Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/CFF3DA5AAB0111EA8A90371EF8AEA228.roa
File: CFF3DA5AAB0111EA8A90371EF8AEA228.roa (raw, json)
Hash identifier: Hrsy3AtcUPHIAPrhTXMj1kgvV7iogmndM1wleGxNNGQ=
Subject key identifier: A7:6B:A3:51:CA:92:B8:8E:BD:63:EC:B7:A0:3F:23:68:6D:68:8F:FB
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 1E
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/CFF3DA5AAB0111EA8A90371EF8AEA228.roa
Signing time: Wed 10 Jun 2020 10:04:46 +0000
ROA not before: Wed 10 Jun 2020 10:04:42 +0000
ROA not after: Tue 31 Dec 2030 10:04:42 +0000
asID: 33771
IP address blocks: 41.90.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 10 10:04:42 2020 GMT
Not After : Dec 31 10:04:42 2030 GMT
Subject: CN=5ee0b03e-c6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:6b:64:2f:f9:bb:f5:2a:cd:39:40:6e:d1:
e4:a0:66:55:0c:00:e2:61:c0:30:51:fb:6c:d7:64:
f8:a8:b3:47:95:1f:36:ee:48:ec:fc:ff:6b:58:cb:
12:92:9c:1b:6f:8b:4c:7b:81:d8:a9:0a:18:08:ea:
15:cd:d7:31:47:b7:9b:55:ad:85:e8:f2:79:4b:94:
62:a6:81:bb:db:e1:ba:d5:75:f4:88:06:8b:c5:af:
c8:02:28:32:8e:8c:41:3c:08:00:b8:91:b1:32:70:
e9:56:b2:3c:38:60:5b:de:fa:d1:72:61:72:d7:b3:
2b:59:a8:24:35:b2:31:74:07:d1:be:3e:f7:2b:ce:
0f:5a:e5:5c:b7:21:aa:f9:b0:cf:9a:4d:7f:dc:29:
0b:5c:dd:5c:78:7f:88:bd:fc:cb:91:68:6d:77:57:
eb:fa:17:ff:46:08:18:bd:2d:02:98:a5:fc:e6:70:
38:8f:24:2b:97:10:09:4d:91:a8:1a:be:19:77:d9:
ea:12:c6:45:78:31:ba:4b:f3:1f:fb:90:d5:a8:26:
35:72:54:2c:8d:d8:0d:23:99:ab:58:b9:3f:60:3b:
23:de:7e:30:29:c1:a0:ff:c1:7a:ab:25:55:8c:83:
33:fc:fb:ca:9f:d3:fa:91:16:94:c3:25:07:e4:15:
bd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6B:A3:51:CA:92:B8:8E:BD:63:EC:B7:A0:3F:23:68:6D:68:8F:FB
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/CFF3DA5AAB0111EA8A90371EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.90.0.0/16
Signature Algorithm: sha256WithRSAEncryption
62:ba:a4:cc:85:8d:38:f9:de:d5:5f:7f:7f:45:65:57:4f:d8:
87:12:7b:77:45:d8:ab:84:2c:6a:4a:11:55:0f:db:68:03:77:
84:37:6e:f0:1a:75:fa:de:15:11:74:ca:49:1f:b2:2c:30:60:
b6:bc:07:be:1d:7d:41:58:f9:9c:e0:4e:b5:ad:c4:a7:c4:b5:
ee:96:80:b7:0f:b0:17:1f:c7:14:a6:c4:fc:1c:84:64:87:9b:
b8:c9:d7:c5:75:aa:84:ab:39:e0:dc:a0:82:aa:f2:43:98:e0:
71:fd:0b:4e:6e:1f:44:74:70:2e:4c:f8:c1:46:3a:f4:f3:e4:
45:b1:a5:30:00:cb:75:7b:eb:06:9e:fb:7c:5e:40:07:af:8a:
ab:b1:d0:80:89:0f:47:14:72:d2:ec:64:0e:df:58:62:56:8d:
26:ad:f1:c7:38:3a:ed:fa:6c:fb:28:a2:e3:eb:b6:0a:c7:c3:
87:cc:db:4c:e3:de:7b:36:8b:9e:05:43:de:e7:4c:7d:e2:86:
88:25:6d:4e:96:ee:0e:68:e5:c2:00:d0:7d:b4:b6:4f:d6:da:
73:3d:8e:ce:51:c7:04:47:ef:d0:91:c6:26:56:b1:73:42:5f:
99:d7:6d:4d:34:62:19:a3:ba:68:93:77:e5:d4:8b:77:be:09:
94:5f:0a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:31 2024 by rpki-client on console-ams.rpki-client.org