Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/8D052C6E62F511ECB7FF99A45A40D577.roa
File: 8D052C6E62F511ECB7FF99A45A40D577.roa (raw, json)
Hash identifier: f7lP3HJIezJ1Q3qR69/Kdv7RG2ww+ro2OIFRVPwbkOQ=
Subject key identifier: 66:C2:D7:33:09:23:7A:72:29:5E:A6:66:24:7D:30:EC:75:0A:EB:68
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 0276
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/8D052C6E62F511ECB7FF99A45A40D577.roa
Signing time: Wed 22 Dec 2021 07:05:31 +0000
ROA not before: Wed 22 Dec 2021 07:05:28 +0000
ROA not after: Wed 31 Dec 2031 07:05:28 +0000
asID: 19905
IP address blocks: 41.80.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 630 (0x276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Dec 22 07:05:28 2021 GMT
Not After : Dec 31 07:05:28 2031 GMT
Subject: CN=61c2ce3b-6192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:87:81:c1:98:70:e7:11:c6:2b:f2:59:0c:5d:
ff:c4:37:61:23:b3:57:b4:da:45:d7:b7:e7:ef:b1:
2f:1d:dd:47:6d:4d:70:c8:66:1d:5f:c2:32:16:20:
eb:78:53:a1:6f:bd:0f:9c:4e:6e:bf:4c:c4:88:22:
7b:60:37:b8:e7:89:37:2c:92:59:e9:bb:a8:31:89:
0d:3e:18:6e:11:8e:3d:23:9c:24:54:fd:7d:c7:4e:
16:ec:4d:c0:ee:d1:64:c0:28:23:1f:a6:8e:af:0c:
24:e0:9d:c8:ff:2c:07:bf:ed:55:a4:f3:b4:9f:33:
6d:41:8f:3c:54:ed:33:48:67:7e:48:3d:8f:ca:8c:
82:4e:22:be:5e:d5:f2:15:ed:37:2a:e1:bd:45:a0:
5c:43:08:8a:f9:7b:67:e3:66:d6:18:67:25:53:ed:
c5:90:0d:0e:4b:3d:86:f1:08:53:52:a0:77:fb:a0:
41:95:b6:e9:01:9b:df:b1:db:af:22:42:10:fb:5f:
b3:a9:23:c8:4d:58:c1:bf:c8:b8:6b:15:74:c3:78:
43:3f:18:c8:23:ef:47:53:6b:83:9f:39:b8:3c:b4:
f6:16:d7:b7:9b:7d:23:f9:3a:a3:6a:e2:33:5a:e8:
57:11:b6:5c:d3:7a:a6:a3:b4:19:29:15:e8:0f:74:
f2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C2:D7:33:09:23:7A:72:29:5E:A6:66:24:7D:30:EC:75:0A:EB:68
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/8D052C6E62F511ECB7FF99A45A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.80.0.0/15
Signature Algorithm: sha256WithRSAEncryption
88:03:34:89:0b:0c:1c:d4:16:7e:3b:c0:3d:e1:63:0a:e8:19:
42:4d:d5:b6:ae:c5:9b:99:ce:c5:cb:84:cb:c5:5a:9d:5e:9a:
25:fd:f4:84:7e:8f:97:1c:8a:c3:93:25:ec:b5:38:f4:84:44:
41:44:c9:22:c4:99:e3:6b:9c:31:ee:49:4f:65:ae:c6:60:24:
c7:38:81:8f:b0:1a:65:85:9c:51:8d:44:e1:8f:8e:4b:7a:90:
72:ab:1d:4d:77:1f:39:80:0d:9d:b6:9a:7f:3b:ca:d9:23:f2:
51:d3:4a:96:6e:d9:c1:23:e2:db:ce:39:40:28:d2:0f:59:2f:
0c:d7:23:80:b2:5c:5b:52:7d:2d:e2:54:32:36:7c:3d:bf:73:
bc:c8:c3:33:ae:0a:f5:67:90:10:ac:0b:09:03:9d:df:c5:96:
3e:24:ae:e3:41:6e:c7:d5:da:53:29:0e:7b:b9:43:67:29:5d:
80:cc:19:70:7a:24:b5:60:8c:dd:f9:10:77:be:66:56:b0:a5:
07:0e:04:2f:1b:36:12:52:96:2e:e9:74:21:5b:ce:62:80:9e:
fc:d4:ed:22:76:f4:b7:e8:83:33:c0:e8:5c:e5:98:3c:f0:60:
d4:ba:ef:02:9a:ea:b5:f9:c0:6b:9d:81:0e:9f:a7:0a:50:26:
81:26:56:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org