Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/81A877024B1B11EF97889885762E951A.roa
File: 81A877024B1B11EF97889885762E951A.roa (raw, json)
Hash identifier: Jb7FsCfPieRiHewZHkBoyTfyXOoZ5GSQBgW72tN/jmY=
Subject key identifier: AE:2A:66:B9:30:7B:F5:7A:A1:BD:38:75:7A:00:14:64:F4:CA:10:32
Certificate issuer: /CN=F36B2D09AF/serialNumber=1285E9F5AE890D09EB6A1D9C152698D825694173
Certificate serial: 32
Authority key identifier: 12:85:E9:F5:AE:89:0D:09:EB:6A:1D:9C:15:26:98:D8:25:69:41:73
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EoXp9a6JDQnrah2cFSaY2CVpQXM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/81A877024B1B11EF97889885762E951A.roa
Signing time: Fri 26 Jul 2024 06:51:38 +0000
ROA not before: Fri 26 Jul 2024 06:51:35 +0000
ROA not after: Wed 26 Jul 2034 06:51:35 +0000
asID: 36908
IP address blocks: 41.217.200.0/22 maxlen: 24
41.223.4.0/22 maxlen: 24
197.250.0.0/16 maxlen: 24
2c0f:fcf0::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/EoXp9a6JDQnrah2cFSaY2CVpQXM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/EoXp9a6JDQnrah2cFSaY2CVpQXM.mft
rsync://rpki.afrinic.net/repository/afrinic/EoXp9a6JDQnrah2cFSaY2CVpQXM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B2D09AF/serialNumber=1285E9F5AE890D09EB6A1D9C152698D825694173
Validity
Not Before: Jul 26 06:51:35 2024 GMT
Not After : Jul 26 06:51:35 2034 GMT
Subject: CN=66a3477a-7c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:34:45:20:9c:da:39:10:18:fc:17:b9:ae:49:
3a:48:4a:9c:c1:cc:01:82:fc:32:cc:bb:c1:06:a5:
84:54:ef:1a:59:5b:d4:5e:4c:47:c8:23:ce:a1:d0:
49:26:1e:ce:7f:27:0d:86:d6:0f:22:c4:2e:3e:e5:
3e:20:6d:1e:64:f3:ff:af:66:0f:ee:23:04:e4:ab:
0a:6e:e5:c7:2f:8c:52:b2:b3:a7:f9:4a:5e:03:11:
30:f4:49:dd:61:55:3f:bd:12:f3:f6:b4:c9:b3:f2:
a5:93:c7:c3:d2:e3:65:00:eb:01:e0:a3:22:13:8c:
af:2b:fe:ac:1f:cd:13:31:29:5c:bb:60:ff:14:dc:
fc:45:d3:d8:7e:c2:ad:58:36:d1:41:d0:47:57:d1:
d8:40:dc:ce:eb:9c:78:de:a4:38:4e:49:27:d5:dc:
c3:25:f9:d0:2f:22:ff:96:b1:aa:da:8e:2f:0a:e5:
ec:9b:6e:c7:03:3a:bf:90:b2:33:55:47:ec:1c:9f:
75:2d:4a:8e:4d:96:11:c2:84:cf:c7:42:ae:fe:1a:
3e:5c:b7:2b:d7:7e:0d:cf:fd:0b:0c:2b:09:00:62:
12:d9:c9:ab:86:82:de:1b:f6:5e:41:0f:37:e2:1b:
ef:8b:46:9d:0c:f4:19:82:da:6e:12:fe:de:e1:bb:
3e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2A:66:B9:30:7B:F5:7A:A1:BD:38:75:7A:00:14:64:F4:CA:10:32
X509v3 Authority Key Identifier:
keyid:12:85:E9:F5:AE:89:0D:09:EB:6A:1D:9C:15:26:98:D8:25:69:41:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/EoXp9a6JDQnrah2cFSaY2CVpQXM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EoXp9a6JDQnrah2cFSaY2CVpQXM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/81A877024B1B11EF97889885762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.217.200.0/22
41.223.4.0/22
197.250.0.0/16
IPv6:
2c0f:fcf0::/32
Signature Algorithm: sha256WithRSAEncryption
ce:2a:2a:71:11:57:f9:21:3a:b1:28:02:ab:67:29:84:11:ab:
b3:d2:02:2c:fc:f1:2b:e5:4b:0b:9b:53:22:a5:bc:4f:93:8d:
d1:26:a6:d3:32:84:eb:cf:e9:1b:67:f1:43:7b:54:a8:07:f2:
80:65:b5:ee:0c:e1:51:52:d8:b4:8c:ad:c5:e1:c4:e7:bb:e8:
fa:b8:97:09:b9:b5:f9:60:12:b4:50:fb:1d:5b:61:50:ce:83:
bd:7e:32:c4:2a:ab:3f:ee:3c:74:bd:5a:bc:fb:44:d2:3a:fb:
ab:fc:8a:5a:0e:42:92:76:64:c9:90:1d:d1:8c:e4:7a:ef:10:
52:a1:0d:10:95:6d:4f:89:d8:71:b1:f6:a1:3a:ac:cc:8a:b2:
45:db:0b:98:31:68:be:75:1a:b4:51:ae:01:f1:0e:76:31:35:
ac:56:51:db:d9:64:af:dc:c8:37:34:cf:89:18:9f:18:eb:4c:
cc:5b:16:99:31:17:d7:49:c9:3b:60:db:26:a2:c5:06:88:e2:
72:cf:dc:5a:ce:b9:d1:b4:5c:20:07:f0:31:e0:27:c8:2f:2a:
f1:8d:11:f4:b6:3b:4a:5b:78:aa:ef:c7:51:64:7c:da:c9:b1:
b7:30:81:fd:4c:ce:a3:ea:ac:be:a2:b7:3c:a1:da:2b:e3:71:
bc:87:52:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org