Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/0AB9DB940A9A11EE95683E294AD9E6FC.roa
File: 0AB9DB940A9A11EE95683E294AD9E6FC.roa (raw, json)
Hash identifier: giu3rl1YOAslNeO0QZNR5PkBbP5a28OrTUSpolD0nXw=
Subject key identifier: 70:53:51:8A:73:89:B1:96:77:BA:AA:F9:90:91:D1:6C:F1:39:1C:BD
Certificate issuer: /CN=F36A41A0AF/serialNumber=5F228C46BEF2B4CBA94CB29F10C3680EE2883DB3
Certificate serial: 02
Authority key identifier: 5F:22:8C:46:BE:F2:B4:CB:A9:4C:B2:9F:10:C3:68:0E:E2:88:3D:B3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/0AB9DB940A9A11EE95683E294AD9E6FC.roa
Signing time: Wed 14 Jun 2023 09:58:42 +0000
ROA not before: Wed 14 Jun 2023 09:58:38 +0000
ROA not after: Fri 14 Jun 2024 09:58:38 +0000
asID: 37613
IP address blocks: 41.242.112.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.mft
rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 14 Jun 2024 09:58:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A41A0AF/serialNumber=5F228C46BEF2B4CBA94CB29F10C3680EE2883DB3
Validity
Not Before: Jun 14 09:58:38 2023 GMT
Not After : Jun 14 09:58:38 2024 GMT
Subject: CN=64898f52-5ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:80:cb:e0:d5:fe:fb:35:bd:ec:5b:f8:3d:aa:
25:fa:e6:2a:08:a4:61:c9:b5:2b:7d:6b:43:d4:00:
f4:a9:17:b2:d3:5f:8a:a2:e0:df:b0:d7:5f:ca:30:
d9:3d:5f:94:39:5b:c5:55:02:d8:e7:90:d7:8d:a0:
11:94:ae:f6:73:aa:51:75:bd:b1:45:5d:44:f5:ae:
10:b5:5c:31:91:7b:ef:56:19:9c:46:57:b6:e5:ef:
c2:3f:a0:d6:5a:ec:f1:8e:f3:71:e3:60:70:22:91:
65:39:80:0c:41:ca:49:17:5b:1c:c0:80:31:0a:d6:
45:fc:63:14:50:b9:b2:27:81:25:59:ea:3a:75:6e:
82:4d:cb:bc:68:77:dc:ed:e7:ad:5a:62:0c:3a:d1:
af:20:32:d4:6c:e5:28:ea:bd:55:33:15:af:62:d4:
7a:ae:fd:a5:ce:a7:e9:e0:ca:fd:57:67:b2:2e:a2:
9b:04:17:e8:08:c5:3b:7b:c0:f0:4b:7b:fe:78:b6:
dc:35:d6:34:87:f5:e3:f9:fe:d8:9b:59:d9:11:57:
92:9a:6c:19:d8:a7:2d:10:c8:b5:e1:83:46:03:cc:
fd:b9:ea:aa:3c:80:a1:1a:9c:c2:3f:94:00:ea:8c:
15:89:c1:0e:9e:51:cc:43:19:9f:f2:cb:4e:6a:a2:
32:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:53:51:8A:73:89:B1:96:77:BA:AA:F9:90:91:D1:6C:F1:39:1C:BD
X509v3 Authority Key Identifier:
keyid:5F:22:8C:46:BE:F2:B4:CB:A9:4C:B2:9F:10:C3:68:0E:E2:88:3D:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/0AB9DB940A9A11EE95683E294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.112.0/22
Signature Algorithm: sha256WithRSAEncryption
29:f3:d4:66:8b:f1:12:e0:eb:61:eb:03:29:63:dc:6e:7c:49:
d9:1b:ad:12:11:45:eb:b3:a9:35:cf:ad:dc:04:6d:6e:21:e1:
12:65:e8:51:fa:86:d8:c7:d8:7a:39:01:10:50:bc:8b:b6:a4:
ce:cc:4d:b1:d4:f1:17:d9:51:3e:b3:01:08:fa:8c:9b:24:1d:
9a:99:65:b1:b9:76:b5:36:dd:e7:21:73:56:dc:d6:28:42:92:
d7:5c:c9:28:ca:d7:4f:4e:b4:4d:c7:ec:79:aa:30:fa:64:a8:
61:a0:0e:7f:2f:f6:38:7b:5f:f2:58:56:69:55:43:16:31:9d:
bf:f1:2e:21:88:9e:32:6c:f3:69:6c:1b:c0:b0:6a:61:b2:b6:
66:43:16:8e:9a:a8:1f:cb:84:68:52:28:61:e7:83:ee:a6:6b:
53:67:f9:91:1d:a6:dc:4e:a7:b9:3d:2a:c5:69:e3:8c:04:cc:
1b:61:43:25:66:eb:e9:cd:81:cd:5c:3a:38:93:b1:b3:e4:4e:
41:00:25:fa:aa:20:c1:28:c9:5d:ed:ec:04:d5:c1:27:cb:13:
9f:fc:87:46:22:e3:b5:1f:15:b4:7d:b7:09:10:5f:d1:87:a1:
58:68:ed:9e:e7:a4:73:cf:e3:76:98:3a:ac:82:5c:0f:8e:21:
78:c0:03:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 05:49:51 2024 by rpki-client on console-ams.rpki-client.org