Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/014A3A3E732911EE8FCD3A7A4AD9E6FC.roa
File: 014A3A3E732911EE8FCD3A7A4AD9E6FC.roa (raw, json)
Hash identifier: DuUgtMruRVjqyq3tPl9TltQGJha6DDJdmFRtcJbyf+0=
Subject key identifier: 90:50:B9:05:02:28:AD:B9:48:3A:B7:55:D6:3C:5E:59:65:8A:47:FE
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0211
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/014A3A3E732911EE8FCD3A7A4AD9E6FC.roa
Signing time: Wed 25 Oct 2023 11:24:05 +0000
ROA not before: Wed 25 Oct 2023 11:24:01 +0000
ROA not after: Fri 25 Oct 2030 11:24:01 +0000
asID: 25818
IP address blocks: 41.202.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 529 (0x211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 25 11:24:01 2023 GMT
Not After : Oct 25 11:24:01 2030 GMT
Subject: CN=6538fad5-eafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3d:c8:58:b6:5d:7a:ff:61:5c:a9:d4:c2:cc:
34:ea:c9:0a:8e:bd:43:31:38:b0:7f:61:72:ca:57:
f9:da:78:53:aa:12:41:48:dc:77:79:25:06:64:2b:
7a:22:e5:e5:26:53:b5:d2:59:65:ab:a0:75:ac:36:
e7:7c:92:93:8b:2e:49:cf:c7:83:d0:0d:09:c4:60:
e4:a9:d0:86:c7:b0:1d:6a:89:f3:7c:9c:66:bd:a6:
56:8d:74:c0:00:19:a0:d1:95:df:29:f5:3f:7b:71:
72:47:a6:6b:df:f0:0e:7a:72:43:bb:9f:80:6e:08:
03:2a:c9:b0:46:5a:7a:d7:17:d0:32:f0:d2:3b:4f:
dc:5e:b7:a7:d5:33:9e:54:3b:36:69:6d:05:62:d5:
14:84:5c:d6:78:ba:01:9a:f2:ba:80:08:f8:01:44:
75:43:cf:fb:5d:77:ef:cb:21:9d:f2:79:66:2a:40:
d5:3d:a5:73:87:73:36:de:d6:c8:fa:71:2a:83:9b:
ec:4d:a4:63:a6:62:a7:2a:cb:bb:19:ee:25:c9:12:
6b:3c:04:ad:4e:be:b2:00:31:fd:5a:3a:76:37:c2:
ec:f9:a1:05:d6:a9:bc:e2:f9:49:0f:f5:43:e4:ab:
30:d9:8b:ac:42:4c:68:da:70:c4:f1:46:cd:54:45:
46:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:50:B9:05:02:28:AD:B9:48:3A:B7:55:D6:3C:5E:59:65:8A:47:FE
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/014A3A3E732911EE8FCD3A7A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.202.32.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:ea:d8:ef:46:ec:ad:b5:a1:94:39:59:55:a6:11:fe:51:ec:
7f:5c:c5:2c:e0:82:6d:da:14:a8:3e:c2:d1:0a:c2:b0:2a:6c:
5f:f6:1c:01:45:43:70:2b:20:81:fa:8c:5d:33:de:0c:3f:f2:
86:92:78:67:62:44:79:6b:e1:47:09:d3:ee:6f:bb:bb:91:ac:
d5:8d:83:98:d7:36:58:7d:2f:14:29:5a:65:34:a8:1e:b9:51:
44:f2:d7:b5:43:5f:5c:eb:cf:e3:f6:fb:53:e7:93:87:67:13:
b4:f9:41:b4:29:c9:ba:a1:ad:51:97:f1:4e:07:3a:f7:32:2f:
66:86:03:53:af:e6:2a:7e:ba:25:68:37:bd:da:6a:62:77:09:
31:95:59:12:5e:6c:8a:81:f7:77:2a:28:7c:96:23:6f:b1:cd:
62:b6:d1:37:5a:42:3f:9b:8a:ec:c0:ae:d5:51:62:64:4f:d2:
35:d7:44:51:15:2f:68:b5:e8:f1:cb:03:8a:66:7f:5f:42:f7:
08:50:33:ea:e4:b0:de:f6:e0:26:4a:5f:24:10:40:48:0d:1b:
28:68:24:70:46:bd:07:48:f8:22:2d:29:83:08:bd:4a:84:2f:
15:af:6c:76:9b:72:08:6b:db:5c:67:77:37:e1:3a:3a:3b:a9:
bb:a1:6c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org