Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/21ADEE66F12A11EB9A7D2D02D8A014CE.roa
File: 21ADEE66F12A11EB9A7D2D02D8A014CE.roa (raw, json)
Hash identifier: b08PpLPK1+fRf6+MaR/f2GMQOPjHb1zzCOFTpWy7sr0=
Subject key identifier: 8C:CF:E4:38:74:BF:9A:CC:41:D6:6D:8B:F0:D1:E6:61:20:5D:A8:E8
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 01D3
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/21ADEE66F12A11EB9A7D2D02D8A014CE.roa
Signing time: Fri 30 Jul 2021 11:35:05 +0000
ROA not before: Fri 30 Jul 2021 11:35:00 +0000
ROA not after: Wed 31 Dec 2031 11:35:00 +0000
asID: 37061
IP address blocks: 41.90.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467 (0x1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jul 30 11:35:00 2021 GMT
Not After : Dec 31 11:35:00 2031 GMT
Subject: CN=6103e3e9-1423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:38:71:89:a1:8a:29:b5:8b:14:37:ed:54:
5d:18:bd:74:51:06:b6:f9:cc:f3:9b:60:98:95:6a:
1f:ad:8f:3a:ae:a0:74:8e:a5:ef:d9:ff:61:3c:63:
c5:76:48:0e:35:37:e0:c4:44:45:f7:e7:54:21:c9:
3e:36:af:72:7e:1b:a4:c8:c6:f0:72:fc:80:79:10:
6d:64:51:90:bc:f2:82:6f:c5:a7:75:71:d6:3b:d1:
21:2d:03:c0:eb:dd:84:89:8e:c2:d9:82:2e:b1:91:
2f:52:3e:3f:90:d0:34:31:54:bb:05:9e:fa:bc:89:
12:ae:b9:6b:78:a6:1e:42:43:2d:2d:21:e8:36:48:
cf:2a:07:af:2d:a7:19:34:f6:19:fc:8a:10:19:ee:
e5:24:9f:ec:5e:70:e1:9a:19:27:bb:5e:84:a3:0a:
17:60:0c:9d:e2:a1:4c:19:82:26:dd:2a:f3:c2:61:
62:19:45:dc:7c:6f:c9:75:8a:32:7e:d8:30:0d:a6:
86:b1:5a:b4:dd:65:dc:d4:88:01:c4:e1:c4:0f:20:
91:3f:83:40:eb:a6:ad:a1:8d:97:93:f9:3f:9b:4a:
8d:ee:e9:61:d4:8b:b8:19:2f:f2:b7:c0:75:c4:cc:
f7:29:78:80:af:db:93:5f:ec:9f:d8:3f:67:15:9b:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CF:E4:38:74:BF:9A:CC:41:D6:6D:8B:F0:D1:E6:61:20:5D:A8:E8
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/21ADEE66F12A11EB9A7D2D02D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.90.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:bd:e3:35:51:b8:7f:43:3f:bc:a7:a5:af:a8:82:d5:ad:27:
b4:45:08:02:93:fd:b5:85:bf:e7:a6:03:53:49:b7:4d:34:36:
92:3f:80:e1:6d:b7:d2:7d:d2:07:05:a7:de:c4:c2:7a:00:01:
d9:bd:bc:04:98:3b:b1:12:39:60:19:72:f0:65:21:5c:1e:f8:
c8:13:e1:a9:73:34:37:ca:b4:56:05:cc:88:fb:b1:18:d7:86:
13:98:62:81:68:f2:f5:ab:b6:91:99:7a:e9:75:07:84:9a:e2:
d3:53:bd:9d:d4:1e:70:5d:7d:41:57:e8:1e:e0:6a:8b:05:ec:
32:02:95:25:ab:99:02:d4:71:0c:b6:d1:6c:21:b2:04:6f:c7:
d5:65:64:c3:62:73:b8:9c:65:57:5a:12:bc:61:0a:06:41:e4:
a4:39:5a:75:59:7f:38:79:41:ff:f5:45:d2:c7:7e:18:70:3d:
43:7c:fb:76:d9:24:8f:2f:1b:ad:23:62:13:88:53:cd:7e:00:
3e:21:00:18:6e:ca:1f:77:d6:25:4f:d5:71:c9:0b:71:06:aa:
ff:24:f6:5e:4f:43:5a:9b:72:27:8f:a0:30:e1:62:70:db:38:
9e:30:23:51:52:07:ad:a7:37:c4:d3:eb:a5:6d:c8:87:31:b1:
42:d9:e1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org