Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5B3EA3DC797711EE8A5E7E8B4AD9E6FC.roa
File: 5B3EA3DC797711EE8A5E7E8B4AD9E6FC.roa (raw, json)
Hash identifier: toROFyHG0AwY+tUObC6q8HfWqvbIhQDyCAqgJbHtzGc=
Subject key identifier: 66:71:95:2A:F2:49:F4:E7:B3:4D:12:EC:83:52:D4:2B:90:47:F8:CB
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 07AB
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5B3EA3DC797711EE8A5E7E8B4AD9E6FC.roa
Signing time: Thu 02 Nov 2023 12:00:03 +0000
ROA not before: Thu 02 Nov 2023 12:00:00 +0000
ROA not after: Wed 16 Nov 2033 12:00:00 +0000
asID: 30431
IP address blocks: 41.180.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1963 (0x7ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Nov 2 12:00:00 2023 GMT
Not After : Nov 16 12:00:00 2033 GMT
Subject: CN=65438f43-de14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:61:4b:d5:0c:ea:c4:1f:80:ea:04:6f:85:91:
08:e3:3f:c0:df:ff:2c:f3:b2:76:66:27:a2:50:2c:
fe:73:d1:06:f0:17:73:ff:a5:5a:ca:07:44:49:da:
61:c0:28:59:62:e3:0b:dc:e8:36:97:27:ab:4c:a2:
38:a5:51:fa:dd:40:ae:2b:54:b0:87:aa:ff:62:24:
a6:fe:cf:55:13:82:c4:37:d7:22:42:bd:b2:4e:e1:
78:0e:59:77:aa:73:af:9b:0f:50:c6:8a:45:ff:c5:
f1:33:9d:0f:6c:e4:7c:17:4e:a0:ce:6e:aa:6e:1b:
e5:d2:68:e4:56:29:63:75:f1:63:97:6d:00:04:0f:
96:5c:cd:a0:d7:34:b2:b2:9d:54:cc:d2:9e:94:15:
46:1b:c1:de:b2:aa:63:a1:f7:7c:eb:87:5a:e6:84:
31:bc:29:24:96:8a:65:c8:f2:40:ef:79:9a:ac:56:
22:b9:ea:a2:73:cc:e0:2e:4e:d6:fb:c1:14:40:1e:
2d:fe:c8:37:76:49:75:64:97:00:27:fe:d4:ed:01:
c8:0e:c2:a5:dc:a3:1c:7f:38:c4:e1:12:bd:c7:40:
a9:c6:5f:80:24:93:db:82:30:52:aa:45:0e:ef:a4:
d5:d4:2b:fe:ad:92:33:de:72:b5:d8:db:55:5d:fb:
4c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:71:95:2A:F2:49:F4:E7:B3:4D:12:EC:83:52:D4:2B:90:47:F8:CB
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5B3EA3DC797711EE8A5E7E8B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.176.0/20
Signature Algorithm: sha256WithRSAEncryption
35:35:8c:30:7b:48:91:c4:94:0e:d7:55:41:de:20:e7:d0:cc:
fb:e1:05:12:87:05:9b:a2:e9:57:16:57:b9:2b:e6:43:d6:2c:
b3:c2:69:d2:ed:71:19:a1:e8:73:4e:be:bc:e7:70:b4:1b:e3:
73:fa:20:00:32:a4:97:47:7f:6b:07:5a:c3:41:10:91:d7:44:
e3:e3:ab:8d:55:ab:92:c5:a5:bc:86:9b:b2:41:f4:b0:e8:03:
57:41:3d:44:a0:2c:57:98:af:a1:6a:7a:e5:82:4d:a9:5e:f9:
c7:a2:ec:89:da:1c:88:28:e2:b8:bf:99:01:26:2d:0e:22:ee:
7c:20:08:c3:ea:6e:b2:78:b4:70:6a:37:f4:98:8a:79:95:4e:
33:ed:ee:d7:9c:e4:0f:01:86:fe:75:19:4f:80:57:61:d4:33:
56:d4:ad:7d:87:79:d8:38:db:d8:dd:02:53:58:39:27:8b:84:
67:8d:44:9e:05:68:db:f7:1a:b3:48:81:b7:04:60:69:85:84:
c6:ed:3a:d2:2e:3f:09:e9:58:d3:b0:18:65:37:fb:7d:db:4f:
4d:2e:c1:78:be:1a:c1:0e:37:af:3c:d0:dd:52:ae:e9:ab:cb:
eb:bf:93:17:48:27:49:97:d1:d2:fa:01:98:63:78:19:94:e0:
05:e9:2c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org