Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/FA624DE6F3B911EC8957E3A6F1222468.roa
File: FA624DE6F3B911EC8957E3A6F1222468.roa (raw, json)
Hash identifier: /Yyl0a+3FOOCKP/i1Y9KtbKIVkEmhaoxcaNNaKn9nf8=
Subject key identifier: 99:14:4E:6C:36:9E:A8:D1:72:AE:04:89:3C:DA:88:7A:1E:D8:49:01
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0515
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/FA624DE6F3B911EC8957E3A6F1222468.roa
Signing time: Fri 24 Jun 2022 12:34:24 +0000
ROA not before: Fri 24 Jun 2022 12:34:20 +0000
ROA not after: Wed 12 Jun 2030 12:34:20 +0000
asID: 36916
IP address blocks: 41.180.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1301 (0x515)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 24 12:34:20 2022 GMT
Not After : Jun 12 12:34:20 2030 GMT
Subject: CN=62b5af50-38bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:de:dc:aa:ca:61:ca:78:80:69:e8:e8:ab:55:
ba:b3:27:f8:57:4f:ce:7e:1e:d5:e3:2b:54:a4:2e:
5c:c5:9f:3e:35:c1:86:38:11:79:89:f4:e4:71:6c:
03:27:2b:27:a6:c8:57:0d:74:1c:5b:71:86:28:23:
84:d8:15:88:2a:e3:9b:83:5e:95:a9:16:a5:64:0d:
a6:cc:6f:4b:03:0f:48:39:3e:a6:19:26:ed:ce:5e:
29:6b:b5:20:38:75:59:39:ca:bf:41:f8:c4:67:8d:
e2:b3:4e:02:64:79:c5:7a:fd:0f:59:84:9a:62:bc:
77:39:fd:f5:63:ca:80:77:4a:c0:71:d1:5e:a8:8d:
8c:c5:11:c7:7e:49:6b:b0:fc:90:93:97:47:c1:7c:
aa:e4:97:1e:e4:aa:73:f3:d3:5f:bd:c3:6d:6d:55:
af:73:db:d9:04:c9:70:76:49:6a:c4:7d:5b:0a:42:
36:ad:9e:8b:a0:e7:07:0d:b3:cc:86:4b:31:3d:fd:
8b:49:df:f9:33:ba:c1:84:00:8b:02:cd:af:43:9e:
75:61:83:8e:b8:cc:b6:25:a2:be:7a:fb:49:ab:84:
03:a7:56:2c:b3:98:f5:9b:d2:e6:f8:b9:0e:63:7e:
08:d3:ad:4c:73:ca:88:56:3f:f9:c4:ac:71:68:78:
9b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:14:4E:6C:36:9E:A8:D1:72:AE:04:89:3C:DA:88:7A:1E:D8:49:01
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/FA624DE6F3B911EC8957E3A6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.112.0/23
Signature Algorithm: sha256WithRSAEncryption
17:fb:3e:1c:ba:f3:80:97:96:91:d3:9a:fc:f0:1b:85:54:24:
8b:2b:3a:1f:33:7d:2d:c4:0e:88:28:92:fb:fa:3c:a3:05:60:
a7:60:a2:68:43:09:24:17:6e:ee:25:c9:42:5c:a8:7a:1c:78:
37:4f:5a:18:d1:ce:cb:a8:37:6c:b7:d7:39:ba:e7:27:7c:94:
77:ed:75:30:91:03:82:74:90:cd:12:5b:55:dc:49:1c:fc:84:
06:a8:9e:d3:ea:99:a8:f0:ec:95:40:e3:a5:13:1c:0e:97:0b:
9a:0e:03:e0:1a:e2:76:3f:ee:c6:93:a6:98:e2:53:a2:ae:f9:
07:61:b3:a3:d7:41:03:11:60:f7:55:fa:7c:2e:d9:5a:7e:9e:
2d:91:70:8d:0c:7f:3f:4b:d8:32:ac:fc:c3:c9:4b:dc:b3:00:
b0:a4:08:cf:6c:26:19:13:8d:ab:8b:95:4d:41:0a:c7:66:34:
3c:21:5b:99:3a:bf:b0:b1:6d:94:0a:b8:aa:18:4d:4b:76:bb:
ec:be:ef:2f:a8:ee:ba:ac:ea:26:bb:57:83:6f:a4:bf:cb:f7:
be:02:19:41:68:96:b0:2a:15:12:7e:cb:0a:9c:e2:b4:9d:3f:
b6:2e:f7:1b:12:31:df:11:14:fb:5b:5f:e8:97:13:2e:97:29:
25:f3:00:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org