Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/61D36CB28C6E11EB8941205BF8AEA228.roa
File: 61D36CB28C6E11EB8941205BF8AEA228.roa (raw, json)
Hash identifier: 9PFRcVE+2aV6NC11ZTfTZWvB0OQ4iVv4tw0AXk9+RE0=
Subject key identifier: 24:29:5A:1E:17:74:7E:13:78:B6:6B:F4:32:4F:1A:4C:00:E4:EF:1E
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 83
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/61D36CB28C6E11EB8941205BF8AEA228.roa
Signing time: Wed 24 Mar 2021 06:58:48 +0000
ROA not before: Wed 24 Mar 2021 06:58:43 +0000
ROA not after: Mon 24 Mar 2031 06:58:43 +0000
asID: 12258
IP address blocks: 41.86.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131 (0x83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 06:58:43 2021 GMT
Not After : Mar 24 06:58:43 2031 GMT
Subject: CN=605ae328-fe1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:68:24:7a:a5:0e:5d:83:85:9a:b0:b2:74:fa:
e7:64:1b:b0:4d:82:3f:75:d0:65:d2:cd:94:44:d9:
85:7e:6b:6d:04:0e:68:ff:c3:83:c4:a4:f6:f8:96:
63:fd:9f:18:14:e1:eb:42:d7:14:5a:b8:bd:ea:47:
2c:84:4c:4a:83:d8:a2:4c:58:4f:0b:d5:48:33:48:
df:fa:36:69:4c:63:3c:c9:f9:4e:07:31:65:db:61:
e3:a2:8b:d4:79:ee:af:16:ca:74:fb:40:c3:ce:67:
72:29:48:d3:4a:49:08:da:e3:92:e9:db:ff:92:9f:
dd:fb:45:1f:ae:f2:44:cb:ce:8a:8b:71:01:6d:78:
1d:e8:d2:bf:57:0f:ad:8b:4e:8e:5c:9f:67:e3:7c:
aa:c7:51:16:9e:b1:b4:14:24:c4:11:31:32:e8:ed:
87:39:48:2f:1f:11:75:33:cc:8d:46:22:a2:6f:10:
df:0e:bb:f7:ed:f4:26:5a:ef:9c:04:12:4e:0d:27:
2c:ea:5d:c2:6d:39:0b:3a:43:e1:7e:4d:cb:a6:f5:
de:6c:ec:fd:98:aa:e7:82:1a:1f:c0:ba:2b:45:5c:
b6:2d:df:22:f6:5d:eb:82:d7:4f:cd:a2:2b:aa:f1:
62:a5:19:83:45:cc:fa:86:2e:68:9a:45:d4:1c:57:
60:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:29:5A:1E:17:74:7E:13:78:B6:6B:F4:32:4F:1A:4C:00:E4:EF:1E
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/61D36CB28C6E11EB8941205BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.86.112.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:6f:a8:d7:92:23:fa:d1:15:79:36:2b:aa:c2:6c:16:42:11:
d9:b4:56:52:c5:36:a5:91:4c:df:38:49:dd:91:eb:be:6a:d9:
25:e8:ff:bf:83:c8:e9:47:f9:34:2f:fe:46:e6:84:d3:29:5f:
63:8d:c6:f4:9e:61:b6:0e:ac:86:d2:6e:f6:f4:75:bf:48:06:
2c:70:ff:4e:c4:5e:22:f8:04:4b:66:4d:e4:db:c7:63:fa:ac:
a8:2d:51:84:9e:67:e4:cf:13:ae:88:ca:7e:b3:e9:5b:4e:30:
7a:c3:bf:98:d8:3a:8b:de:76:73:75:a8:5a:e9:bd:ae:b8:40:
b6:11:d3:b8:6b:d4:63:90:7e:bd:9b:e8:1b:54:6c:37:5d:ad:
41:f7:01:5e:f6:70:b1:29:bd:47:46:9e:00:53:91:57:ed:95:
dd:6d:de:1e:af:7e:f9:2b:7e:0d:50:1d:ea:8c:7c:5f:88:74:
bd:cf:cf:8b:6d:31:9a:6c:56:7a:a0:9e:a5:98:e0:a7:21:a1:
54:28:1c:3b:3d:3b:b4:ec:ec:13:7a:2e:ec:21:57:29:e6:36:
91:18:ed:33:7e:26:c8:08:51:cd:e9:4d:9b:7f:b7:60:56:41:
05:ec:f1:4b:62:07:ba:3a:f8:16:0c:6c:b1:28:e6:00:79:a3:
2d:d2:fc:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org