Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7FF87C5A03B711EF917C5C2D017001B1.roa
File: 7FF87C5A03B711EF917C5C2D017001B1.roa (raw, json)
Hash identifier: a35pKcfaaHwWPzygov5Kk7IYMKCrlD7MHrGfGQq3aco=
Subject key identifier: EC:79:4A:B0:11:36:E5:24:37:24:CE:CB:15:13:4D:21:55:E1:87:7B
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01F1
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7FF87C5A03B711EF917C5C2D017001B1.roa
Signing time: Fri 26 Apr 2024 10:26:53 +0000
ROA not before: Fri 26 Apr 2024 10:26:50 +0000
ROA not after: Thu 30 Apr 2043 10:26:50 +0000
asID: 30988
IP address blocks: 41.73.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 497 (0x1f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:26:50 2024 GMT
Not After : Apr 30 10:26:50 2043 GMT
Subject: CN=662b816d-6ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:28:77:d4:4c:1b:82:33:e2:98:69:1d:83:0c:
79:0f:7d:4f:40:cd:1b:65:d8:2d:95:36:3b:c1:77:
40:a3:c4:99:63:0e:92:0f:9b:1b:07:9c:5b:aa:a8:
94:26:e9:26:3a:9e:23:ca:d5:7b:54:2c:4e:b1:f2:
fc:f5:53:da:7e:be:2f:cb:80:25:de:14:07:77:b4:
3e:72:3b:5c:03:86:f7:9c:7e:d6:52:eb:84:77:2f:
9d:47:3d:57:9f:8b:99:bc:35:a7:50:04:97:9b:1e:
6e:6d:c5:21:02:0b:cb:e5:2c:05:35:50:c7:9a:e8:
7e:cb:9f:55:1c:c4:ee:46:d0:2d:0a:29:59:0e:93:
b5:cb:2a:08:3f:a0:22:ff:57:1c:03:ae:8a:40:db:
bc:49:87:47:4a:9d:a9:ec:60:36:be:73:95:40:4a:
0d:8b:5b:25:47:84:f8:4c:39:6e:c7:b8:8c:72:02:
fa:4d:00:62:59:b0:3d:41:08:2f:cb:01:12:47:9b:
7c:76:3f:b4:ac:74:80:a7:a5:19:c0:94:d5:ea:1e:
d7:f2:f5:b5:13:d5:60:09:7e:fb:1b:24:5c:1d:be:
3d:67:66:97:89:2d:91:75:98:3d:5a:71:56:8b:af:
e3:68:28:02:8c:cd:13:05:1f:60:97:63:30:ea:57:
6a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:79:4A:B0:11:36:E5:24:37:24:CE:CB:15:13:4D:21:55:E1:87:7B
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7FF87C5A03B711EF917C5C2D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.139.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e7:02:14:28:9f:68:6c:77:7b:ea:27:d5:1f:68:0c:7c:ed:
63:eb:64:aa:e6:10:4d:be:a4:f4:2f:30:61:60:47:dc:2b:54:
a7:a5:b5:ff:c9:b3:70:fa:cf:68:73:51:91:e6:12:46:07:d4:
05:0b:78:1d:ba:c8:26:38:03:c7:42:a9:87:52:19:80:5c:eb:
18:27:ae:b2:36:55:e5:db:0b:bd:11:0f:e1:8c:cb:52:2f:bf:
73:b4:2f:1f:0d:88:9b:2b:ce:b3:d7:67:ad:34:53:99:2f:44:
bb:a6:44:39:c3:50:e5:1e:b6:5d:9d:c1:32:2b:ff:49:36:81:
bf:bc:17:8c:5d:a4:ad:a2:4b:7a:d5:7a:9b:dc:42:55:69:a5:
9c:c8:f1:4a:b9:d1:ff:7c:07:77:ce:10:10:9a:f3:7e:c6:df:
02:3a:df:c8:34:38:0c:77:00:6f:e5:c7:1e:68:1a:41:32:32:
d6:ed:7c:85:14:e9:aa:58:1c:8a:34:b3:3d:72:fb:2c:cb:0b:
5d:f7:b1:83:71:58:1c:d6:2f:5a:75:8c:68:d4:c5:61:cd:10:
b8:56:4e:2f:38:77:75:6a:17:95:a1:86:fb:f3:11:51:9c:00:
29:6f:49:e0:5d:08:0f:bd:1a:4d:15:24:98:bf:a8:70:27:50:
48:f7:3c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org