Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/4134710A1C2611EE8654415C4AD9E6FC.roa
File: 4134710A1C2611EE8654415C4AD9E6FC.roa (raw, json)
Hash identifier: FOrfNT73uBh2aYXKjOIxZWv6Nr2ME7Pa+Um5EKzqmIQ=
Subject key identifier: 34:0B:7B:9C:89:CD:AC:37:18:B5:47:2E:F5:B5:F0:F3:4C:E3:4D:39
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 3B
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/4134710A1C2611EE8654415C4AD9E6FC.roa
Signing time: Thu 06 Jul 2023 17:55:12 +0000
ROA not before: Thu 06 Jul 2023 17:55:09 +0000
ROA not after: Wed 06 Jul 2033 17:55:09 +0000
asID: 37105
IP address blocks: 41.56.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 17:55:09 2023 GMT
Not After : Jul 6 17:55:09 2033 GMT
Subject: CN=64a70000-da32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c0:7e:f8:bf:92:13:6e:64:58:10:2c:89:2d:
cd:52:0a:cb:34:cc:bc:4c:7c:df:1b:e9:e3:12:55:
7d:b1:df:f7:ed:a4:ad:70:84:6f:40:e9:cc:49:0b:
4a:b2:0a:6b:c0:fd:64:53:2c:6c:7b:ec:af:9f:21:
8b:cf:63:30:36:62:0d:bd:14:96:19:b5:2c:3e:e6:
65:e2:1e:94:01:cb:81:8a:3c:33:7b:5f:c3:09:ba:
da:c1:3e:b5:b9:ac:f3:2f:bc:59:6b:3c:c0:3a:91:
07:11:1b:aa:50:b9:28:ba:68:92:dd:0b:fb:fc:cc:
27:92:a1:0b:ed:6d:ed:42:be:33:ba:1c:7e:42:45:
0c:e1:f3:91:a5:14:92:e6:32:b2:26:75:69:c1:bf:
4b:ab:02:26:85:44:08:5a:f6:4c:b4:d5:2e:40:e8:
ff:df:57:ca:75:40:b7:65:8c:ca:ea:c9:47:6b:b6:
ab:70:d0:4b:d9:cc:66:12:4b:27:c1:a1:4d:c7:53:
6a:43:d4:6d:a3:8c:b8:3e:82:2b:da:74:d9:5e:94:
cd:8f:1a:ac:7d:f5:dc:21:15:2d:c3:13:44:6a:37:
ec:d3:16:1a:bd:7e:14:a2:0e:7f:5b:21:e6:a7:25:
14:d4:cd:c2:ca:12:e2:eb:7c:4f:67:8f:c9:4d:1f:
9e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0B:7B:9C:89:CD:AC:37:18:B5:47:2E:F5:B5:F0:F3:4C:E3:4D:39
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/4134710A1C2611EE8654415C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2b:56:8f:0f:e2:02:3b:ec:d9:a9:08:fd:2f:85:73:cf:62:32:
ad:41:51:cb:43:92:54:46:bf:ed:c8:b4:6f:c2:1f:e0:27:b7:
bb:f7:3e:87:5b:57:ec:fe:b3:2c:39:6f:dd:1f:9b:94:41:21:
81:97:87:c9:89:ff:48:89:7b:48:77:a9:94:f5:0e:8c:42:48:
c3:06:f4:d1:7e:8f:94:91:53:9e:56:c3:93:14:62:53:c7:14:
99:9f:98:5a:52:0f:70:37:9b:30:95:26:57:4a:80:fb:7b:e5:
b3:3b:0a:1e:db:37:80:ce:63:f2:db:96:33:f3:aa:c8:95:fb:
28:60:2b:ce:89:04:57:e3:0e:c1:13:15:9a:d6:44:14:73:f7:
9b:9c:2e:1c:08:ec:37:7b:4b:39:f4:bc:6f:e4:c6:e3:10:c2:
ad:5a:7a:ed:b4:86:09:97:0b:a4:33:f0:f7:f2:8a:2b:6a:e6:
fa:42:cb:21:a8:a8:29:4a:14:c5:d8:95:f5:64:a3:9b:b7:eb:
73:a3:65:2d:18:a4:73:ad:64:24:47:c7:d3:4c:de:7e:39:07:
a3:0a:0d:6e:b2:03:50:77:f2:85:c4:cf:2b:7d:26:e8:b8:45:
23:6a:9d:1a:49:59:50:ef:8b:25:12:c6:40:94:19:ce:c8:56:
54:5a:5c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org