Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/4F2412D2258D11EEBF2506674AD9E6FC.roa
File: 4F2412D2258D11EEBF2506674AD9E6FC.roa (raw, json)
Hash identifier: TPzyP84gVaSBDrHT8ykUyVh7PurvnTJdR22a1A7ZsZE=
Subject key identifier: 97:B9:9E:19:70:38:8F:9A:02:47:2E:B5:AB:AC:22:DC:32:14:93:F8
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 060C
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/4F2412D2258D11EEBF2506674AD9E6FC.roa
Signing time: Tue 18 Jul 2023 17:05:34 +0000
ROA not before: Tue 18 Jul 2023 17:05:29 +0000
ROA not after: Mon 18 Jul 2033 17:05:29 +0000
asID: 37049
IP address blocks: 41.222.136.0/21 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1548 (0x60c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: Jul 18 17:05:29 2023 GMT
Not After : Jul 18 17:05:29 2033 GMT
Subject: CN=64b6c65e-d167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:ed:a6:3a:3c:eb:b7:5f:9e:42:47:89:47:
d1:3a:2e:e2:cc:a8:36:f4:8e:72:7b:fc:13:c4:fa:
2b:44:58:d3:30:e6:55:89:d1:a1:f0:42:09:de:e5:
4f:a4:10:f1:ad:fa:b9:a8:63:b7:28:c7:3c:3c:10:
3a:42:65:8a:65:80:b8:82:16:b7:84:f4:9a:4b:33:
b0:89:63:f7:e4:4f:c4:63:e0:57:54:21:86:9d:08:
a4:ed:58:bb:35:4f:80:74:ab:95:ca:cd:dd:2d:10:
b4:9e:5f:5f:78:91:4e:c0:b7:4b:65:ee:c5:20:9f:
16:e7:d1:da:17:b0:4d:da:ee:94:68:76:24:5e:21:
fb:f3:de:b0:1e:cf:e4:3d:17:08:0a:00:87:0f:80:
f8:5f:42:d3:20:29:27:d8:7e:10:6b:bb:16:c5:65:
bc:96:6a:68:ac:ce:2d:1f:f9:69:d4:d8:97:2d:4e:
69:da:7a:f9:fc:6b:f9:7e:4d:fe:91:e3:4c:96:a8:
6a:7e:e5:dc:a5:08:09:dd:18:d0:01:55:03:be:b5:
3c:86:7a:a0:86:86:db:ce:f8:db:53:c2:fb:ad:33:
d0:a6:df:4a:3b:80:20:18:28:43:c8:ee:cb:f9:5e:
aa:a4:3f:79:99:ae:cd:1b:7d:c7:60:ae:f6:e1:3f:
e4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B9:9E:19:70:38:8F:9A:02:47:2E:B5:AB:AC:22:DC:32:14:93:F8
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/4F2412D2258D11EEBF2506674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.136.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:09:67:d7:64:19:74:9f:b3:9a:35:6e:a5:1c:17:f6:84:98:
60:07:3a:e6:6b:19:2f:e8:20:fa:1f:b4:f6:4e:74:f5:b2:f8:
64:6d:a1:ed:67:3c:8e:81:7a:8f:01:d1:53:f9:97:a3:87:8d:
df:62:60:c0:d7:8f:42:bf:4e:18:f1:e9:ff:eb:f4:7b:fd:69:
4d:95:a9:85:88:6f:df:85:eb:c4:c8:6f:c1:7d:10:79:73:dc:
67:61:78:3a:3d:57:b7:c9:8d:7d:da:80:af:38:61:59:bd:28:
35:24:12:96:d7:b4:20:1a:32:e3:8c:4b:2b:31:66:9d:e6:d2:
0b:06:97:64:e0:d4:6a:b6:71:fd:c9:8d:94:33:85:fa:7f:7f:
ce:6e:03:ac:a9:1f:00:2c:68:0b:d1:8b:27:4b:5e:04:87:d1:
0f:ae:c9:87:37:2b:ab:bc:48:0e:98:cd:ca:a5:3a:ba:65:86:
19:2c:6f:38:7f:9d:5e:89:73:30:d8:dd:69:73:ab:ea:bd:00:
1b:ef:97:23:de:fc:3f:e1:3b:85:e3:66:fb:0b:7d:f1:d5:36:
b5:28:3e:e1:fd:b6:9b:27:fd:24:be:cb:50:d7:35:69:43:19:
00:7b:4c:fd:50:f6:ed:19:78:95:52:8b:50:3c:a2:c0:e6:ec:
8c:cc:c7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:09 2024 by rpki-client on console-fra.rpki-client.org