Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/51CD22A06E3F11EC8BCA63C15A40D577.roa
File: 51CD22A06E3F11EC8BCA63C15A40D577.roa (raw, json)
Hash identifier: E5rUiTU+lgeiOsadbVjO4CnL7A4nHG6PajRp8I6dh5k=
Subject key identifier: 79:5E:99:D1:46:65:B1:05:E5:00:79:A0:8D:62:05:C9:9E:B0:1E:45
Certificate issuer: /CN=F3674116AF/serialNumber=9B7CD4913D4D40C2C8E10BEA394A8596BC3FE776
Certificate serial: 2F
Authority key identifier: 9B:7C:D4:91:3D:4D:40:C2:C8:E1:0B:EA:39:4A:85:96:BC:3F:E7:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/m3zUkT1NQMLI4QvqOUqFlrw_53Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/51CD22A06E3F11EC8BCA63C15A40D577.roa
Signing time: Wed 05 Jan 2022 15:51:18 +0000
ROA not before: Wed 05 Jan 2022 15:51:14 +0000
ROA not after: Sun 31 Jan 2049 15:51:14 +0000
asID: 25139
IP address blocks: 41.220.32.0/20 maxlen: 32
196.46.0.0/20 maxlen: 32
197.249.0.0/16 maxlen: 32
2c0f:f5e0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/m3zUkT1NQMLI4QvqOUqFlrw_53Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/m3zUkT1NQMLI4QvqOUqFlrw_53Y.mft
rsync://rpki.afrinic.net/repository/afrinic/m3zUkT1NQMLI4QvqOUqFlrw_53Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3674116AF/serialNumber=9B7CD4913D4D40C2C8E10BEA394A8596BC3FE776
Validity
Not Before: Jan 5 15:51:14 2022 GMT
Not After : Jan 31 15:51:14 2049 GMT
Subject: CN=61d5be76-f586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:48:54:ac:43:7d:8a:f9:c8:15:9b:5e:4b:
f6:76:fd:23:1c:52:d6:19:15:0f:fa:75:7f:1b:97:
fc:22:cf:9c:f6:79:bb:c4:dd:0f:ab:05:76:cb:47:
63:2e:11:75:a6:98:2d:53:09:0e:0c:56:a9:90:55:
48:0e:ce:95:c3:30:b4:da:ef:c1:e8:b7:a3:27:c6:
c1:e0:1f:04:9f:23:4c:79:55:5c:55:c4:59:2f:14:
51:c6:34:16:c2:79:65:38:34:fc:08:f7:ac:6d:32:
df:60:fb:64:61:77:a5:f7:99:b5:4a:fb:be:b6:6a:
19:d8:b5:11:3d:e5:95:a5:d1:b2:bf:14:e1:86:69:
14:93:0f:24:e2:39:e0:39:21:1d:76:50:6a:65:96:
df:73:32:fb:50:45:fa:58:8e:2f:64:3f:fd:01:df:
db:df:53:ac:44:b2:fc:a3:d5:d0:e1:3e:8f:60:f3:
92:f8:29:d1:72:84:d5:cf:62:24:eb:a6:4e:a8:57:
c4:fe:54:a0:93:da:31:f7:65:69:42:5e:7d:3e:65:
7f:bc:a9:03:63:22:cf:7b:af:95:2e:ac:88:62:4a:
2d:65:83:60:9c:3a:dc:be:20:f3:9a:02:7f:ba:32:
99:0b:bc:f2:33:e9:fa:c0:20:04:82:d5:e1:f3:f1:
e4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5E:99:D1:46:65:B1:05:E5:00:79:A0:8D:62:05:C9:9E:B0:1E:45
X509v3 Authority Key Identifier:
keyid:9B:7C:D4:91:3D:4D:40:C2:C8:E1:0B:EA:39:4A:85:96:BC:3F:E7:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/m3zUkT1NQMLI4QvqOUqFlrw_53Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/m3zUkT1NQMLI4QvqOUqFlrw_53Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3674116/9F8177DC4DC711EC99D4F415D8A014CE/51CD22A06E3F11EC8BCA63C15A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.220.32.0/20
196.46.0.0/20
197.249.0.0/16
IPv6:
2c0f:f5e0::/32
Signature Algorithm: sha256WithRSAEncryption
6e:65:47:6e:95:d1:da:a7:fb:42:11:bf:8e:23:80:9b:50:fa:
8a:19:ef:70:8c:a7:3f:f0:cf:7b:84:97:e7:b7:73:25:5d:14:
dc:4c:d5:7d:47:a3:1f:2b:51:c3:58:f7:55:39:7b:79:a6:9f:
17:3a:54:ed:54:31:f8:e8:b0:bb:ba:fd:e2:31:e2:c0:5f:82:
58:5e:47:38:e9:a6:0a:c9:08:14:3e:4f:d7:a6:62:08:0c:7d:
4b:38:09:96:72:91:ba:e6:c4:10:99:da:5d:13:90:c0:80:71:
99:fb:59:ea:76:c8:90:9d:26:d3:7e:a0:1e:1f:25:e4:52:12:
2c:c5:b1:ec:b2:6d:80:28:7a:32:5d:99:b2:bc:9a:03:fc:f9:
35:a8:04:00:8f:4c:5c:e4:48:21:b3:72:30:55:a7:f1:04:c8:
b9:3f:80:7c:d8:81:3a:2d:72:62:99:80:53:19:68:1c:78:e6:
2d:f8:23:ae:34:e3:8f:04:42:0e:a7:79:20:7d:57:1a:81:fc:
f4:21:b4:d5:0a:84:4f:43:f6:61:b8:02:3b:7a:67:19:ff:12:
d7:35:80:5d:37:85:b2:8a:e4:0a:87:9d:97:57:49:d2:78:31:
35:fa:7c:a6:57:68:49:29:2d:fc:f1:9e:ea:55:ca:b2:5f:b8:
cd:e6:4d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org