Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/FBD09FE6387411EF80E58557762E951A.roa
File: FBD09FE6387411EF80E58557762E951A.roa (raw, json)
Hash identifier: gpW090sQ3gSntI8ZuxHiEJc42Mhxrl4srlTmd4Q5n+I=
Subject key identifier: A3:B6:D7:9D:3B:EE:B1:1F:56:12:BA:C4:31:15:19:CA:8B:B8:CD:BD
Certificate issuer: /CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Certificate serial: 8A
Authority key identifier: 4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/FBD09FE6387411EF80E58557762E951A.roa
Signing time: Tue 02 Jul 2024 13:14:16 +0000
ROA not before: Tue 02 Jul 2024 13:14:13 +0000
ROA not after: Tue 18 Jul 2034 13:14:13 +0000
asID: 328866
IP address blocks: 41.190.224.0/24 maxlen: 24
41.190.225.0/24 maxlen: 24
41.190.226.0/24 maxlen: 24
41.190.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.mft
rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138 (0x8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Validity
Not Before: Jul 2 13:14:13 2024 GMT
Not After : Jul 18 13:14:13 2034 GMT
Subject: CN=6683fd28-575a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:e0:b6:1e:e0:bc:2a:50:81:dc:77:4d:57:
0c:38:20:b6:c8:7c:b4:3c:4a:a4:ae:45:66:32:ef:
62:5f:d8:c8:e7:ee:ca:f3:ea:5c:dc:9a:c0:ca:32:
68:6b:94:5a:7e:a5:db:f5:b9:ac:b1:6a:ff:16:95:
2f:28:f2:24:3e:01:eb:40:e4:0c:fb:e7:c7:4f:a1:
00:d8:a8:78:79:5c:00:75:fa:4e:06:1c:48:d3:1d:
35:57:4e:b9:d8:d5:4c:34:95:22:ac:4d:ab:ae:94:
2a:b8:d3:e5:6b:6e:83:d9:d2:da:3f:3b:6f:82:5b:
d1:de:35:d8:1a:d3:b4:85:eb:31:30:58:db:35:82:
6f:3b:6f:ae:90:36:d2:87:91:7f:94:5e:fd:7e:37:
9f:65:e8:4a:aa:06:b7:68:da:00:ca:a7:90:3a:f7:
16:51:7a:f7:07:c7:ae:91:28:f2:d6:12:fc:a0:a9:
43:6f:fa:59:44:36:1a:58:09:1d:f8:3f:19:4a:cc:
ef:05:47:19:55:16:ed:c8:89:52:eb:92:44:14:43:
e1:76:84:a6:29:ef:ec:59:fa:47:d7:0c:d0:57:c0:
b6:8c:21:78:3b:6b:6c:47:c8:95:1f:89:c9:32:b8:
68:46:d9:2f:30:a7:86:ad:52:86:1d:0e:3a:4c:6a:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B6:D7:9D:3B:EE:B1:1F:56:12:BA:C4:31:15:19:CA:8B:B8:CD:BD
X509v3 Authority Key Identifier:
keyid:4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/FBD09FE6387411EF80E58557762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.190.224.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:64:9c:db:af:5f:de:98:42:ce:f2:12:38:00:f7:8b:31:a9:
c2:34:b6:ac:4b:4c:76:a4:7c:0d:12:79:e6:25:c0:fc:ce:d4:
eb:3e:06:7a:cc:b0:76:41:5a:66:4f:f5:f6:06:92:48:1c:c2:
45:21:22:7f:09:93:71:a5:8c:3c:fc:ae:65:e1:24:17:1f:76:
56:57:1b:af:5a:0d:2b:92:b5:e2:b4:01:c6:d8:af:2e:ea:6a:
ea:1b:f6:32:0a:d3:0d:ec:42:ce:a0:cc:56:12:3c:6a:c9:20:
a8:4f:1e:7e:34:93:2b:14:e9:47:79:17:b9:76:fd:7f:3f:4c:
d7:99:e0:9e:2f:60:c2:00:13:1f:b5:03:64:e6:67:f2:f4:36:
65:2c:30:2c:45:56:2a:a2:87:9e:74:d3:94:e9:ec:a6:e6:7d:
80:99:8b:5c:c5:17:9b:b5:1d:77:8a:7e:d2:a7:08:3b:55:1e:
68:61:b5:40:b3:bd:11:52:30:e9:e7:da:7c:c6:33:8d:b1:61:
6a:c0:59:3c:c5:b0:02:ea:0f:28:4f:1a:a6:75:d8:2a:a5:f7:
c3:21:91:7f:44:2c:dc:2c:88:6b:55:86:75:48:c5:ce:32:fa:
a1:e8:21:90:17:3d:df:82:43:d3:b8:da:ce:4e:c3:72:87:fb:
57:05:53:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:24 2024 by rpki-client on console-fra.rpki-client.org