPIOoTdP4lVUTRNBHAGidBUFY+FenAdltM=
Subject key identifier: FF:88:2E:41:06:79:FD:A9:81:7A:71:76:6D:E7:33:F8:29:C2:AA:EA
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 03D7
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/0AADBD8E2A6611EC8DAA1141D8A014CE.roa
Signing time: Mon 11 Oct 2021 07:37:10 +0000
ROA not before: Mon 11 Oct 2021 07:37:04 +0000
ROA not after: Wed 11 Oct 2028 07:37:04 +0000
asID: 36916
IP address blocks: 41.180.240.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 983 (0x3d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Oct 11 07:37:04 2021 GMT
Not After : Oct 11 07:37:04 2028 GMT
Subject: CN=6163e9a6-e83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:03:d3:50:6c:7a:eb:3d:6a:84:06:a2:cc:
48:33:e0:b2:32:d5:c4:76:46:9c:a6:1a:f2:5c:e3:
c3:2f:2d:81:a6:9c:5d:6e:f6:d1:d3:4f:73:45:aa:
08:b4:2d:d8:98:e2:5d:cd:bb:c9:a0:74:f9:15:de:
90:94:0d:34:11:d5:ef:4c:71:e7:b9:39:cd:ab:68:
da:02:92:51:68:15:af:0e:25:0c:27:62:50:32:58:
c5:f4:f5:24:0f:d5:fb:fc:22:2f:f0:dd:9b:03:d0:
86:6b:cd:e6:ed:6b:3c:8b:7c:35:8b:40:14:6d:1f:
94:28:5f:a4:c4:31:0d:2f:f7:ed:53:82:cf:93:e5:
a8:64:22:66:aa:24:fa:a3:99:e9:b1:ed:87:88:c7:
0e:bb:2c:cf:66:15:63:05:b6:01:c6:01:18:c7:89:
78:26:e0:83:48:af:48:e9:6e:79:f8:fd:fd:18:ce:
e2:90:74:17:35:67:5f:51:42:22:8d:26:c6:70:47:
2d:e2:50:5f:e4:30:3a:b1:35:60:6e:1a:68:44:2f:
f3:a5:7d:3b:ca:7a:07:1d:2d:9c:d0:be:56:a1:e6:
f8:04:27:bd:40:40:d8:06:e9:53:09:b9:04:fa:82:
40:44:45:80:5a:aa:ec:de:1b:4a:36:13:6b:18:94:
76:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:88:2E:41:06:79:FD:A9:81:7A:71:76:6D:E7:33:F8:29:C2:AA:EA
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/0AADBD8E2A6611EC8DAA1141D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.240.0/22
Signature Algorithm: sha256WithRSAEncryption
11:19:f4:34:8f:3e:5a:a7:4a:69:68:4b:5a:2f:ae:3d:23:70:
2b:6d:5a:5a:d7:f4:c9:d8:04:19:28:e9:3f:2a:d9:4c:4d:62:
9a:c9:9a:fb:70:2f:5f:58:e6:5f:82:28:6e:b9:23:34:75:23:
6f:71:d4:58:b1:0f:00:c9:6c:4d:20:bc:24:c0:89:93:aa:c3:
b2:82:6d:56:b5:c4:07:c6:03:1c:9f:31:6d:38:81:b3:cf:7d:
32:49:97:fd:c6:68:af:12:23:72:28:d0:b3:0f:d3:5f:7a:9f:
92:a5:90:ff:01:15:5f:59:aa:34:87:04:15:be:2a:c8:97:7a:
c0:91:fc:26:fb:0e:4f:a0:e1:55:ac:da:28:bc:24:e6:2c:74:
97:af:58:5c:c8:ab:e6:98:d5:bf:72:8a:1a:85:ee:c9:5b:d4:
7e:ac:24:76:b9:bc:41:f1:db:a7:bf:cc:2d:b0:fd:c8:a4:1c:
bb:30:b8:d7:71:23:1f:83:58:a5:eb:76:60:0f:ae:5b:5a:05:
88:9a:be:cd:b5:40:fc:89:64:30:57:7a:17:73:54:4b:5b:2e:
52:d2:bd:ae:47:c6:ae:5b:f2:c3:3e:b0:d2:ef:87:fe:58:8c:
df:84:81:ab:24:39:9b:38:4f:b1:22:f7:18:eb:4c:27:74:55:
52:ca:02:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org