Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/508DB2ECC99611EE9EC0FE5E775412E6.roa
File: 508DB2ECC99611EE9EC0FE5E775412E6.roa (raw, json)
Hash identifier: rwK9a3BNPMfOi+DFZv313IXZPRakzD4mPl627qdMUUA=
Subject key identifier: C1:55:53:FC:65:D2:B1:06:A9:28:B1:4E:F0:B2:9E:33:8F:A9:02:26
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 056D
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/508DB2ECC99611EE9EC0FE5E775412E6.roa
Signing time: Mon 12 Feb 2024 11:03:13 +0000
ROA not before: Mon 12 Feb 2024 11:03:09 +0000
ROA not after: Wed 12 Feb 2048 11:03:09 +0000
asID: 37098
IP address blocks: 41.77.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1389 (0x56d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:03:09 2024 GMT
Not After : Feb 12 11:03:09 2048 GMT
Subject: CN=65c9faf1-22a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:37:a1:d3:3c:2f:d9:65:01:67:b8:f3:b4:e7:
f5:da:09:39:c8:64:25:fb:a8:9c:42:32:8b:08:b2:
e4:e8:66:19:4d:3a:be:f5:3c:79:22:ee:d0:85:ad:
b8:59:ab:bf:8e:ac:10:a6:fb:53:1c:5d:28:ca:14:
45:c6:64:b8:ce:3d:34:85:dc:06:94:55:db:4d:f2:
a9:bc:72:f6:54:ce:80:4f:1b:3d:ba:7c:82:25:2d:
c7:3b:74:4b:08:bf:a8:7b:dc:9a:64:90:3a:2c:90:
66:14:d5:99:35:12:d3:a9:d5:9d:72:c2:00:60:ad:
da:78:02:81:bd:64:0c:e6:81:4e:8f:63:f3:73:3b:
f1:85:08:2f:c9:f9:60:ec:bf:75:16:69:26:99:11:
76:f1:a4:82:1b:ae:10:14:3b:63:8f:0a:e8:0c:3d:
cb:5f:c6:a0:f3:1a:53:8a:ca:81:47:22:3b:3a:d5:
a4:73:ed:d4:3c:3c:73:61:9b:ce:32:b6:ce:97:7f:
47:e4:0c:38:02:99:40:fd:41:5a:35:ac:63:c3:67:
61:78:b2:bb:b2:aa:10:5d:91:e9:9d:74:ee:d8:6b:
aa:bd:51:44:4b:f0:fd:38:25:2f:a6:2b:64:c3:43:
ae:4e:c6:d2:b2:1e:58:eb:75:78:c8:87:96:4f:27:
05:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:55:53:FC:65:D2:B1:06:A9:28:B1:4E:F0:B2:9E:33:8F:A9:02:26
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/508DB2ECC99611EE9EC0FE5E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:0a:b1:9d:73:da:a7:3f:27:6d:69:55:49:80:73:d5:e8:3b:
0d:da:e1:66:0a:3e:db:a2:77:de:6c:69:86:a4:47:b9:8b:fe:
66:9b:2a:3c:d9:3a:ab:d4:ff:38:28:1f:2f:f2:f9:d1:0d:ed:
3a:32:0f:02:7d:56:ec:68:48:b6:96:61:df:38:70:96:67:67:
14:c6:56:1a:e6:ad:f7:7a:ab:1f:4a:5c:31:94:20:e8:86:42:
23:77:ec:ae:47:59:ef:b9:9f:de:7a:e6:c2:c0:69:e9:ed:c6:
1c:93:86:16:2f:3e:77:18:1b:a4:b5:63:44:30:b6:44:6d:1a:
d4:93:df:ed:df:12:6b:f2:cb:a6:32:1e:3f:05:69:6e:6d:1b:
39:01:3e:ac:79:64:c9:e5:84:e9:52:fb:a6:4d:63:ab:cd:13:
b5:f9:44:3d:17:36:83:e0:86:d5:9e:9a:65:05:e8:84:f8:a1:
b5:6c:88:3a:d3:cd:c0:26:4c:53:8b:a8:b0:6d:7c:17:a5:82:
bb:7f:e3:f8:42:fc:52:d0:24:e2:f7:ff:6a:de:8c:20:54:fd:
4a:bb:50:4d:50:bb:e0:05:e6:f3:3e:98:23:4d:db:e1:17:c9:
66:9c:ff:fd:92:c7:d4:87:75:f0:71:7b:15:ba:49:6c:7d:55:
96:65:0e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org