Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/F4DB8EC21A7711EBA6C83114F8AEA228.roa
File: F4DB8EC21A7711EBA6C83114F8AEA228.roa (raw, json)
Hash identifier: HOWUHYgIp9NjG+v0etjGnf7fCHuL5VvSq3InUm8ztJs=
Subject key identifier: 80:AE:E7:24:4E:65:44:F3:EB:36:43:EA:8D:DE:C9:3B:18:B8:09:39
Certificate issuer: /CN=F369671EAF/serialNumber=23BF045F8B8E9BE838E79DD312CC95ECB8CC610B
Certificate serial: 0228
Authority key identifier: 23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I78EX4uOm-g4553TEsyV7LjMYQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/F4DB8EC21A7711EBA6C83114F8AEA228.roa
Signing time: Fri 30 Oct 2020 06:20:09 +0000
ROA not before: Fri 30 Oct 2020 06:20:02 +0000
ROA not after: Thu 31 Oct 2030 06:20:02 +0000
asID: 37172
IP address blocks: 41.76.112.0/21 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.mft
rsync://rpki.afrinic.net/repository/afrinic/I78EX4uOm-g4553TEsyV7LjMYQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 552 (0x228)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369671EAF/serialNumber=23BF045F8B8E9BE838E79DD312CC95ECB8CC610B
Validity
Not Before: Oct 30 06:20:02 2020 GMT
Not After : Oct 31 06:20:02 2030 GMT
Subject: CN=5f9bb099-bba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:df:90:a9:b6:94:ad:9a:65:86:29:63:0b:16:
48:c4:03:88:19:4b:f4:30:80:3d:bc:c4:f9:86:23:
31:1b:ed:6c:e2:9d:5b:e7:15:df:f6:9b:13:96:4d:
3a:06:5b:bd:33:95:27:b2:d8:f0:e2:60:8b:fc:8c:
a6:87:b2:65:ef:7d:b5:b8:f7:4b:8c:df:5f:03:f5:
2d:41:56:cd:07:80:cb:59:a0:94:f5:c5:01:ee:de:
6e:4c:c1:e5:be:36:6b:e0:92:48:b5:20:d3:13:f0:
4b:cd:f0:f3:8b:1a:95:ef:b4:72:c7:10:aa:11:33:
c7:e1:92:cc:9f:14:be:8c:0b:6c:00:71:85:15:e0:
63:c4:1b:19:a1:eb:9d:a8:92:b6:b9:e5:be:df:cb:
ec:46:66:23:4a:6c:22:f2:fa:89:71:a9:85:fb:2d:
e7:da:c8:60:5f:fa:d7:22:dc:86:01:4c:74:55:67:
8e:ab:9a:88:a6:3f:1d:f1:10:08:a2:b4:72:95:1d:
08:ba:49:5a:76:ca:24:82:73:d5:76:0c:63:54:e0:
12:cc:bb:99:a6:05:df:40:e7:ce:d6:2a:af:34:1d:
3e:7f:76:81:80:5d:55:88:82:ce:69:13:bd:70:5e:
bd:a1:a6:5e:d5:83:04:b0:c3:3d:66:71:a8:e9:1c:
93:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AE:E7:24:4E:65:44:F3:EB:36:43:EA:8D:DE:C9:3B:18:B8:09:39
X509v3 Authority Key Identifier:
keyid:23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I78EX4uOm-g4553TEsyV7LjMYQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/F4DB8EC21A7711EBA6C83114F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.112.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:43:ac:5c:d8:f9:bb:df:35:99:06:8a:1d:d9:f7:36:2f:7f:
26:60:b7:d1:f7:cb:5f:1b:dd:37:25:de:1c:d5:77:28:47:97:
de:6a:c5:d5:63:14:05:f6:14:a4:82:97:62:85:c4:31:0b:2f:
61:57:76:a2:92:a5:67:f2:9a:7c:4f:6e:91:77:f7:d8:50:94:
6f:b9:a6:1a:f4:ce:2c:35:87:c2:99:fc:43:39:4c:76:fa:a0:
4f:0f:c0:bf:34:58:21:dd:dc:54:6d:9a:ea:53:a5:d6:89:6e:
a1:e8:d6:69:a0:36:76:5a:b9:df:79:16:52:f3:ab:50:e8:2c:
78:ac:84:ee:cf:6f:22:5a:fa:e9:68:d7:96:3a:2f:16:89:a2:
f3:b0:15:c1:fc:fd:fe:47:87:0c:96:30:7b:eb:94:62:10:93:
6c:23:82:fd:90:7d:50:b7:a8:68:9a:d4:b4:d1:87:48:3e:d7:
a1:89:a9:9c:79:4c:64:ad:05:c6:3d:44:91:e3:81:79:f6:3f:
28:71:4a:65:13:89:4f:24:ee:f0:fe:5c:31:08:46:27:85:e5:
40:ef:74:83:eb:07:c0:e2:03:86:f1:6f:c8:40:4f:d8:58:c6:
fc:5e:5f:49:44:f5:69:0a:ab:8f:f7:76:5a:25:47:ad:c1:44:
ef:d6:02:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:14 2024 by rpki-client on console-ams.rpki-client.org