Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/6578AC56C99711EEA22F7160775412E6.roa
File: 6578AC56C99711EEA22F7160775412E6.roa (raw, json)
Hash identifier: mF+qsWfeIIiqu5K/0h0PvdJsYj6tWZGXQAReqMCB/cA=
Subject key identifier: F7:C9:BE:28:3F:16:BE:74:64:1E:49:51:8D:37:19:4A:E7:29:11:1F
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 0573
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/6578AC56C99711EEA22F7160775412E6.roa
Signing time: Mon 12 Feb 2024 11:10:57 +0000
ROA not before: Mon 12 Feb 2024 11:10:54 +0000
ROA not after: Wed 12 Feb 2048 11:10:54 +0000
asID: 37098
IP address blocks: 41.77.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1395 (0x573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:10:54 2024 GMT
Not After : Feb 12 11:10:54 2048 GMT
Subject: CN=65c9fcc1-8cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f0:c7:66:95:11:b9:94:01:d7:a4:d5:c0:21:
e8:20:b4:2c:66:0d:9f:97:14:8f:ca:5d:9e:20:11:
02:6f:19:f3:18:70:78:27:fa:57:62:ef:f0:53:13:
d8:20:f5:e5:5b:73:3f:30:94:07:83:bc:32:62:67:
05:3b:78:c0:ff:03:68:3a:be:6a:42:22:df:c6:87:
8a:55:ce:15:b6:2e:dc:93:ec:a9:28:99:d9:52:bd:
ad:fb:e2:43:ca:22:8b:46:10:b3:71:bd:d4:b5:d7:
f8:b6:73:b7:8a:27:3b:6c:d2:a3:5b:0e:d3:84:82:
31:a8:e7:96:7b:62:44:e3:88:8b:be:4d:54:55:89:
74:76:97:9a:da:48:cd:a3:e7:19:34:e5:db:2c:f8:
c8:01:14:ef:ee:47:d7:73:61:25:f6:c5:50:3d:fb:
1e:15:a0:8c:09:ca:d9:e3:d8:bb:9d:5a:46:ca:9a:
0b:f4:ed:65:fb:f7:f8:56:93:30:4d:7a:af:36:f5:
6c:22:7f:36:7d:30:5f:4c:bc:16:ff:c9:4f:33:7d:
a1:2a:ba:bd:bb:d8:56:30:5e:b5:f4:7f:ba:e5:4c:
5b:49:f9:82:5b:54:4b:9f:67:6a:ef:d6:4e:67:68:
83:c8:98:f5:b3:f1:fb:c7:c6:a3:26:e5:16:d1:23:
7b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C9:BE:28:3F:16:BE:74:64:1E:49:51:8D:37:19:4A:E7:29:11:1F
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/6578AC56C99711EEA22F7160775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.11.0/24
Signature Algorithm: sha256WithRSAEncryption
75:6b:4e:bb:42:02:f8:e5:eb:2e:f1:f7:50:26:22:05:64:d7:
9b:a9:89:42:81:2c:61:f6:f2:29:77:c9:4b:ab:1e:84:6f:d4:
9d:be:62:6a:2e:0e:85:83:00:bb:19:e2:5b:eb:68:f1:9f:54:
a5:d7:af:9c:9e:0f:2e:c7:4d:af:4c:82:cb:d7:2e:8c:9f:6f:
2a:f2:68:91:30:2b:ef:e8:99:c6:56:57:b4:bf:34:3d:ec:2b:
70:b4:8d:0b:82:e7:6c:fd:0a:14:8b:b7:6c:1e:6b:a0:0f:d2:
29:a4:5f:69:d6:1b:c0:df:8d:c6:58:d3:4d:73:f6:9c:b8:bd:
9e:ed:dc:37:0a:92:9b:08:d8:e3:97:eb:10:38:d3:b6:89:55:
d3:d5:25:f6:8a:73:b9:da:de:d3:b1:4a:77:53:cf:51:3f:4b:
51:89:73:64:2b:c9:34:26:cf:8d:73:cf:0d:b8:22:90:fb:9f:
e1:f2:0f:31:68:dd:68:cf:4e:5b:10:46:cd:ed:dc:7c:a9:8c:
1a:db:2d:3e:08:54:ca:75:07:4c:8a:ed:d6:a0:32:98:a8:88:
f1:96:bd:c5:9f:65:91:a1:e1:72:48:46:25:c9:61:c1:0e:23:
97:a7:9b:77:90:79:a6:ca:34:69:95:d2:4f:6c:62:59:e4:e8:
23:51:b8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org