Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/48DB40CE1C2511EE961F2B594AD9E6FC.roa
File: 48DB40CE1C2511EE961F2B594AD9E6FC.roa (raw, json)
Hash identifier: 0WYNowNq6/ghxa/+ViWE2YlwzJQFXVRIIBMOUYA+fQ8=
Subject key identifier: 66:44:55:31:AF:7F:15:D0:90:7D:02:39:2F:49:C6:80:18:42:56:92
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 32
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/48DB40CE1C2511EE961F2B594AD9E6FC.roa
Signing time: Thu 06 Jul 2023 17:48:16 +0000
ROA not before: Thu 06 Jul 2023 17:48:12 +0000
ROA not after: Wed 06 Jul 2033 17:48:12 +0000
asID: 37105
IP address blocks: 41.73.32.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 17:48:12 2023 GMT
Not After : Jul 6 17:48:12 2033 GMT
Subject: CN=64a6fe60-bd20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:56:32:d5:e7:28:6f:0d:3e:ed:bc:16:12:d6:
58:40:0a:bb:e9:e2:24:99:49:4d:44:86:ba:42:1b:
9e:a5:01:40:ba:1e:03:14:27:f4:fd:25:71:05:f7:
af:a5:da:e2:ed:1c:b1:5a:90:20:93:28:fb:fe:19:
73:59:08:00:81:9a:5b:41:4e:fa:ef:9f:f3:1e:96:
8d:33:3f:73:65:c8:1b:6a:1d:03:e2:e4:4f:cf:a1:
9a:12:b7:e2:bb:fe:c3:92:72:e0:03:73:c9:bc:80:
4f:a3:e7:f5:50:09:b1:08:8f:3c:86:3b:2c:94:59:
0b:8a:33:55:65:66:b2:8c:c1:d2:26:57:c2:ec:7e:
71:08:0b:b5:c0:3b:bf:7b:a9:47:e3:9e:95:e0:f3:
41:cb:53:14:cb:d9:38:e8:27:0b:02:a2:a1:45:06:
bd:49:ff:52:63:33:c2:6c:a9:cf:ed:c9:71:04:28:
a9:b1:ea:d4:3b:b7:13:2b:b6:e9:45:e6:20:56:82:
08:47:b7:bb:78:6e:83:08:08:e4:ca:57:6c:b9:de:
fb:63:5e:b4:7e:50:a6:ba:e0:78:3b:e2:73:c9:2d:
34:b1:7d:0a:3e:10:d3:3a:3e:43:82:1d:9e:eb:a8:
fc:48:21:4a:32:3f:bb:bf:5e:2d:bf:88:5f:b5:f2:
e0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:44:55:31:AF:7F:15:D0:90:7D:02:39:2F:49:C6:80:18:42:56:92
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/48DB40CE1C2511EE961F2B594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.32.0/19
Signature Algorithm: sha256WithRSAEncryption
92:fc:01:46:b0:ea:ed:67:16:fc:6e:f6:50:ce:4d:f4:58:7a:
b8:76:cf:a5:cc:05:88:8d:ac:83:2d:69:36:57:17:0a:83:eb:
8c:09:9d:59:06:22:16:de:3d:97:55:a7:10:49:0d:18:ed:be:
95:0d:86:e1:0e:d4:d0:cc:68:4a:8b:f3:d2:7d:b7:1c:9f:ee:
8f:5b:f1:4e:93:07:a5:41:e2:30:7a:7c:ad:ed:c7:f2:e5:a9:
b8:3b:87:7f:ee:78:d1:17:98:d5:8e:1a:57:99:1b:0e:cf:bf:
09:fe:bc:5a:7c:59:79:80:05:0c:fe:42:15:1d:7d:c5:fd:63:
cb:4c:91:0e:d0:a6:53:f1:a0:f3:df:62:4c:12:24:78:95:69:
e9:06:41:12:d0:27:22:68:0b:6e:96:35:51:e1:59:0d:00:d7:
63:c2:e9:8d:2f:c8:1c:d1:71:5c:bb:d4:81:1c:a3:ee:2c:54:
35:93:52:cb:f6:82:5c:c3:c3:77:b3:f8:21:e5:5a:22:a6:09:
ec:13:f7:50:00:cf:f1:3a:5f:e4:c3:c9:ff:63:3d:87:7c:6e:
a9:41:40:e5:a7:bb:30:5b:18:03:81:23:13:48:7d:dd:4f:cf:
e1:da:bf:59:03:8e:a8:98:6d:bc:fd:ee:a2:38:75:74:1a:72:
ee:01:a5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org