Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/65664DC075A111EF89CAA679762E951A.roa
File: 65664DC075A111EF89CAA679762E951A.roa (raw, json)
Hash identifier: XxRKb4SfyFdMFhBN2PfDNEUZavtGLlcUwDxbpsbnBrs=
Subject key identifier: 28:4E:55:F8:CE:54:E2:04:58:79:20:C6:1D:D2:C1:04:C8:2B:34:74
Certificate issuer: /CN=F3674008AF/serialNumber=EA334C1645C0CD49A1D8395AE3CA52FF2D51B66C
Certificate serial: 018F
Authority key identifier: EA:33:4C:16:45:C0:CD:49:A1:D8:39:5A:E3:CA:52:FF:2D:51:B6:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6jNMFkXAzUmh2Dla48pS_y1Rtmw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/65664DC075A111EF89CAA679762E951A.roa
Signing time: Wed 18 Sep 2024 09:35:52 +0000
ROA not before: Wed 18 Sep 2024 09:35:42 +0000
ROA not after: Mon 18 Sep 2028 09:35:42 +0000
asID: 37675
IP address blocks: 41.78.184.0/22 maxlen: 24
154.73.152.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/6jNMFkXAzUmh2Dla48pS_y1Rtmw.crl
rsync://rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/6jNMFkXAzUmh2Dla48pS_y1Rtmw.mft
rsync://rpki.afrinic.net/repository/afrinic/6jNMFkXAzUmh2Dla48pS_y1Rtmw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399 (0x18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3674008AF/serialNumber=EA334C1645C0CD49A1D8395AE3CA52FF2D51B66C
Validity
Not Before: Sep 18 09:35:42 2024 GMT
Not After : Sep 18 09:35:42 2028 GMT
Subject: CN=66ea9ef8-0e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a4:d3:10:fc:a4:72:fe:23:d2:55:b4:be:4a:
69:f7:35:d8:e5:93:8c:bf:bc:8a:c1:45:e7:bd:29:
f2:0f:8b:22:b0:b0:63:76:4f:86:d2:92:40:b1:e0:
1a:52:3a:2f:aa:ab:fa:6f:58:cb:a6:96:2f:64:ed:
1c:45:85:f5:10:22:bc:92:f9:ec:6b:3f:8c:62:9e:
23:22:a2:80:70:a9:d1:ed:64:ed:0e:2b:4d:9e:9d:
be:e3:6d:67:e9:fd:14:bb:67:3d:1e:dc:d3:46:db:
5a:c1:56:eb:16:4d:b4:38:7c:46:c3:8f:4f:dc:2e:
6c:49:63:89:5e:94:16:0b:26:65:b2:dd:23:ca:2a:
02:37:33:bd:59:34:b5:32:51:54:0d:0e:18:54:fb:
ec:45:a2:5f:58:97:43:ff:32:8c:92:08:6e:66:3d:
b2:7d:30:a8:ac:1b:bf:0a:8a:57:ed:10:13:c2:5c:
77:ea:45:0d:02:94:b1:cf:d0:6d:9c:d2:1b:21:47:
81:9c:9c:13:93:74:5e:01:a0:4d:5a:a2:fc:fa:b6:
0b:e7:ff:09:60:56:f9:de:58:a8:89:62:1b:4a:95:
48:b4:ea:d5:41:05:03:47:09:f1:7d:4c:21:da:6f:
8b:7d:8d:08:36:3b:9d:34:92:b2:f5:3a:a0:fd:0c:
64:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4E:55:F8:CE:54:E2:04:58:79:20:C6:1D:D2:C1:04:C8:2B:34:74
X509v3 Authority Key Identifier:
keyid:EA:33:4C:16:45:C0:CD:49:A1:D8:39:5A:E3:CA:52:FF:2D:51:B6:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/6jNMFkXAzUmh2Dla48pS_y1Rtmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6jNMFkXAzUmh2Dla48pS_y1Rtmw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3674008/6D8B28CE473D11EE9CE7E3664AD9E6FC/65664DC075A111EF89CAA679762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.184.0/22
154.73.152.0/21
Signature Algorithm: sha256WithRSAEncryption
58:18:67:52:56:74:71:79:23:3d:d3:fc:73:be:fc:f3:ec:a0:
1d:87:73:e3:0f:5f:37:51:5c:ac:59:6f:85:2a:60:0b:72:c5:
92:eb:96:47:66:bb:70:31:24:8e:45:8f:4c:fc:e0:94:57:e5:
24:42:67:71:2f:2c:d4:81:c6:e6:12:b5:3a:44:b8:1d:b4:f4:
24:96:0d:45:23:e0:f6:21:12:93:5f:73:f7:2d:32:02:7f:a7:
5a:6c:91:07:08:95:ee:05:4b:a9:27:e9:d8:35:c4:8e:5b:eb:
9f:8f:9f:a2:72:88:d6:26:ea:b7:c2:ef:76:0e:0a:42:33:f7:
fb:6c:92:f3:d7:ed:2e:88:3b:4a:3c:08:25:f8:39:11:4f:6c:
e1:61:c3:97:f1:80:56:b6:78:5d:09:43:c2:67:81:16:35:b0:
53:20:3d:d0:a5:7f:35:db:53:f9:55:29:82:9a:b1:11:9c:61:
d5:9c:3b:55:e5:e3:05:54:01:9e:f8:8f:58:fe:0a:02:76:64:
d7:c6:a8:de:13:ca:18:94:09:7f:b3:b5:fd:1d:df:04:a0:1f:
36:b1:5b:1b:53:89:d2:f9:ed:b5:1e:dc:c0:7e:dc:96:66:67:
5a:4a:f9:e0:73:67:6f:06:a1:21:9a:bf:ba:49:45:97:62:ee:
54:6a:27:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org