Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/FC8328E2C99711EEBB2C6E61775412E6.roa
File: FC8328E2C99711EEBB2C6E61775412E6.roa (raw, json)
Hash identifier: ECrLGXW4HGhv0A+5ZOhcAy86Q0opfMQJGNiQHV4n8eI=
Subject key identifier: AB:7E:AF:E7:35:E3:1D:10:86:F2:18:FE:72:2E:A0:A4:76:3E:B7:AE
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 0579
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/FC8328E2C99711EEBB2C6E61775412E6.roa
Signing time: Mon 12 Feb 2024 11:15:11 +0000
ROA not before: Mon 12 Feb 2024 11:15:08 +0000
ROA not after: Wed 12 Feb 2048 11:15:08 +0000
asID: 37098
IP address blocks: 41.77.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1401 (0x579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:15:08 2024 GMT
Not After : Feb 12 11:15:08 2048 GMT
Subject: CN=65c9fdbf-87ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:2b:52:1e:0c:ac:3a:87:2a:23:07:b0:83:
e8:f5:80:82:01:cd:9e:58:31:43:44:4f:2d:b1:09:
52:e8:88:92:b6:c6:c6:be:c4:4a:59:e1:62:82:2a:
3e:fc:3c:66:6f:29:62:a6:ba:cf:df:5c:13:87:b7:
d1:ce:79:3a:56:a6:ae:e6:ea:ce:ce:20:84:a9:15:
dc:c7:e6:6e:8f:66:fc:d1:b2:29:61:a9:55:1d:1a:
73:e7:96:10:ad:a2:b0:d1:7d:47:62:cc:55:d1:32:
56:d6:a5:6f:d8:36:45:e9:62:10:f4:3d:e8:3f:b6:
d8:65:18:7c:67:ac:0c:dd:f6:0a:21:29:ab:d7:a3:
0a:9f:c9:13:a8:5a:41:1f:7f:4b:64:d1:90:aa:8c:
9c:0d:3f:84:2c:93:62:8d:7c:a5:f3:39:ab:6d:e8:
0a:bd:c4:a9:0a:26:43:30:c6:b4:66:84:f1:2d:c9:
d2:d5:9c:46:42:56:e2:20:db:ca:d7:f9:f6:16:ab:
fe:aa:eb:95:8c:3a:d3:54:f1:9e:2d:61:85:6e:5e:
6f:48:50:21:3d:ae:7c:30:13:c5:5f:7b:88:cf:8f:
fa:dc:3a:da:8d:15:fb:3b:02:68:89:fa:e3:17:8f:
97:96:00:cc:be:53:f2:ca:27:fd:37:15:22:e2:d6:
b8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7E:AF:E7:35:E3:1D:10:86:F2:18:FE:72:2E:A0:A4:76:3E:B7:AE
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/FC8328E2C99711EEBB2C6E61775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.14.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c0:06:6c:eb:d0:a6:b1:e2:81:40:3a:fa:20:27:13:8b:f5:
8f:fe:df:e2:4b:4e:ae:11:f3:d0:89:1d:2f:13:a4:63:f3:f3:
b8:e9:02:f6:5c:2b:f3:37:98:67:73:8e:89:93:4f:58:c4:d8:
91:cc:23:31:92:b3:f4:7f:23:34:40:56:c3:45:e3:22:ad:d0:
47:5d:6a:8b:50:60:19:43:31:67:be:ce:77:7a:ad:62:5f:0c:
73:9c:d7:0f:d2:da:c4:f3:7d:0b:0f:fd:8b:f3:8c:49:eb:d2:
e7:1f:f8:1c:e0:5b:60:2b:b9:57:5e:6a:50:bc:e0:6f:78:d8:
f8:d7:2e:3b:24:8c:0f:a2:8f:e3:99:bd:ba:25:d0:22:9f:de:
2c:b6:ca:f5:5a:2f:93:96:8f:b3:d7:1a:bb:1d:c1:b9:ab:4f:
01:94:12:16:43:3b:59:f1:c3:ef:c9:09:fb:f7:c4:91:26:17:
f0:01:e6:1c:30:50:af:d4:35:06:6d:d7:c9:99:43:a3:d2:c8:
03:55:f7:29:c3:a9:e1:81:13:89:57:bf:05:57:ab:0a:4c:79:
79:4a:1b:08:c2:98:95:ab:fa:38:80:f8:ec:fb:69:b1:d1:a3:
f4:34:2b:56:1c:14:a5:09:f6:61:6a:51:f8:65:4e:67:ce:a4:
2c:53:77:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org