Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/003205069B9511EFB5BBFBA3762E951A.roa
File: 003205069B9511EFB5BBFBA3762E951A.roa (raw, json)
Hash identifier: UjNuym/YVxBGxCeImR5szQOeTVJpSD09YHDR0+HigJY=
Subject key identifier: DA:CF:3A:85:D2:33:A4:EC:8C:EF:02:C3:20:15:F3:CC:5E:BE:12:27
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 0277
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/003205069B9511EFB5BBFBA3762E951A.roa
Signing time: Tue 05 Nov 2024 16:42:53 +0000
ROA not before: Tue 05 Nov 2024 16:42:49 +0000
ROA not after: Sun 05 Nov 2034 16:42:49 +0000
asID: 37105
IP address blocks: 41.73.60.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 631 (0x277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Nov 5 16:42:49 2024 GMT
Not After : Nov 5 16:42:49 2034 GMT
Subject: CN=672a4b0d-9dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:35:5f:99:ff:8c:a9:e6:47:fc:c1:93:ef:
a2:3c:a9:b9:75:ab:0f:04:8c:d1:96:cd:23:c9:91:
78:d8:4b:38:a8:23:bd:9d:f8:f3:06:65:55:68:66:
c4:f5:09:64:d4:28:bb:ed:a2:19:a7:d4:07:41:48:
db:2e:aa:75:57:2a:9b:42:06:79:8d:34:e5:f3:26:
fb:65:77:05:82:7e:4f:01:8c:f4:97:ca:72:14:54:
73:ff:4c:d1:1e:4c:20:41:6d:5d:ad:23:1f:f4:60:
69:24:3d:1e:81:62:aa:ba:fb:cc:3e:53:57:22:1a:
71:32:d8:30:1a:28:8a:81:28:e0:5d:25:58:d9:2d:
a3:53:62:b1:20:18:e3:86:98:1d:0a:e9:44:4f:6b:
70:1d:6a:0f:de:94:7d:b2:b1:47:9d:2f:95:96:63:
9d:c6:6c:1f:50:14:f0:7c:1e:43:f4:c9:1f:d1:d9:
98:91:09:b3:d5:ff:7f:04:dc:51:5d:27:b5:d7:1c:
6c:0b:b7:2a:1a:15:96:fe:17:c4:d1:9e:14:23:ea:
55:61:e8:e8:92:cd:65:1b:4b:d2:f1:54:1a:eb:f0:
85:a5:e9:67:32:f3:b6:dd:3a:c3:e9:af:3b:e5:84:
83:57:68:a4:65:a1:23:33:63:39:a1:54:b0:b0:54:
1f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CF:3A:85:D2:33:A4:EC:8C:EF:02:C3:20:15:F3:CC:5E:BE:12:27
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/003205069B9511EFB5BBFBA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.60.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:c7:8d:eb:9e:19:24:58:84:3e:21:d0:50:ed:3e:1e:45:f4:
5e:92:86:0b:84:c8:08:96:9f:72:66:c3:10:bb:4a:23:e9:dc:
bc:18:53:f2:c2:b4:69:d0:1f:a6:ab:aa:a3:62:c3:d9:2b:6d:
96:e1:28:b7:b1:22:74:e8:c3:9c:84:7e:3b:d8:21:b7:d8:5c:
ae:29:1f:26:25:1b:5d:47:d5:94:87:51:f8:e5:b2:6d:20:6b:
6c:94:bf:bf:e3:53:27:dd:76:e3:b6:2b:19:78:f5:79:fd:00:
61:65:cc:48:d8:c2:55:10:cb:9d:c3:1b:ef:c5:64:0d:94:5c:
d9:12:7b:d3:88:ca:ee:2c:33:1e:48:35:41:70:a5:32:04:c5:
ce:f7:e3:0a:6b:dd:be:5c:74:fc:20:6c:77:8a:da:ad:80:71:
7e:37:71:81:d4:31:a4:a2:1f:76:bc:75:a7:72:e6:eb:28:cf:
13:bb:8a:0a:3e:7b:0b:a5:21:a8:50:11:8d:df:5a:48:2b:c0:
8d:be:ba:fa:c3:a9:c5:9c:d8:8e:3c:87:da:2f:83:92:2b:17:
13:80:b1:43:c0:86:df:7e:05:d0:bf:26:e1:bb:30:de:77:0c:
7e:4c:97:b7:69:cd:0e:71:2b:80:b6:76:b8:54:21:d4:ae:39:
7d:21:9c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org