Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/0F9FBC9C58DE11ECB8DE4DD35A40D577.roa
File: 0F9FBC9C58DE11ECB8DE4DD35A40D577.roa (raw, json)
Hash identifier: CXzd3zY6In/VNStSVCJA7anAgBgKQZtimIGUm+xrgaw=
Subject key identifier: 81:25:A2:36:C3:BF:29:2B:37:5D:24:EA:E4:A6:99:66:70:BF:A8:3A
Certificate issuer: /CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Certificate serial: 0100
Authority key identifier: E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/0F9FBC9C58DE11ECB8DE4DD35A40D577.roa
Signing time: Thu 09 Dec 2021 10:52:11 +0000
ROA not before: Thu 09 Dec 2021 10:52:07 +0000
ROA not after: Tue 09 Dec 2031 10:52:07 +0000
asID: 327980
IP address blocks: 41.216.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.mft
rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256 (0x100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Validity
Not Before: Dec 9 10:52:07 2021 GMT
Not After : Dec 9 10:52:07 2031 GMT
Subject: CN=61b1dfdb-18ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f6:87:ab:57:63:ba:3f:81:ff:98:54:bc:35:
c3:02:c9:12:e1:00:0e:5f:d5:b5:0d:65:dc:19:70:
c7:38:0b:27:5c:10:1b:24:c5:7f:b2:0c:ed:95:6d:
d0:55:6b:5f:d2:c9:d6:53:33:d5:59:24:aa:3a:7a:
20:68:c4:68:7b:32:48:27:8b:1c:01:c4:d9:7d:1d:
63:a6:ef:20:9e:6d:62:eb:13:17:85:0f:73:74:a2:
39:f1:72:55:2c:03:ec:a8:c5:bb:88:d7:d1:c8:a1:
b9:73:bc:cd:44:7b:e3:28:f2:24:a1:60:da:d7:90:
44:93:12:8b:a6:43:1c:37:aa:09:2f:c8:2f:9a:55:
eb:8d:e6:a6:fe:23:46:12:53:15:15:f0:f7:38:62:
38:a3:c5:c7:81:28:e7:98:9c:dc:4c:29:18:93:02:
f0:17:a2:20:74:35:f7:cd:7b:84:20:38:d9:49:ac:
08:90:62:80:ab:51:a4:e6:20:a3:a1:08:d9:51:d3:
46:47:44:55:3b:f8:6c:f7:91:01:3f:3a:ff:c5:35:
16:ca:ab:69:8e:e5:45:75:c5:3d:51:ec:ee:71:39:
6a:a2:be:d1:10:08:18:46:55:04:d5:1a:47:fa:3b:
be:40:6f:8e:a8:4d:3b:e3:de:26:c1:2c:a0:b6:c5:
16:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:25:A2:36:C3:BF:29:2B:37:5D:24:EA:E4:A6:99:66:70:BF:A8:3A
X509v3 Authority Key Identifier:
keyid:E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/0F9FBC9C58DE11ECB8DE4DD35A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.191.0/24
Signature Algorithm: sha256WithRSAEncryption
12:8a:e8:ba:71:81:c1:30:03:82:c8:36:75:d3:3f:a0:fa:04:
0c:99:88:53:e0:a0:ff:42:a1:f8:ad:32:6a:0f:80:da:43:d2:
5f:36:5c:9a:14:6d:91:46:72:3b:fa:48:ff:6d:f4:0e:41:f8:
fa:6b:a7:01:63:3b:8e:01:60:11:81:b4:cb:1c:63:9f:ce:a0:
76:fc:34:f2:df:be:31:d9:55:72:fd:6c:e6:75:17:f9:81:72:
4f:fe:e9:d8:2e:3b:ff:e3:34:49:b3:d9:cf:00:59:97:b5:85:
f9:cf:5d:71:1e:4c:cf:60:89:06:2d:9e:90:3b:cf:2d:4f:d4:
d5:42:7b:48:20:ca:8e:c1:8f:4e:b7:d2:cd:9f:2b:c1:58:64:
26:57:a3:99:5e:ce:ef:3c:0b:cc:cd:5f:7c:26:5b:2a:e4:3b:
45:3c:52:e6:23:e9:5a:89:8a:49:c4:e0:4d:60:8d:8c:5e:f6:
ae:93:8b:4c:1f:84:18:93:f5:32:2a:3f:7a:62:16:e5:fa:c4:
1e:97:50:2c:16:86:6e:55:62:98:66:50:37:9d:de:0a:04:48:
85:06:00:17:7a:06:70:fa:81:36:0d:7f:36:7e:9f:f1:d2:23:
94:e6:8e:95:06:70:72:fe:2d:a3:67:80:9b:cb:51:02:7d:12:
46:c1:b9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org