Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/2B8DDBD2E31211ECBB6770BFF1222468.roa
File: 2B8DDBD2E31211ECBB6770BFF1222468.roa (raw, json)
Hash identifier: yNSLeXe02b1a11fN/xRBufDPGNcKz8e5V1fkWzQzmy4=
Subject key identifier: 1C:34:5F:0B:D6:EF:38:4A:74:2D:BE:8B:27:64:A0:34:F1:FF:BC:EB
Certificate issuer: /CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Certificate serial: 0B
Authority key identifier: 5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/2B8DDBD2E31211ECBB6770BFF1222468.roa
Signing time: Fri 03 Jun 2022 07:52:52 +0000
ROA not before: Fri 03 Jun 2022 07:52:42 +0000
ROA not after: Thu 03 Jun 2032 07:52:42 +0000
asID: 36913
IP address blocks: 41.78.248.0/22 maxlen: 24
41.222.184.0/21 maxlen: 24
196.216.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.mft
rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Validity
Not Before: Jun 3 07:52:42 2022 GMT
Not After : Jun 3 07:52:42 2032 GMT
Subject: CN=6299bdd4-cbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:8e:66:7f:2d:a8:d0:14:ce:18:76:e3:7a:
ee:a0:21:91:d2:e7:a4:a7:8c:cc:1e:bd:cd:b8:02:
c8:dd:5b:90:5a:2e:b3:97:40:c2:51:10:bb:3d:a9:
e3:80:a6:47:10:6a:3e:9a:41:e9:6f:32:8b:d7:8a:
a0:50:61:c5:b9:fd:6b:76:6d:6f:c9:94:c1:44:fe:
49:a0:6a:e2:d9:5f:fb:7c:46:f2:4a:9c:2c:55:9a:
07:25:d9:94:b0:7e:16:b7:70:9b:9c:5f:d8:46:b1:
16:f6:9a:fc:06:6e:cb:0c:1e:9e:2d:c4:af:15:1b:
eb:dc:ae:ab:47:88:59:3d:8a:56:2a:25:89:71:27:
43:e4:3e:2b:a7:26:41:06:67:79:f3:ca:e5:3f:2c:
8a:08:a6:9f:07:0e:27:e4:5a:fe:e0:91:97:83:1c:
cd:d4:62:5e:15:10:84:c6:05:2a:9f:b0:d0:00:89:
b6:42:f3:34:15:d3:1a:b0:74:fb:80:b1:0c:68:d1:
6b:6a:a2:ef:b9:ae:9f:ac:70:d8:7a:b4:ee:31:56:
e3:54:da:d5:76:b7:57:db:fc:03:61:e0:99:bc:b6:
4e:f7:68:fa:00:67:6c:ad:f2:b3:5a:a9:00:8e:0a:
8e:32:a2:eb:03:99:0a:e2:bd:ad:9e:c2:6a:8e:b1:
c9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:34:5F:0B:D6:EF:38:4A:74:2D:BE:8B:27:64:A0:34:F1:FF:BC:EB
X509v3 Authority Key Identifier:
keyid:5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/2B8DDBD2E31211ECBB6770BFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.248.0/22
41.222.184.0/21
196.216.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b5:f5:c7:94:a5:62:c9:c7:f3:3e:73:33:bf:ef:b2:b2:3a:01:
c2:37:a9:57:7f:b6:d7:c2:43:03:e5:17:c6:e1:d1:9d:dd:c9:
db:61:3f:ae:92:54:16:f8:a3:43:4e:0a:bf:9e:65:81:63:20:
a1:ca:3d:5c:b4:b2:ae:cb:86:ae:de:77:3c:e3:ff:55:ef:de:
f7:4c:73:ca:d8:aa:79:c2:cd:1d:a3:f2:20:f9:d5:1c:c1:18:
b4:67:66:7c:99:5e:1b:83:a8:1a:13:3e:a7:23:4e:08:1a:33:
1d:3a:9c:be:e5:04:6e:81:a2:61:22:f1:fa:21:e0:f8:24:75:
5f:8e:6f:29:26:2d:94:af:2a:80:93:b3:23:62:ea:71:d7:d4:
ac:74:d3:28:38:c4:0a:a2:6e:b6:5c:87:17:dd:2f:df:dc:8f:
20:2f:ec:d6:46:92:2e:a2:a8:81:38:ef:d7:59:db:3f:3a:ef:
c9:82:98:5a:49:96:d9:54:8e:2a:08:85:44:2d:f2:70:78:7f:
b9:b8:b5:17:2a:95:36:ba:62:5d:1b:f4:42:bd:4c:ac:ae:de:
ae:20:3c:40:1e:00:39:61:3d:c5:38:8a:92:f8:6b:1e:37:41:
97:43:86:83:0f:93:a3:bd:54:9a:95:69:31:27:16:e0:ac:e2:
b3:68:d0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org