Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/10F75FE0166511EF9BA89F6A017001B1.roa
File: 10F75FE0166511EF9BA89F6A017001B1.roa (raw, json)
Hash identifier: tQ6IcNtYg4Q1dSfQDi4FIUeQKLa90qMyIm8jTAnmXuE=
Subject key identifier: 09:46:B9:78:00:97:F8:33:DA:50:3B:C7:0B:05:25:F7:6D:00:FE:0C
Certificate issuer: /CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Certificate serial: 32
Authority key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/10F75FE0166511EF9BA89F6A017001B1.roa
Signing time: Mon 20 May 2024 04:54:40 +0000
ROA not before: Mon 20 May 2024 04:54:37 +0000
ROA not after: Thu 20 May 2027 04:54:37 +0000
asID: 36867
IP address blocks: 41.223.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Validity
Not Before: May 20 04:54:37 2024 GMT
Not After : May 20 04:54:37 2027 GMT
Subject: CN=664ad790-0f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:85:f6:0e:10:cc:a6:d6:3c:d3:d4:3e:69:60:
fa:ef:a7:42:20:b1:b3:51:fb:04:50:51:ee:04:2b:
db:50:a4:6b:75:59:c0:7a:28:6b:e1:37:bb:44:2c:
d4:f3:2c:d8:04:25:aa:80:9e:91:e2:9c:9a:7a:8b:
c0:8c:48:ac:32:3a:45:fc:bd:d2:ca:79:bc:13:98:
56:a5:69:42:ef:7e:f6:cd:f1:5b:50:f5:49:b4:4d:
24:18:3f:6a:f4:52:27:85:53:3e:77:e9:bf:01:c3:
8a:c1:6a:eb:eb:b9:33:78:f5:be:37:2e:60:0f:94:
8c:d1:89:ae:3a:26:b0:11:20:17:d4:56:d2:b6:03:
28:c6:8a:67:a1:9d:7a:55:57:a1:68:8b:ad:0c:8e:
63:25:47:50:0a:44:2d:e8:02:d3:6c:d3:ac:0f:c1:
34:42:60:f7:f0:dd:70:1f:b2:44:d4:b9:c3:53:8d:
19:a5:62:f8:08:44:ac:8f:1f:95:85:5e:d9:ab:cf:
27:4d:de:c7:29:6a:2f:63:69:08:39:8b:0e:fe:0c:
0b:ea:5f:51:bd:b5:07:36:96:00:82:97:81:4c:3a:
3c:9a:ed:d4:91:35:2d:7e:aa:b5:a6:7b:c2:a5:90:
c4:21:1f:bf:c5:4d:33:d4:2f:29:1a:0b:2b:71:a8:
50:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:46:B9:78:00:97:F8:33:DA:50:3B:C7:0B:05:25:F7:6D:00:FE:0C
X509v3 Authority Key Identifier:
keyid:4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/10F75FE0166511EF9BA89F6A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.207.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:9e:8d:a4:e2:29:2c:25:c1:8c:a0:67:0e:60:30:6f:8a:33:
dc:54:bf:a9:11:4e:41:b1:ce:ac:ba:81:4c:ed:e5:5f:e4:25:
f3:9d:6e:96:9b:9a:df:a1:f2:75:f9:a0:88:3f:26:e3:7f:db:
f2:54:e0:41:c2:94:71:c5:92:5e:4b:11:78:99:5c:a8:1e:b5:
7f:75:dd:56:8f:64:1c:d9:b0:c2:51:eb:f6:b2:18:7c:82:07:
f4:4e:0a:60:d5:59:14:f5:1e:5b:f4:a5:c4:c3:2f:f0:74:52:
f4:54:c5:91:ba:41:6b:76:0f:56:d6:42:64:56:89:7c:73:d2:
0a:ff:4f:23:45:02:ff:52:01:cc:7b:54:97:aa:79:2f:9e:ad:
ea:0b:52:84:bd:dd:b7:5a:0d:26:e8:6b:59:7d:1c:eb:c3:f7:
1d:98:6f:13:46:30:41:60:69:e9:c7:48:7e:31:1e:2a:fc:aa:
0f:09:94:2e:b7:63:76:9a:ac:14:46:cd:6c:2c:9c:be:cd:6c:
31:0e:c1:33:7b:15:7b:f7:60:d4:0e:ef:28:13:66:b5:f1:de:
84:e8:b2:14:71:21:70:b7:17:06:0e:30:04:f5:13:54:4b:49:
a9:97:8c:18:ec:1b:ef:a3:76:5a:ea:15:89:76:2a:0f:b3:78:
ae:f3:d9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:38 2024 by rpki-client on console-fra.rpki-client.org