Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EA518BD2B90311ED9B1C9F99F1222468.roa
File: EA518BD2B90311ED9B1C9F99F1222468.roa (raw, json)
Hash identifier: J1Vz1rVLXnQTG3uxuAEebjvTI4ey+M4i/uYDE0Z3cIA=
Subject key identifier: 79:6C:C2:DC:95:A7:53:A4:F0:4C:53:1B:B5:82:D9:6F:2A:E4:11:48
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 0A
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EA518BD2B90311ED9B1C9F99F1222468.roa
Signing time: Thu 02 Mar 2023 14:09:59 +0000
ROA not before: Thu 02 Mar 2023 14:09:54 +0000
ROA not after: Mon 02 Mar 2026 14:09:54 +0000
asID: 33763
IP address blocks: 41.218.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 14:09:54 2023 GMT
Not After : Mar 2 14:09:54 2026 GMT
Subject: CN=6400ae37-2398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:9b:73:8e:ae:61:1e:93:ae:7c:83:1f:23:
b4:36:6c:e1:ab:d2:5a:cf:b5:80:59:4a:cc:f2:ff:
76:29:07:e9:3f:92:33:b8:87:5f:57:53:32:b0:af:
e2:9b:19:d2:85:15:d6:13:01:89:d8:94:c0:c1:a1:
b8:52:d1:03:fd:ad:dd:c7:18:3f:bd:41:3b:f6:39:
7a:6c:ee:a8:b2:cb:ba:ad:7b:2d:b4:ea:0e:c1:0c:
1e:a1:f6:81:5d:23:aa:77:48:ea:98:f6:55:49:17:
53:95:00:a6:08:a0:17:10:6a:2d:3c:e7:b1:ca:e4:
7b:7e:fc:11:ff:2e:02:c9:84:de:81:3d:af:78:77:
99:d6:f8:54:b5:b6:e9:27:18:ff:31:0b:d0:ad:2b:
45:c5:e5:ad:75:9b:b5:db:22:ac:9f:84:72:cb:7e:
b0:01:f4:dd:ac:a4:bb:13:f4:29:3f:c1:86:e4:09:
5d:ed:f7:de:4d:b2:28:8e:d5:1c:59:bf:06:fe:7e:
77:72:87:28:1e:7b:b1:6d:ae:59:a1:a7:92:df:2c:
af:a4:26:b5:5d:7d:5e:ea:3e:10:f1:0f:ab:54:df:
ab:a3:32:1e:d8:61:cb:68:f9:b9:57:4c:b3:dc:09:
f4:de:57:d7:d2:34:82:95:a4:36:37:8b:b4:ec:c7:
b6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6C:C2:DC:95:A7:53:A4:F0:4C:53:1B:B5:82:D9:6F:2A:E4:11:48
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/EA518BD2B90311ED9B1C9F99F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.64.0/19
Signature Algorithm: sha256WithRSAEncryption
86:aa:3b:ed:9e:c2:6b:e5:85:6c:79:ef:6c:79:1f:84:8e:2c:
69:ba:1c:48:e3:6d:fc:5a:88:76:72:83:3b:73:d6:69:36:0f:
78:21:44:bc:19:eb:72:a6:4e:3d:35:5e:e7:37:fa:f6:89:7d:
0a:0a:2c:31:c8:3a:00:e3:a9:cc:d6:98:92:72:25:38:a1:47:
ba:26:05:de:d2:75:a3:27:32:f6:a4:1f:35:c3:20:7a:1e:ba:
e1:e0:a5:d4:5e:53:28:68:74:d8:a7:9b:0e:61:b0:8a:b3:0d:
c9:31:fa:4b:69:2d:aa:15:b2:5d:3e:7d:7c:00:ea:a7:29:83:
e0:2b:27:7f:c6:0e:fb:62:19:ba:60:12:41:b3:df:4a:1f:22:
23:e2:93:3f:cb:8e:71:35:78:41:fa:67:bd:e6:00:be:79:b9:
4b:18:a6:e5:7c:b8:96:7a:e3:8c:87:31:d7:b8:83:91:26:03:
68:8d:ed:f1:cd:f8:b5:22:62:f7:dc:a8:1d:43:2f:82:a1:2b:
a5:e1:ef:f0:04:f9:92:13:03:f1:30:2d:a5:61:b1:25:46:04:
bd:a1:18:2c:c1:e9:20:a0:4f:13:6a:d5:f5:a4:73:06:3b:a3:
64:c4:6d:63:73:c1:e7:4a:a8:bb:f9:eb:39:2c:0d:96:5c:f3:
fe:1b:7b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:06:27 2024 by rpki-client on console-ams.rpki-client.org