Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/DAA13BB269C211EF87DB5478762E951A.roa
File: DAA13BB269C211EF87DB5478762E951A.roa (raw, json)
Hash identifier: Y1C12JjUCRZB6miS2tftf7tn5FoqQq5MI2tzdSPlKmM=
Subject key identifier: FB:6E:46:D4:0A:4F:8B:8F:8D:0D:64:69:4C:5F:50:11:82:61:71:08
Certificate issuer: /CN=F369F5CBAF/serialNumber=C9136F125B0CBF01CB52EF0E9DAD693B9DE179B1
Certificate serial: 02
Authority key identifier: C9:13:6F:12:5B:0C:BF:01:CB:52:EF:0E:9D:AD:69:3B:9D:E1:79:B1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yRNvElsMvwHLUu8Ona1pO53hebE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/DAA13BB269C211EF87DB5478762E951A.roa
Signing time: Tue 03 Sep 2024 07:05:08 +0000
ROA not before: Tue 03 Sep 2024 07:05:05 +0000
ROA not after: Sat 30 Sep 2034 07:05:05 +0000
asID: 37491
IP address blocks: 41.78.228.0/22 maxlen: 22
102.211.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/yRNvElsMvwHLUu8Ona1pO53hebE.crl
rsync://rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/yRNvElsMvwHLUu8Ona1pO53hebE.mft
rsync://rpki.afrinic.net/repository/afrinic/yRNvElsMvwHLUu8Ona1pO53hebE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369F5CBAF/serialNumber=C9136F125B0CBF01CB52EF0E9DAD693B9DE179B1
Validity
Not Before: Sep 3 07:05:05 2024 GMT
Not After : Sep 30 07:05:05 2034 GMT
Subject: CN=66d6b524-8bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:57:ed:d2:d9:f7:60:da:56:99:e5:f6:3f:87:
51:d5:fb:12:b2:54:be:6f:c2:af:53:22:6e:88:13:
87:fb:04:41:c3:04:09:5c:35:a7:bc:0c:68:5a:1c:
8c:2a:42:47:c0:bd:ab:68:e6:89:66:f8:f3:d3:cb:
5b:f5:ef:50:5b:3e:b0:1e:77:10:fb:42:39:61:c9:
68:76:f2:d8:f7:3e:27:e5:eb:7f:f3:71:d9:ce:dc:
43:74:04:12:81:8d:f9:ee:60:91:e5:75:79:95:f7:
12:81:86:1c:69:0b:b6:0c:41:84:ae:48:3a:a6:f6:
cb:a3:c5:48:38:84:6e:ff:a1:7a:9c:98:80:19:bd:
23:0b:b5:e6:61:57:f3:f3:d4:a7:09:ac:5e:c6:ac:
7c:13:4e:96:89:3a:8b:68:f4:95:e3:5d:14:ed:7e:
ff:36:48:ec:41:a1:ba:f3:55:51:37:72:ae:cf:16:
3b:ec:29:cc:44:5e:a5:a8:b4:b5:7c:22:e6:ee:e1:
72:1f:24:86:d8:45:67:a0:2b:ed:0a:aa:34:97:c3:
f5:ab:8c:d9:5d:f0:fa:19:3a:a5:8e:54:29:42:61:
cf:7c:61:3e:a2:ef:25:bf:dc:b1:50:36:51:60:be:
a4:04:4f:6f:3e:48:8a:0b:5d:20:47:2c:30:ff:1e:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6E:46:D4:0A:4F:8B:8F:8D:0D:64:69:4C:5F:50:11:82:61:71:08
X509v3 Authority Key Identifier:
keyid:C9:13:6F:12:5B:0C:BF:01:CB:52:EF:0E:9D:AD:69:3B:9D:E1:79:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/yRNvElsMvwHLUu8Ona1pO53hebE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yRNvElsMvwHLUu8Ona1pO53hebE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F5CB/3063359269C211EF99380D74762E951A/DAA13BB269C211EF87DB5478762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.228.0/22
102.211.123.0/24
Signature Algorithm: sha256WithRSAEncryption
77:33:11:0b:7e:a8:8c:f7:cb:b8:24:db:1c:aa:f1:22:d3:cb:
7f:79:47:ab:ff:1b:09:5e:34:08:18:18:d8:2c:54:f1:a1:e7:
1a:38:db:fc:06:c0:82:f9:27:e5:60:c8:38:3c:bd:1a:a4:ab:
08:dc:02:3f:d1:a3:86:cf:06:d1:33:da:75:63:46:82:28:57:
d6:e2:31:78:9f:d4:52:23:42:3f:9d:12:64:05:3c:5a:77:32:
f2:f0:44:c2:41:81:9e:0c:05:97:ec:70:26:7c:32:f2:48:2a:
ec:30:1a:16:76:2a:1a:bf:8e:1d:eb:f2:90:2d:35:0b:6b:a5:
f9:53:a7:f4:d1:ae:36:6c:06:23:b4:a8:d9:31:e4:4b:99:56:
91:0b:19:54:60:17:59:97:62:58:12:9e:35:f4:75:e4:27:8b:
c6:ae:fa:c4:14:f7:2e:e9:58:cc:d1:c1:85:0b:75:6f:ae:02:
d2:d5:95:5a:26:0a:d2:b4:12:c5:1e:44:71:bf:75:b6:10:8c:
79:3d:d6:20:a4:46:b6:1e:41:7a:31:c5:06:5b:83:a4:e6:91:
7f:d0:9e:f6:db:32:9d:4c:96:f4:12:68:2e:98:9c:40:ae:3c:
c8:5b:35:10:a3:3e:be:37:7b:58:3e:9b:76:99:36:98:10:44:
cb:c3:36:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:49 2024 by rpki-client on console-fra.rpki-client.org