Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/9FD6363AF3B411EC80503296F1222468.roa
File: 9FD6363AF3B411EC80503296F1222468.roa (raw, json)
Hash identifier: lS4i7v/28R7TonNxYugXdd30UVa80wj9+tQuT64c6RA=
Subject key identifier: 60:96:61:F1:50:45:21:3B:12:94:AA:15:9B:EB:21:44:AD:8D:59:7F
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 04ED
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/9FD6363AF3B411EC80503296F1222468.roa
Signing time: Fri 24 Jun 2022 11:56:04 +0000
ROA not before: Fri 24 Jun 2022 11:56:01 +0000
ROA not after: Wed 12 Jun 2030 11:56:01 +0000
asID: 36916
IP address blocks: 41.221.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1261 (0x4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 24 11:56:01 2022 GMT
Not After : Jun 12 11:56:01 2030 GMT
Subject: CN=62b5a654-3a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:db:34:dc:a7:17:63:25:16:08:00:32:ef:
c6:c9:9d:b1:1a:c0:0d:d3:50:03:ab:69:0e:0d:74:
ad:2b:a4:ec:95:06:28:7b:0d:a9:0a:66:91:d7:ef:
ff:01:c6:7a:c0:26:db:56:43:fd:7f:b7:1f:9a:04:
3b:5c:a9:e2:46:40:c4:f1:55:2a:82:a6:97:4c:ed:
27:d7:1f:38:b3:35:d3:41:aa:16:1e:84:c5:b6:85:
83:82:d2:28:b1:32:d4:2e:83:52:10:fe:45:c1:db:
d6:e7:4e:0d:06:45:45:9f:cb:c9:2b:fc:28:11:8f:
81:0e:6d:9d:11:85:f0:ea:6a:64:49:34:e3:96:14:
6f:e0:8d:5d:23:58:7d:df:04:d6:ca:14:7d:5c:10:
07:82:ce:4f:39:3b:ca:94:b7:88:68:45:60:5a:5e:
f8:bc:d3:c4:5d:cc:e4:a9:ba:31:c3:12:96:c1:a9:
ac:d6:7c:66:3a:bc:d9:33:a0:97:8a:7e:ff:ba:26:
fc:5b:38:36:18:9e:ec:75:bb:f2:84:14:6e:cd:fa:
72:07:b4:9a:60:b8:c7:0a:4c:c0:b2:0d:3a:11:58:
ff:23:ec:fd:e8:b9:fc:88:5f:18:29:5e:0d:8b:e1:
5c:38:73:40:a1:01:9b:b5:82:e6:fd:dd:af:cc:b6:
54:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:96:61:F1:50:45:21:3B:12:94:AA:15:9B:EB:21:44:AD:8D:59:7F
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/9FD6363AF3B411EC80503296F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:35:c9:91:60:6b:7a:bc:d8:a5:72:92:ca:be:57:03:87:20:
99:8a:13:68:d0:ef:24:51:21:9b:d0:7a:c0:59:27:44:c6:30:
90:9a:a9:06:fc:0e:32:36:aa:f4:04:23:11:26:fe:04:0b:65:
e1:52:02:44:84:29:ac:8f:cd:f4:c7:d6:41:0c:57:e4:b1:5a:
49:78:ad:71:2e:d7:7b:f3:34:bc:a6:26:40:8d:43:e5:76:a8:
ff:98:8e:ef:d1:92:d8:42:f7:98:ff:da:69:90:b3:ba:9b:26:
da:7a:73:a3:2a:86:74:3a:46:8f:6b:c3:bd:dd:9a:24:56:23:
a5:dd:b3:c6:29:d6:da:91:fc:60:f0:ae:c8:15:f1:c5:1c:2b:
a3:05:7e:b4:6c:5e:8a:75:dc:a9:3f:7f:fa:4a:19:2f:f6:85:
32:ed:96:78:c3:e3:65:c5:27:be:af:57:7b:c2:72:2c:d0:f9:
e2:2b:ad:42:b9:f2:0a:70:a2:d1:b1:f5:10:55:d8:91:1e:7e:
f0:34:f9:49:cc:18:18:ee:ce:3d:ff:d3:a3:9e:6d:6b:00:32:
63:c0:37:52:44:ec:6d:a1:5a:3f:1e:56:d6:11:fe:17:04:9d:
a6:ab:67:28:c2:5d:b5:8e:c2:cf:83:30:2a:f6:76:f8:86:2e:
6f:90:ae:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org