Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/6DAC7C760BF311ED8C2961A4F1222468.roa
File: 6DAC7C760BF311ED8C2961A4F1222468.roa (raw, json)
Hash identifier: glZbPmibjmQM4h+WQZ4VNPn/X5ujtAlf4JTyWmUsqtE=
Subject key identifier: 75:B1:19:6C:11:21:8D:DC:2A:BD:EA:73:94:68:3B:7E:0A:E3:47:62
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 057C
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/6DAC7C760BF311ED8C2961A4F1222468.roa
Signing time: Mon 25 Jul 2022 08:26:06 +0000
ROA not before: Mon 25 Jul 2022 08:26:03 +0000
ROA not after: Wed 07 Jul 2032 08:26:03 +0000
asID: 36916
IP address blocks: 41.221.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1404 (0x57c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jul 25 08:26:03 2022 GMT
Not After : Jul 7 08:26:03 2032 GMT
Subject: CN=62de539e-6b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e4:94:c4:d2:82:8a:55:7f:46:13:d5:8a:41:
13:65:4c:e9:cb:7a:b2:3e:7e:78:36:c0:8c:58:fc:
ad:7c:33:f4:92:a9:62:d2:22:ee:14:a1:16:44:7e:
e4:d9:19:3d:65:5d:5a:5e:65:de:a6:60:ac:90:08:
f5:82:9c:00:6f:a3:69:25:10:b4:6c:ed:2f:9b:9d:
49:6c:22:6c:74:24:4f:64:92:01:87:45:a4:44:28:
39:28:1f:77:15:54:bd:da:f9:62:72:e4:f5:93:4f:
d5:64:c3:94:24:24:9f:19:d1:d9:b2:e3:5d:e4:c6:
e6:0c:35:12:8a:cb:11:4c:95:1b:a7:c9:e3:44:6c:
6c:a3:da:a5:0c:f4:8e:79:74:20:14:72:8c:2a:d4:
f0:fd:f6:00:59:47:1a:f0:3d:9f:38:73:7b:1c:7e:
26:e2:b2:81:57:84:3c:12:8b:dd:69:86:c1:07:07:
23:0f:b1:7f:5e:ac:32:04:48:74:ed:83:7e:3a:63:
70:6a:f3:77:e2:c2:db:67:58:73:ac:9c:81:e7:a8:
3a:b4:e0:4a:04:82:69:70:da:e9:89:f1:ab:93:ce:
83:ed:10:39:91:f6:ab:e2:32:1c:84:72:1b:6d:54:
63:20:74:d0:73:b6:cf:0a:84:7d:01:1c:ac:9b:8e:
47:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B1:19:6C:11:21:8D:DC:2A:BD:EA:73:94:68:3B:7E:0A:E3:47:62
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/6DAC7C760BF311ED8C2961A4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b8:41:d3:28:6f:fc:3a:d5:5c:52:89:2d:06:b9:df:e4:0e:
19:39:37:1a:3d:83:02:95:5e:70:6c:22:2c:aa:09:83:9b:ad:
62:fa:51:64:12:6f:ad:d6:d4:e3:e8:17:eb:b6:29:b2:06:7b:
e4:5b:05:2d:f4:30:8a:ae:46:ee:1f:d9:2c:ac:a8:43:42:0a:
3b:79:98:57:92:f8:6c:e0:5c:ee:e7:8c:2f:9b:0d:b7:c3:e7:
9e:8c:e6:44:d0:99:e3:b6:98:44:a8:45:98:5f:d3:1b:9c:40:
79:d3:7e:71:e9:71:85:6e:0c:63:ea:83:86:d2:0c:b6:95:c7:
0c:f5:48:58:e1:7f:9a:c4:8a:af:06:c2:21:78:ca:4f:aa:ca:
f5:e1:c7:cc:60:19:7f:c7:ee:ef:bd:42:77:22:a7:96:a0:3f:
2d:21:3c:80:18:49:48:27:a7:40:ee:49:bb:c8:27:c0:97:36:
8c:8e:8b:46:11:c2:3b:26:9f:bf:2f:96:66:9f:22:5a:53:94:
61:97:26:dc:b4:a7:a8:e5:67:fc:58:ac:97:5f:f8:a8:1a:79:
87:c1:8c:b0:62:b8:e9:d6:a2:70:14:07:3a:43:0f:c0:0b:a3:
0c:0b:ce:d7:37:1f:7e:39:18:16:e8:de:6c:0c:af:79:ab:4f:
51:55:71:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org