Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/E4F513D62E4F11EE821EEF3E4AD9E6FC.roa
File: E4F513D62E4F11EE821EEF3E4AD9E6FC.roa (raw, json)
Hash identifier: DYmZa8B9NjtKrkKnYHdtuvnrU/nO89Q7DBYZ1occr14=
Subject key identifier: 8A:29:55:46:7B:0D:4D:C2:05:88:AF:3D:32:9E:48:E1:09:04:19:14
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 04BB
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/E4F513D62E4F11EE821EEF3E4AD9E6FC.roa
Signing time: Sat 29 Jul 2023 20:38:37 +0000
ROA not before: Sat 29 Jul 2023 20:38:34 +0000
ROA not after: Sat 30 Jul 2033 20:38:34 +0000
asID: 37119
IP address blocks: 41.78.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1211 (0x4bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 20:38:34 2023 GMT
Not After : Jul 30 20:38:34 2033 GMT
Subject: CN=64c578cd-b8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e9:e5:e8:2a:ef:a2:1d:94:da:e2:d7:bb:7c:
db:91:24:7d:35:5d:9f:0c:da:c8:b3:27:b0:6f:9a:
0e:b6:02:c1:c2:96:9c:d9:f8:89:2f:a5:69:71:6a:
cd:a9:35:db:bf:ff:ac:56:a6:5d:20:6a:3a:c7:5d:
44:f1:86:71:4a:32:94:99:e4:5e:1c:59:05:6f:6a:
dd:7d:fa:79:0b:28:c3:11:31:97:c7:8c:a6:fb:89:
41:77:7f:d0:d5:82:8d:1c:3e:bc:f7:02:b1:9b:ac:
b5:13:72:34:76:80:42:87:1d:aa:52:b7:52:cd:f1:
5b:41:d0:2a:58:d1:29:37:52:72:59:03:a5:b1:70:
93:b3:d9:a6:ef:50:d1:41:ae:14:04:d5:0b:54:e4:
1d:54:30:a4:c6:1f:eb:92:d9:a6:de:a9:ec:b0:88:
35:5f:33:b2:cb:55:70:f2:79:e9:bf:6e:6f:c1:6d:
f3:a0:cb:58:ce:ea:e7:17:27:57:70:ba:8f:14:fa:
85:8c:14:d0:dc:bd:fc:ad:9b:25:ab:b8:ff:32:6c:
e9:49:ee:b5:ee:0f:3a:56:f4:12:33:7f:9b:54:1c:
ab:c9:37:b3:5a:9e:8f:9f:fc:95:5e:c2:bd:db:19:
66:ce:4e:ee:aa:bc:d9:36:2a:b6:a2:6c:b3:a1:1d:
2c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:29:55:46:7B:0D:4D:C2:05:88:AF:3D:32:9E:48:E1:09:04:19:14
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/E4F513D62E4F11EE821EEF3E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.17.0/24
Signature Algorithm: sha256WithRSAEncryption
34:6f:21:37:14:16:2b:b9:44:98:a8:9b:69:5b:d2:11:cc:28:
7d:69:97:bf:8c:33:3c:f8:93:94:ef:52:1d:85:07:a5:96:99:
f7:c2:71:3a:83:f6:be:73:b2:77:d9:ec:89:cd:c4:5f:c8:1f:
b1:95:ed:db:13:5d:e7:c6:a5:eb:d3:4a:aa:fb:38:f7:9d:c8:
19:a2:f9:19:ef:5d:be:2c:ef:8b:30:df:96:b4:fc:19:00:43:
71:41:b1:e7:87:0b:5a:30:33:56:ea:4c:f0:c7:37:c4:77:29:
89:d8:38:2d:bc:4b:09:bd:42:ba:57:5d:d6:90:fa:68:26:50:
a3:af:c1:87:44:eb:ee:30:9e:8d:a5:36:48:6d:f1:24:9f:2a:
e6:05:06:a2:11:a9:df:8c:9b:6b:9a:ef:6a:90:77:1a:fd:ec:
ed:77:f3:65:9c:24:dd:e9:ba:07:86:24:27:f1:dc:a7:5a:65:
24:8e:7b:60:88:d1:42:5a:b0:66:8a:16:f0:48:f5:65:4f:bb:
6e:d8:c3:a7:0a:03:86:2c:9d:45:98:a7:65:c0:90:26:ad:f3:
d5:75:47:0e:07:c2:ba:51:f3:36:d0:01:9c:48:14:5a:38:2f:
b1:d3:f0:56:5c:8f:97:60:96:c2:99:29:3f:fe:d5:72:ad:28:
84:8b:73:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org