Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/75CA91FC1BE411EE9089601B4AD9E6FC.roa
File: 75CA91FC1BE411EE9089601B4AD9E6FC.roa (raw, json)
Hash identifier: Cs2GRiXevEGCoa3qkkhkNlYauBNaqUjtSZnO1OJruuQ=
Subject key identifier: 51:94:31:AC:C8:7A:D4:9D:96:60:AF:4E:3F:EB:D3:E2:BC:72:0B:68
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 28
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/75CA91FC1BE411EE9089601B4AD9E6FC.roa
Signing time: Thu 06 Jul 2023 10:04:14 +0000
ROA not before: Thu 06 Jul 2023 10:04:10 +0000
ROA not after: Wed 06 Jul 2033 10:04:10 +0000
asID: 37105
IP address blocks: 41.216.192.0/24 maxlen: 24
41.216.193.0/24 maxlen: 24
41.216.201.0/24 maxlen: 24
41.216.202.0/24 maxlen: 24
41.216.203.0/24 maxlen: 24
41.216.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 10:04:10 2023 GMT
Not After : Jul 6 10:04:10 2033 GMT
Subject: CN=64a6919e-c9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:16:cb:de:4c:c2:85:93:c4:26:d5:b8:63:80:
69:9a:e6:66:10:8a:d3:d5:24:c4:a4:c9:9d:ac:de:
8d:f2:19:45:07:e9:9d:04:f2:43:fd:9b:fd:38:e1:
6f:ca:57:10:a3:4e:66:a1:17:de:82:19:a1:d8:b9:
a4:70:cf:af:a5:86:09:53:45:b4:b3:bf:41:49:06:
0b:74:15:33:44:9a:95:b1:f4:7c:6e:2d:c4:30:15:
de:de:8c:63:36:98:e1:86:29:7f:76:31:99:a2:54:
cf:45:3b:72:bc:b6:75:17:74:66:37:7e:e8:5f:ea:
f6:19:db:e4:dd:e7:31:80:3b:0b:ed:5b:da:42:2f:
17:fa:a5:a5:cc:9f:49:41:35:b3:05:8e:55:61:ba:
46:ad:9d:2e:fe:f5:f7:db:15:19:48:97:31:a4:e7:
91:8a:14:47:ed:08:4c:9a:aa:0f:45:05:81:5a:fe:
3b:cc:48:11:9f:af:b4:43:3f:56:82:b8:18:85:8d:
d5:a3:45:a5:fc:d2:57:1c:59:87:38:ce:9b:c4:66:
ec:ea:26:df:df:23:36:d7:92:07:f7:cc:bc:d1:a1:
67:a6:af:dc:f1:cb:f7:af:43:87:47:ea:c6:49:45:
bf:44:97:e2:a5:54:5e:12:e7:c3:a6:24:a7:8e:97:
24:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:94:31:AC:C8:7A:D4:9D:96:60:AF:4E:3F:EB:D3:E2:BC:72:0B:68
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/75CA91FC1BE411EE9089601B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.192.0/23
41.216.201.0-41.216.204.255
Signature Algorithm: sha256WithRSAEncryption
7b:1a:b2:94:e3:7a:b4:d4:6e:33:63:5b:eb:41:b3:7b:c4:e2:
56:c8:a7:d8:e0:c5:a2:16:e6:ab:55:0c:65:73:82:6a:cb:c8:
91:42:8b:f6:1b:83:96:31:ac:66:80:2b:e0:63:90:5f:0f:45:
0d:d3:84:c7:0a:ad:a1:d6:be:a9:41:fc:39:e1:65:39:7d:6d:
a4:11:ba:a7:0c:7d:31:b7:63:b0:56:3a:81:96:5b:23:41:d9:
a9:72:88:65:e9:da:ac:5b:68:a3:8e:95:21:6d:fc:b6:03:a7:
38:a0:89:ef:c6:bf:a4:26:a2:34:b9:96:1d:32:55:58:a1:49:
5d:c6:d0:33:e1:6e:25:74:4d:72:3f:68:23:c8:be:96:50:2d:
e2:19:c8:65:37:20:d7:c6:7d:84:52:8a:53:71:2f:07:a1:22:
33:34:d5:89:93:98:e3:2e:42:fa:19:ce:d9:f0:5b:7e:3d:cc:
b0:22:87:33:fa:0a:25:e0:86:4f:8d:40:bc:5f:d2:9c:7a:a3:
c1:39:57:e4:ca:50:5d:28:e4:2a:89:aa:a7:43:d1:e8:1d:58:
d0:2b:2b:5e:85:84:a1:5c:c6:f0:8b:ff:e7:ce:73:07:a7:06:
b3:88:3e:1d:48:c1:0d:4a:56:2d:81:e9:32:21:6b:af:86:dd:
45:08:7b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org