Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/82A86CF82A6611EC8F2BC341D8A014CE.roa
File: 82A86CF82A6611EC8F2BC341D8A014CE.roa (raw, json)
Hash identifier: OYfoYvnLVzWO64ZA1MnrNJtIatjgNv9cU6Kdn4vZiC8=
Subject key identifier: 20:73:F1:28:A2:31:0B:17:E5:91:CD:59:5C:4F:D0:21:EC:BD:73:7E
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 03DD
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/82A86CF82A6611EC8F2BC341D8A014CE.roa
Signing time: Mon 11 Oct 2021 07:40:31 +0000
ROA not before: Mon 11 Oct 2021 07:40:27 +0000
ROA not after: Wed 18 Oct 2028 07:40:27 +0000
asID: 36916
IP address blocks: 41.180.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 989 (0x3dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Oct 11 07:40:27 2021 GMT
Not After : Oct 18 07:40:27 2028 GMT
Subject: CN=6163ea6f-44c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:d9:85:af:cc:92:33:6d:df:0c:04:20:57:
f8:d2:ce:6f:97:ab:7d:46:6e:97:02:3e:d5:b4:de:
f8:e3:38:90:e6:24:3b:69:d2:3c:99:a9:f6:d5:5b:
84:4a:06:5b:b0:99:b5:fe:d8:16:57:11:e0:db:65:
af:f6:ec:cd:40:d0:55:54:4f:57:d2:7f:20:cb:11:
72:69:9f:b5:32:8d:71:20:ac:7a:2a:6d:2b:cb:34:
60:16:fa:bd:9c:9f:aa:41:70:ae:83:0b:91:c0:1b:
00:17:6d:8d:e8:15:bd:e2:8c:b2:66:5e:d5:e0:d6:
ea:1e:b3:c5:90:c7:61:4e:ff:8d:d3:e3:ef:68:a6:
54:a3:b7:bd:89:a2:43:f2:8d:b4:3a:b6:95:6a:d6:
b0:3e:fe:b4:64:bb:9e:d2:64:70:1d:e8:29:e9:26:
91:9e:cb:44:a4:c6:a8:69:b6:2c:14:d9:aa:82:1e:
f3:a4:a0:94:06:28:ed:37:27:97:91:40:6c:e4:85:
e8:ff:ab:26:52:a5:cc:48:0a:a8:88:cc:10:2d:e1:
67:d5:07:83:23:04:6a:05:d2:a6:40:9b:8a:c6:cd:
40:ff:0a:8f:6d:43:1a:33:21:12:33:7f:96:20:af:
79:d3:c1:0c:e3:d8:0a:a3:69:dd:d1:14:28:55:90:
46:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:73:F1:28:A2:31:0B:17:E5:91:CD:59:5C:4F:D0:21:EC:BD:73:7E
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/82A86CF82A6611EC8F2BC341D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.252.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:83:e2:43:2d:c1:c1:da:04:cc:1b:32:b2:e4:37:a7:bf:57:
c6:0c:7b:38:7e:0a:43:a6:be:2c:c6:58:a6:a2:8c:b9:82:3c:
62:0a:9a:02:37:49:89:d9:76:5c:09:56:ca:19:d5:20:c1:2e:
9d:8b:ab:49:55:bc:3f:e9:6c:1b:19:03:88:af:48:0a:0d:d7:
61:4f:a9:10:47:c2:4a:73:cd:90:20:82:b8:af:b0:c9:a3:d2:
4d:e3:9e:fe:36:e0:eb:32:e4:ed:ad:81:35:97:ed:ca:83:76:
6f:67:0d:96:c5:ea:a6:cf:95:17:33:bd:b6:aa:17:7b:e2:e4:
90:0e:c6:ae:08:6b:65:8c:89:95:c6:ad:06:08:62:fa:9c:28:
78:d4:83:74:f2:85:c2:a4:b9:55:bd:92:e3:4b:5e:62:69:77:
e6:35:fb:3a:96:06:56:1c:1f:51:8e:cb:1c:f7:ea:d1:e0:3d:
98:be:0a:fc:39:e7:7c:1b:00:7b:4a:53:c2:95:8c:b0:0a:10:
35:76:d2:be:21:4b:d0:57:17:5d:5c:e3:2f:36:b6:78:95:0e:
25:b9:a4:b1:78:f6:b8:79:7a:01:2d:50:81:10:81:09:ba:b6:
b9:97:14:f3:d1:30:65:2a:d1:32:27:9e:26:38:fd:97:34:e1:
c4:95:e7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org