Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/28771CF4F3B811EC96AC0DA1F1222468.roa
File: 28771CF4F3B811EC96AC0DA1F1222468.roa (raw, json)
Hash identifier: dHK07/foIgSEn5W2DoCNI5ueNH00oC4kYPb6YLR2zqY=
Subject key identifier: 67:65:37:5A:E5:4E:7F:E2:65:8D:D2:D3:CA:AE:7F:63:F5:94:F6:A1
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 04FB
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/28771CF4F3B811EC96AC0DA1F1222468.roa
Signing time: Fri 24 Jun 2022 12:21:23 +0000
ROA not before: Fri 24 Jun 2022 12:21:18 +0000
ROA not after: Wed 12 Jun 2030 12:21:18 +0000
asID: 36916
IP address blocks: 41.180.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1275 (0x4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 24 12:21:18 2022 GMT
Not After : Jun 12 12:21:18 2030 GMT
Subject: CN=62b5ac43-ac00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:b2:c9:1b:90:8e:8f:66:3b:04:b2:99:fc:
9d:d9:67:ca:2f:8b:c3:f9:d9:cc:45:76:09:d8:95:
b6:07:44:06:fe:67:52:e7:1a:27:25:c4:cb:41:ab:
96:b5:5b:e2:c2:0d:7f:41:b8:6d:6d:7f:eb:b3:02:
0d:f9:ac:18:05:a8:d6:aa:4a:c1:6f:5c:b7:17:a1:
9a:89:31:56:34:b2:4b:29:78:20:90:ed:47:0e:e3:
d8:81:23:c1:8c:2a:4a:a6:df:eb:85:d2:74:ca:80:
02:6b:53:58:2e:87:8c:d8:ff:a8:6c:a1:35:c7:07:
18:4a:b9:ba:a9:28:ea:92:28:8d:f8:79:09:46:50:
3d:a1:cf:65:57:12:25:9a:d8:2c:8f:d6:f9:6d:61:
29:fd:d7:c7:09:6e:41:a4:7c:1f:06:b6:f1:ff:b4:
74:01:ba:4b:10:b0:f0:85:59:8d:48:73:2c:11:c4:
7b:56:e6:93:21:e8:70:d3:e0:ec:de:ca:ec:f7:97:
7d:16:c7:10:30:c6:0b:c1:f3:2e:90:8b:61:9b:1f:
c2:95:8a:d3:d3:23:30:d8:a8:c2:53:fb:cd:bb:0a:
08:1a:ac:23:d0:73:a4:a6:44:74:49:58:2d:2f:07:
2c:45:97:c0:ab:db:49:8b:2b:71:fb:02:6e:d6:fb:
ec:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:65:37:5A:E5:4E:7F:E2:65:8D:D2:D3:CA:AE:7F:63:F5:94:F6:A1
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/28771CF4F3B811EC96AC0DA1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.24.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:e2:62:d5:b6:86:86:81:d1:85:e4:69:61:77:d8:f6:f8:b0:
e2:e0:3b:7d:ba:59:85:04:f7:f6:fa:3b:d0:53:76:b5:22:17:
7d:08:66:dc:8b:48:29:55:97:3a:ef:1d:61:cd:5e:79:5d:32:
4f:45:aa:7f:fb:41:c6:81:7e:24:60:c5:52:34:b3:e6:63:d9:
47:81:56:f1:8b:8c:bf:23:a4:eb:59:a0:69:75:ab:b4:81:01:
0a:47:15:fd:e4:58:af:97:4c:c2:19:ae:c1:13:7b:8f:7e:b7:
20:7e:94:eb:80:23:2b:3b:77:e6:ce:b3:f5:39:0e:21:c3:b5:
c9:83:37:db:26:61:2d:b7:e1:b8:1f:0b:07:33:a4:1b:2b:8c:
88:85:f1:d4:c4:41:09:97:fb:cd:04:be:75:84:f6:cf:95:80:
c3:fd:fe:98:07:54:ea:7f:f2:2e:d3:89:25:3c:0f:7b:d5:46:
40:8e:fd:c3:9d:81:94:73:9a:21:e9:3a:12:bf:06:31:b7:95:
07:d7:2e:88:0a:0c:0a:d5:97:85:8f:b2:11:63:d0:12:06:f7:
ce:90:f1:7a:90:c1:b5:2d:dd:20:f2:1a:dd:3a:72:46:f3:90:
02:48:52:05:c4:ce:48:f9:21:13:3b:90:55:fa:cf:1e:0d:5e:
ff:e8:43:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org