Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/AAE5DC003C0211EE9D51094F4AD9E6FC.roa
File: AAE5DC003C0211EE9D51094F4AD9E6FC.roa (raw, json)
Hash identifier: HDSfdch/x0KgBC6okb6gdyLRvgcqztUtPETanE4wxHs=
Subject key identifier: 1B:D8:B2:EA:CC:2F:29:4F:28:A8:59:73:DA:EA:1D:5A:3D:02:AD:CE
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 04D1
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/AAE5DC003C0211EE9D51094F4AD9E6FC.roa
Signing time: Wed 16 Aug 2023 07:01:05 +0000
ROA not before: Wed 16 Aug 2023 07:01:01 +0000
ROA not after: Wed 31 Aug 2033 07:01:01 +0000
asID: 20011
IP address blocks: 41.135.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 31 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1233 (0x4d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Aug 16 07:01:01 2023 GMT
Not After : Aug 31 07:01:01 2033 GMT
Subject: CN=64dc7431-0dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:04:bf:61:c1:e4:ae:4b:e4:3a:7d:fc:e1:
35:04:5f:1c:32:ac:7b:84:33:cf:3f:5d:c4:0e:2b:
74:81:56:c8:e6:3e:c5:9a:56:72:7d:33:88:7d:5d:
d9:22:31:94:b8:df:a0:e8:03:31:13:b5:b6:ab:47:
6b:24:39:45:04:61:09:57:66:f8:23:74:0e:3c:f5:
c5:58:b6:71:bf:ed:4d:47:66:0c:c3:0e:38:89:a2:
ba:c3:5c:f3:e8:39:74:bc:0e:92:ae:b7:c7:ad:8a:
be:6e:9c:39:c5:e1:b0:15:bc:fc:bc:85:d2:0a:62:
aa:dd:c1:fe:3e:16:0d:d9:c9:8f:77:3a:f3:0a:38:
64:f1:86:46:30:fd:bd:7d:4e:d5:17:25:7d:fd:51:
46:60:15:44:16:68:ad:c5:4b:b9:a1:58:d3:62:47:
1a:4f:52:11:9d:43:7e:40:8c:3c:0f:19:f1:2b:44:
c0:9b:05:9a:53:e3:63:06:f6:24:cc:38:e8:01:fb:
22:5f:a1:b5:da:f4:58:56:0c:21:30:b5:d0:72:f3:
dd:84:2f:07:8f:c2:28:28:37:6a:ec:fe:16:4d:67:
45:62:47:92:4e:d1:27:53:37:65:88:91:57:a2:12:
eb:d7:8a:34:ea:e0:5d:34:07:35:73:34:7e:05:5e:
ec:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D8:B2:EA:CC:2F:29:4F:28:A8:59:73:DA:EA:1D:5A:3D:02:AD:CE
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/AAE5DC003C0211EE9D51094F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.135.192.0/19
Signature Algorithm: sha256WithRSAEncryption
52:4c:61:64:8f:2f:2b:1c:4d:b1:82:2b:2c:48:a1:ca:6b:63:
f4:1c:6a:69:5c:de:9e:1a:63:61:9a:22:9b:6e:bc:a5:37:80:
10:75:3e:d8:ab:02:bc:45:07:e8:44:97:3d:00:45:68:76:d9:
55:d0:15:0c:e5:2c:9f:7f:20:89:e8:3f:43:88:fa:de:50:ab:
66:e3:08:38:21:69:5b:46:05:8c:34:31:f2:4e:84:e9:ef:8f:
83:b8:68:fb:1b:b6:90:a4:99:f2:70:42:7b:73:d3:66:1f:5a:
a6:4f:a5:0b:87:ff:a3:2c:db:ab:1c:de:44:93:ce:45:be:f6:
c3:08:53:33:6d:e0:26:bc:df:fe:37:92:62:d3:70:76:ba:bc:
97:11:e8:7d:2d:62:8e:e7:46:dd:63:c9:d7:fd:77:63:8c:00:
aa:49:61:b9:23:53:9c:80:c1:d4:45:9f:30:fe:f5:a4:46:38:
92:c3:58:60:cc:b4:59:4a:be:8b:72:e8:f0:4f:b1:48:32:4c:
1f:77:bf:61:08:50:38:91:14:64:2d:04:53:51:8a:fa:4f:d2:
bd:38:8d:aa:a3:aa:4c:a9:86:f5:fe:fb:25:ef:5b:1c:f8:b1:
6d:97:1a:1c:54:c9:b0:ec:f4:6a:cb:89:cc:9d:5c:7b:b3:29:
71:9f:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 02:49:26 2024 by rpki-client on console-fra.rpki-client.org