Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/92C82F9CC99711EEA514D260775412E6.roa
File: 92C82F9CC99711EEA514D260775412E6.roa (raw, json)
Hash identifier: Go8jrZxUVeAB3wwsylNTy4r7WY+TqHaRJK8STLGevKs=
Subject key identifier: 98:51:CE:93:DA:8E:0C:29:4E:1D:CD:58:D6:04:9A:C6:8D:86:A4:D1
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 0575
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/92C82F9CC99711EEA514D260775412E6.roa
Signing time: Mon 12 Feb 2024 11:12:13 +0000
ROA not before: Mon 12 Feb 2024 11:12:10 +0000
ROA not after: Wed 12 Feb 2048 11:12:10 +0000
asID: 37098
IP address blocks: 41.77.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1397 (0x575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:12:10 2024 GMT
Not After : Feb 12 11:12:10 2048 GMT
Subject: CN=65c9fd0d-b366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:89:af:54:ea:ad:8e:c0:5e:15:41:b6:ca:3c:
a6:3e:15:dc:3f:bb:ae:86:73:8a:b3:b5:f0:29:1b:
7a:80:56:bd:e2:2b:f4:1f:0f:d8:a9:1e:da:5a:54:
9b:04:9b:71:ad:73:e7:16:4b:44:96:bb:62:2f:30:
ac:34:3e:28:a8:bb:63:7d:ce:ec:55:51:e4:be:27:
8e:0b:c2:c9:57:59:ee:d6:4f:9d:23:d2:a5:1a:d8:
3c:32:22:c3:69:12:76:b3:4c:02:55:9a:28:dd:6f:
ed:27:91:8f:9a:06:71:c1:e4:6b:f8:f6:73:43:46:
db:e1:2c:4d:c0:b7:1d:45:79:cf:e2:bf:74:28:f2:
d7:0a:85:eb:8b:af:48:fa:80:fd:2b:5f:61:f8:98:
55:fb:e1:69:3c:b6:b6:a2:4f:3f:9b:f5:dd:7f:c3:
14:54:ba:87:ed:55:89:8f:7b:da:20:a5:88:1d:1d:
20:3b:62:3f:c6:4f:11:b7:25:29:73:ca:3e:bb:68:
13:78:ba:f2:0e:6b:ae:a2:ae:75:c8:4c:44:5c:c2:
6b:9e:3b:42:18:34:6e:7e:a1:cc:e5:5c:da:96:a1:
3f:dc:f6:4a:75:bb:9b:de:12:76:3f:1a:7d:cc:51:
61:bc:f6:e0:97:0a:59:b1:6c:d8:68:b7:b8:8e:d7:
a9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:51:CE:93:DA:8E:0C:29:4E:1D:CD:58:D6:04:9A:C6:8D:86:A4:D1
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/92C82F9CC99711EEA514D260775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.12.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a5:75:0a:cf:74:5b:9c:fd:6c:5a:7b:f0:a7:6b:ec:bf:c9:
34:33:eb:97:80:cf:1a:64:7d:53:32:7a:8e:0a:1a:49:41:47:
6a:21:97:f8:2e:85:5f:34:f7:64:ae:cd:07:4c:0d:28:fe:0f:
ed:b2:0d:96:11:6e:91:fb:ed:c1:b7:6b:5f:86:d4:32:4a:57:
02:1a:9b:99:40:7d:fd:b9:f4:f1:33:56:ca:c7:97:ed:21:ae:
73:7d:70:a7:e0:d9:e6:f2:a1:65:69:79:39:6a:04:4a:25:de:
5b:ef:33:98:d4:e2:a4:48:32:04:63:52:ee:8b:a1:95:cd:2f:
d0:83:b4:ce:49:2f:da:d3:1d:cc:67:9a:96:a6:a7:bd:5f:de:
a6:6d:91:b3:4c:ea:a1:92:01:c5:da:40:97:70:e1:10:94:0e:
4a:91:cc:2d:8c:8c:04:2a:d5:46:20:30:b4:05:e9:ab:3d:01:
e1:5b:b7:8b:3f:56:d6:95:fe:fa:e4:f1:84:fa:12:24:f6:97:
45:82:1b:94:1f:55:b4:80:bc:a1:53:75:d8:7e:15:c5:3e:52:
f1:d6:6e:70:dc:30:c4:a8:bb:6f:fa:ec:0d:56:ac:0a:90:36:
25:48:84:34:91:66:bb:0c:cd:f8:e6:0f:5d:15:64:9e:eb:1f:
e1:d1:4d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org