Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/D305BF9E1C2611EE962CF15D4AD9E6FC.roa
File: D305BF9E1C2611EE962CF15D4AD9E6FC.roa (raw, json)
Hash identifier: QvV0F8KyJ9WvuBSABzYloVhD1CSoUH2t+UNQgJHZffQ=
Subject key identifier: 62:EE:24:FC:7A:DC:40:71:92:74:BE:CD:1B:84:43:D0:99:6F:49:45
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 44
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/D305BF9E1C2611EE962CF15D4AD9E6FC.roa
Signing time: Thu 06 Jul 2023 17:59:17 +0000
ROA not before: Thu 06 Jul 2023 17:59:13 +0000
ROA not after: Wed 06 Jul 2033 17:59:13 +0000
asID: 37105
IP address blocks: 41.216.192.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 17:59:13 2023 GMT
Not After : Jul 6 17:59:13 2033 GMT
Subject: CN=64a700f5-30ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:38:fc:94:ae:53:d9:3d:26:81:03:09:8f:0c:
55:32:87:bf:55:09:3b:85:89:ff:3a:0b:98:64:40:
4c:89:82:94:8d:0d:a5:fc:b2:07:2e:f7:3f:44:8c:
d0:82:b8:45:8f:f9:53:69:8f:2e:b9:d9:69:3a:ce:
8b:42:bd:32:32:c6:eb:2d:83:82:64:c2:f9:f2:77:
67:77:10:9f:c6:51:e7:94:e3:24:03:92:2a:37:d2:
6f:ad:0d:de:68:46:53:47:91:6f:aa:af:a0:00:4c:
4d:71:92:c6:66:01:02:5e:e0:1a:58:30:c1:8a:05:
76:dc:77:02:83:74:46:9d:44:6d:ff:41:71:9d:8f:
b0:f5:35:a4:a2:78:c8:b3:21:c0:74:49:c9:96:17:
94:2a:14:df:ca:09:92:3e:cc:89:61:08:c1:99:a1:
3f:51:41:48:e7:60:88:91:ca:8d:a5:ae:cf:40:9c:
c2:2c:2b:93:e6:28:61:26:f2:34:bf:39:2a:41:d8:
a4:84:c0:f2:49:4f:e7:07:d3:ba:9b:09:2f:94:81:
7c:58:e6:cd:62:d2:93:0a:c7:ec:d4:cd:9c:0b:fb:
fe:10:f6:ef:33:5a:1f:c2:63:7c:20:8a:a8:2b:64:
cb:52:7b:25:84:94:1c:db:d9:b1:c1:8c:55:ff:25:
eb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EE:24:FC:7A:DC:40:71:92:74:BE:CD:1B:84:43:D0:99:6F:49:45
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/D305BF9E1C2611EE962CF15D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.192.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:1e:aa:e5:98:5c:c9:52:5b:f1:bb:cb:28:d8:b9:1c:4b:6b:
e4:1a:f2:dd:c8:3d:52:6a:79:09:8f:81:8b:3d:8d:5a:8e:68:
59:63:e8:ae:1f:d0:0e:f8:05:f4:a9:23:4e:7e:d9:d6:ce:06:
95:9b:d3:33:fb:2d:bd:f6:33:72:11:0c:8b:f1:ef:f1:2f:19:
3a:a8:37:e9:db:2d:f9:d2:a0:49:3a:dd:16:6c:fd:28:51:43:
32:9f:7d:ee:a6:0f:9f:f7:66:50:f2:5f:9f:e9:98:a0:df:ee:
4e:c8:a8:b0:e3:e0:90:5f:6c:2c:8c:b3:3c:e1:2a:9b:92:60:
65:08:8e:b8:da:48:53:10:9b:c1:df:83:b5:bb:c8:55:1e:9c:
a5:6a:d5:54:2d:71:3b:cd:3e:f8:76:5e:d1:23:27:a8:4a:cc:
56:6b:3e:db:a9:94:32:02:72:ed:3e:93:1d:17:3d:b0:64:04:
6c:42:67:53:da:56:11:4c:f8:55:fd:4b:8a:31:8d:ce:42:26:
8e:97:93:11:e2:58:95:e7:fe:8a:17:f3:42:94:c0:cf:f5:8d:
39:00:4f:06:be:e6:19:67:61:b2:e0:0b:29:31:31:e5:dd:48:
48:58:9a:57:36:8c:a5:a8:f9:a2:b0:57:d7:c0:10:d2:64:66:
31:3f:18:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org