Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/A0F4FE462F8D11EEA8DE998B4AD9E6FC.roa
File: A0F4FE462F8D11EEA8DE998B4AD9E6FC.roa (raw, json)
Hash identifier: 830+xKLLeUS8qzjVon4CRbLCCZUkeP05eu82jVcPd9c=
Subject key identifier: 31:AF:EC:2F:1A:93:E2:C9:31:A8:10:35:21:9F:32:5C:8A:25:72:87
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 04F3
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/A0F4FE462F8D11EEA8DE998B4AD9E6FC.roa
Signing time: Mon 31 Jul 2023 10:33:03 +0000
ROA not before: Mon 31 Jul 2023 10:32:59 +0000
ROA not after: Fri 31 Jul 2043 10:32:59 +0000
asID: 198949
IP address blocks: 41.90.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1267 (0x4f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF
Validity
Not Before: Jul 31 10:32:59 2023 GMT
Not After : Jul 31 10:32:59 2043 GMT
Subject: CN=64c78ddf-3a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:54:cc:20:3b:e2:b2:c9:43:1b:25:44:94:04:
6a:93:fd:26:68:f5:fc:13:6c:c1:c7:43:8b:fd:20:
6a:53:40:f7:16:72:2e:d1:11:5b:34:fa:73:98:1e:
71:d3:40:9f:de:4b:3f:c4:fb:49:e3:e5:03:79:a6:
5a:16:85:71:c4:f6:4c:00:e6:ff:d0:d7:63:c9:6a:
7a:68:11:f7:a7:ae:3c:0d:1d:7d:e9:60:24:9e:4b:
ab:63:1a:b7:cb:b4:8c:93:5c:cb:f0:0b:97:b3:d9:
39:3e:34:32:0c:c1:e7:94:5a:be:85:0f:97:82:da:
03:0f:f8:29:3a:1b:0e:2a:41:48:a9:0c:09:23:5c:
34:8b:2a:b5:d5:4c:b4:00:a9:0f:01:a5:a5:74:e8:
3b:62:1d:1e:59:bf:91:b9:f1:28:d3:9f:e8:b9:dc:
a5:3e:85:56:95:5c:a3:59:c3:62:60:e4:b3:d3:a6:
29:bd:36:eb:71:39:12:32:d0:ba:ad:d1:e3:dc:2f:
bf:3f:04:58:84:1c:a7:2c:48:69:57:7e:a2:25:7c:
0c:68:d0:15:ed:0f:0e:28:f2:26:67:35:ca:5b:00:
36:73:d9:1a:12:1b:bd:a6:6e:83:b3:1f:1f:70:de:
a0:af:2b:e7:2f:12:5b:15:a7:e5:92:d3:7c:a2:22:
1b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AF:EC:2F:1A:93:E2:C9:31:A8:10:35:21:9F:32:5C:8A:25:72:87
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/A0F4FE462F8D11EEA8DE998B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.90.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:89:ee:1e:46:61:9b:33:06:e4:8e:4d:b3:bb:07:b4:9f:6e:
7e:5e:57:e2:e2:63:f6:6e:03:0d:4a:53:02:8e:22:11:6f:d7:
0f:b3:80:5e:89:27:35:cc:8a:40:d3:c5:df:ce:aa:82:b8:2f:
68:7e:43:6f:9c:4f:21:e7:67:d9:e0:b6:20:f5:85:15:e0:e2:
1b:60:fb:37:4c:d0:69:6c:da:11:ea:44:b6:ee:aa:3b:40:c9:
01:da:9e:9f:a2:e5:b4:c3:1d:56:40:10:da:ad:37:ab:df:37:
2b:c2:87:74:fb:cd:83:ca:16:c5:af:03:c7:05:04:cf:4e:0c:
e5:56:8a:65:69:f5:03:26:24:74:e4:d6:c8:7d:f7:5c:5e:b8:
b1:c7:a4:19:38:b7:47:be:3a:11:9e:d7:30:92:7d:53:f7:86:
3f:f6:30:89:60:61:d0:19:bc:c7:b1:99:11:3c:4b:d6:d8:37:
d8:7a:82:88:7e:c6:47:68:59:40:88:9a:44:cf:6c:27:15:43:
dc:7c:46:06:eb:99:27:8c:cd:07:77:cf:f0:37:ce:31:1d:64:
31:55:3d:76:ca:ef:99:02:87:58:8b:7d:83:71:fe:1b:3b:4d:
60:11:42:f4:e4:96:fd:1b:54:41:6b:40:2a:ca:46:10:83:11:
bb:b8:78:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:49:01 2025 by rpki-client