Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/CE682C3EE80F11EC93327696F1222468.roa
File: CE682C3EE80F11EC93327696F1222468.roa (raw, json)
Hash identifier: jrc3e8Z1030o//hDnMWloegh+VPHUNat2emHWQJrSKY=
Subject key identifier: 6C:2C:6F:A8:59:30:D9:69:3A:A4:79:F1:3B:C4:86:DE:AD:AD:EC:A2
Certificate issuer: /CN=F369C94EAF/serialNumber=8272C2B8B3B389EE2B7BBD4FBD5509676F3279BB
Certificate serial: 08
Authority key identifier: 82:72:C2:B8:B3:B3:89:EE:2B:7B:BD:4F:BD:55:09:67:6F:32:79:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/CE682C3EE80F11EC93327696F1222468.roa
Signing time: Thu 09 Jun 2022 16:18:33 +0000
ROA not before: Thu 09 Jun 2022 16:18:29 +0000
ROA not after: Wed 09 Jun 2032 16:18:29 +0000
asID: 37280
IP address blocks: 41.76.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.crl
rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.mft
rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369C94EAF/serialNumber=8272C2B8B3B389EE2B7BBD4FBD5509676F3279BB
Validity
Not Before: Jun 9 16:18:29 2022 GMT
Not After : Jun 9 16:18:29 2032 GMT
Subject: CN=62a21d59-5c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:52:85:aa:57:62:b4:c6:c1:a7:da:f2:a4:37:
0c:0d:52:b1:54:d8:aa:bc:e2:dc:6b:99:fc:f2:c2:
02:3b:2b:41:af:ec:32:20:d5:04:d0:33:78:8d:6b:
62:8c:3c:0e:23:66:e4:3c:d8:3e:1f:74:86:a3:13:
f5:86:f3:7a:35:e4:7d:ca:a7:57:83:74:a0:68:7f:
59:99:4b:ab:ce:3f:04:a7:2c:54:09:ba:0d:ff:f9:
86:e6:f8:d8:34:cd:a9:f5:c1:44:04:1d:6d:de:18:
1f:3d:42:e3:b1:2d:6a:18:ca:4a:2c:ea:21:7e:23:
19:6e:68:a5:db:7b:34:99:41:51:43:cf:74:4a:a8:
05:aa:3b:5a:4d:24:47:8d:81:c7:71:79:9d:7b:d6:
03:48:ed:a8:ed:4a:23:bb:e9:50:fa:b6:ff:15:0b:
35:ed:89:dd:6a:38:8f:6c:4e:27:a8:bd:11:6c:46:
cc:2e:cf:d0:7e:26:30:a6:e9:a9:68:59:06:3f:ce:
ab:a1:92:86:f6:f2:a3:51:58:18:5b:e2:3b:a2:6c:
e4:e7:e0:69:8a:31:85:b1:2b:3b:a8:15:9d:7e:c1:
ba:4c:17:42:83:08:33:b3:14:cc:d1:c6:b1:5f:5b:
8b:d7:df:9f:1e:2a:0a:25:46:28:a1:10:1f:c6:f9:
9a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2C:6F:A8:59:30:D9:69:3A:A4:79:F1:3B:C4:86:DE:AD:AD:EC:A2
X509v3 Authority Key Identifier:
keyid:82:72:C2:B8:B3:B3:89:EE:2B:7B:BD:4F:BD:55:09:67:6F:32:79:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/CE682C3EE80F11EC93327696F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.195.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:89:12:cb:9f:69:9d:f6:42:f8:87:89:5a:cf:5c:5d:8c:c5:
05:9d:97:d0:69:f7:8e:f2:cc:4f:0d:96:d7:dd:89:32:9c:db:
1c:73:0d:32:7e:70:c5:42:65:a4:6a:e6:6b:68:93:ae:65:80:
5b:f9:70:8e:e1:f8:01:7c:25:e7:9a:01:cf:31:f7:d9:11:27:
2c:3c:c3:bb:af:b5:79:a3:d1:b1:5e:ee:49:86:c7:9d:4b:ab:
5a:97:9f:6d:c0:40:77:4b:38:9d:b4:82:99:83:57:6e:9c:42:
b9:96:30:67:48:c7:36:b6:07:2d:f5:14:9b:97:b7:cb:34:fd:
cc:a4:e1:f7:1d:1e:af:7a:8c:75:a8:1a:bb:6a:f4:9a:fb:e9:
03:fd:63:2e:42:2a:30:6e:20:00:94:04:b2:02:38:f3:46:96:
3f:d9:c2:8b:b8:73:6c:b8:93:66:d7:00:9c:56:8b:1e:bb:bd:
c8:fe:66:51:74:33:74:56:93:26:ff:9d:26:8e:01:16:52:58:
55:da:0c:31:58:ac:52:e0:20:9d:72:fc:58:c9:a5:72:9b:90:
0d:3e:58:77:fe:39:52:38:da:8b:ee:f6:a1:70:89:b2:92:ca:
3d:14:c8:93:5d:19:af:cf:db:95:f7:84:7a:e2:1c:46:e8:ce:
31:e3:db:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org