Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D8B717D43C0211EE9FAF784F4AD9E6FC.roa
File: D8B717D43C0211EE9FAF784F4AD9E6FC.roa (raw, json)
Hash identifier: JZqYCWgeX0gbPPbtrMgr8yrwxMXE7YfbYxxcnMBVaDc=
Subject key identifier: E3:82:7A:3D:83:E3:11:A1:9A:C1:9D:36:DD:5D:C3:5F:05:B1:FC:D1
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 04D3
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D8B717D43C0211EE9FAF784F4AD9E6FC.roa
Signing time: Wed 16 Aug 2023 07:02:22 +0000
ROA not before: Wed 16 Aug 2023 07:02:18 +0000
ROA not after: Wed 31 Aug 2033 07:02:18 +0000
asID: 20011
IP address blocks: 41.135.0.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1235 (0x4d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Aug 16 07:02:18 2023 GMT
Not After : Aug 31 07:02:18 2033 GMT
Subject: CN=64dc747e-3cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:c6:a4:db:28:6b:36:1d:c6:0d:ae:a5:56:
0e:58:4d:cc:2d:ec:e7:a1:f0:91:8a:af:14:91:b6:
72:63:70:bb:59:2e:9a:93:8b:ae:fc:29:ed:88:cd:
16:52:0a:bb:28:be:d7:c9:87:d4:97:e4:65:67:9f:
1b:6d:de:20:c7:2c:52:7a:a3:0f:d7:11:00:d1:2f:
3a:a4:e5:38:47:e6:87:cd:ad:2a:26:a5:b2:c7:09:
f2:e5:fa:4a:ff:76:63:b9:dd:6b:3f:dc:31:75:17:
1f:4f:73:3e:10:8e:fc:0d:e5:e6:ea:b3:03:7d:62:
03:04:3c:01:81:2e:74:b3:c2:72:a0:6b:f0:cf:c8:
e0:93:46:4f:c6:28:5a:4f:3c:07:31:88:97:e6:9e:
53:2c:49:81:40:b1:99:b1:72:09:fb:e5:ca:24:04:
fb:e2:09:c1:00:bd:52:92:70:d8:3d:5b:45:1b:c0:
df:64:3c:1c:ef:90:f8:57:81:45:0d:d6:37:f4:ac:
9a:8f:a2:19:eb:4d:3b:51:ba:18:b7:0e:0d:31:53:
e7:d7:4d:3a:22:98:14:ea:1a:46:8d:4d:61:49:0f:
32:19:e6:2a:04:17:b2:33:d8:9a:29:a8:71:4d:46:
29:38:e6:0a:0f:8a:16:50:55:38:73:a3:9f:65:19:
a4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:82:7A:3D:83:E3:11:A1:9A:C1:9D:36:DD:5D:C3:5F:05:B1:FC:D1
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/D8B717D43C0211EE9FAF784F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.135.0.0/18
Signature Algorithm: sha256WithRSAEncryption
29:bd:93:c5:df:98:91:1f:ca:28:35:16:f1:47:69:1f:1c:45:
02:b9:f1:7e:66:62:ba:a0:ef:0c:d0:8a:0e:8d:c9:c5:bc:7e:
4f:04:32:ed:8b:69:7f:9a:b3:a6:37:9c:98:18:d8:c0:93:5a:
af:84:da:8a:ab:81:88:29:19:5b:56:d8:93:0b:f9:a2:c7:90:
f9:b3:15:0b:d6:d3:8e:d3:e1:ff:5f:f7:92:31:fb:d7:d7:d2:
f1:1b:13:94:a0:82:33:ce:a2:d8:d9:9a:9e:43:3e:49:6b:b2:
bc:51:38:f2:0e:f5:04:6c:96:b8:b0:c8:76:7e:f4:64:7a:6f:
78:7d:87:96:0a:b1:e9:a9:21:bb:a0:3f:08:61:da:a5:f7:cc:
5d:a4:76:f2:23:e5:63:a0:cc:a6:e2:99:54:ff:c6:cf:ba:52:
22:9b:b9:33:c6:cd:66:a9:f6:09:df:70:d0:7d:df:4d:c7:d4:
e3:f1:4f:c9:d8:7d:9b:98:d8:16:26:26:a1:92:75:f7:f2:a1:
6d:ae:40:ad:3d:f0:d0:05:ec:af:ae:95:8c:aa:57:88:9f:95:
4d:f2:3f:66:5d:79:33:1f:92:67:7a:9b:d4:f0:82:96:e1:2c:
cf:71:6e:44:68:14:ae:d3:80:7a:fd:7b:7b:ca:01:04:e7:e0:
ee:bf:75:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:28 2024 by rpki-client on console-fra.rpki-client.org