Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/A58E6A360BEA11EDA9FEEC87F1222468.roa
File: A58E6A360BEA11EDA9FEEC87F1222468.roa (raw, json)
Hash identifier: 44r9B/qpqmFIgSBVQ/PH5r/umAKiafCEq/GPLaYgRDE=
Subject key identifier: 38:CC:90:80:EC:22:D3:59:70:D8:7B:CB:D4:FB:18:35:A2:63:E4:B8
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0553
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/A58E6A360BEA11EDA9FEEC87F1222468.roa
Signing time: Mon 25 Jul 2022 07:23:15 +0000
ROA not before: Mon 25 Jul 2022 07:23:09 +0000
ROA not after: Wed 07 Jul 2032 07:23:09 +0000
asID: 36916
IP address blocks: 41.180.0.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1363 (0x553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jul 25 07:23:09 2022 GMT
Not After : Jul 7 07:23:09 2032 GMT
Subject: CN=62de44e3-ab44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:f2:d4:1a:d5:1b:be:ba:a4:ba:a0:2c:bb:
8d:69:da:23:58:56:f3:fb:ad:e7:c1:d2:a5:ee:32:
11:9f:2b:86:00:35:3b:28:65:21:cc:e8:c4:89:b0:
bd:26:14:1a:e8:55:c1:3d:4b:3e:cc:c0:24:70:cd:
75:8f:47:b7:8e:47:de:49:2f:11:5a:8b:7c:ca:0c:
55:4f:ed:33:e0:ac:d5:c4:31:00:c1:08:e3:ee:c8:
ed:41:88:16:18:d9:9b:d4:a2:c8:49:38:0c:c2:b0:
15:e9:a2:c5:ca:71:7c:18:e6:54:ee:10:fd:56:28:
85:67:39:e3:d0:67:77:a7:57:15:e0:31:28:41:65:
47:fb:d2:4e:e0:fc:55:c5:b7:7b:fa:20:66:9b:c2:
dc:d4:b5:bc:e5:a9:05:b5:26:3b:f2:dc:fe:cd:62:
f1:fa:63:44:3a:26:76:3c:27:42:15:81:30:06:01:
b5:53:cd:c1:a1:69:f9:64:45:db:7d:f0:a4:b5:01:
63:26:a6:ea:a0:17:0f:d4:ae:51:3a:61:e5:eb:74:
20:50:77:d3:60:f6:84:97:cc:a7:f2:24:2a:94:a5:
ca:5b:72:6c:17:ec:95:34:0b:f1:63:76:2c:b6:8d:
76:ca:ae:ce:27:cd:8f:36:2a:13:ca:51:f4:d4:90:
26:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CC:90:80:EC:22:D3:59:70:D8:7B:CB:D4:FB:18:35:A2:63:E4:B8
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/A58E6A360BEA11EDA9FEEC87F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.0.0/20
Signature Algorithm: sha256WithRSAEncryption
51:d1:44:65:0d:8a:37:3d:3a:a3:cd:e8:ec:e8:d6:e2:0e:25:
ef:63:b4:f2:99:cb:ea:d3:79:2a:6e:9e:02:c6:89:a4:40:08:
16:20:fe:55:d3:64:d1:e8:03:03:2a:98:1a:e3:df:f6:30:06:
8d:c8:9e:0e:af:5a:61:45:da:4a:37:b2:47:41:f8:92:b8:f2:
c9:d1:ad:b4:7b:ac:2e:91:52:69:d5:ea:2f:01:d6:6d:01:45:
92:61:25:e9:1d:8e:2f:b6:88:76:68:8f:93:cd:f3:aa:c9:b5:
e7:25:eb:60:3c:ec:d6:30:94:d2:12:02:db:5a:67:7b:86:fc:
f8:a3:26:52:6c:eb:cb:e9:bc:c6:73:00:bd:51:55:e4:8e:64:
5f:bd:39:5c:32:43:92:68:67:2f:37:e6:fb:a7:e4:78:30:a7:
95:51:72:21:3e:bf:b6:a2:d2:61:9e:af:79:c8:aa:9b:d7:2e:
08:4d:ca:45:f6:4a:4e:b7:0e:a5:a9:92:29:f9:02:78:9b:39:
ca:1e:15:7d:de:0d:b0:94:af:85:71:b6:03:5e:24:c0:7e:a1:
11:04:60:fc:91:3d:39:4d:99:49:c7:36:e1:48:f2:c4:7f:48:
d0:ba:33:e6:68:0a:ee:45:b3:2b:65:bc:ca:40:8e:34:a9:a3:
e6:8c:58:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org