Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/7DE6E446144311EF8FE1610C017001B1.roa
File: 7DE6E446144311EF8FE1610C017001B1.roa (raw, json)
Hash identifier: L2FIqI5eBY5ETDiTLagLddedM/M/9lA14XhmN0fI7kM=
Subject key identifier: 5E:14:E1:C3:D7:D5:22:3B:AF:7C:C4:C7:9F:1C:63:E5:38:7E:AC:40
Certificate issuer: /CN=F36D8ADDAF/serialNumber=26B3A758B2D8D2BEB5C6F681CA5BD9258C79F777
Certificate serial: 04CD
Authority key identifier: 26:B3:A7:58:B2:D8:D2:BE:B5:C6:F6:81:CA:5B:D9:25:8C:79:F7:77
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JrOnWLLY0r61xvaBylvZJYx593c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/7DE6E446144311EF8FE1610C017001B1.roa
Signing time: Fri 17 May 2024 11:49:18 +0000
ROA not before: Fri 17 May 2024 11:49:13 +0000
ROA not after: Sat 17 May 2025 11:49:13 +0000
asID: 206283
IP address blocks: 41.87.88.0/22 maxlen: 30
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/JrOnWLLY0r61xvaBylvZJYx593c.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/JrOnWLLY0r61xvaBylvZJYx593c.mft
rsync://rpki.afrinic.net/repository/afrinic/JrOnWLLY0r61xvaBylvZJYx593c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1229 (0x4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D8ADDAF/serialNumber=26B3A758B2D8D2BEB5C6F681CA5BD9258C79F777
Validity
Not Before: May 17 11:49:13 2024 GMT
Not After : May 17 11:49:13 2025 GMT
Subject: CN=6647443e-a22f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a4:f7:85:0c:6a:15:11:46:54:8b:75:dd:97:
9f:31:c7:bf:f4:a8:38:42:2d:f7:51:c8:9d:eb:3b:
26:66:4d:18:d7:ff:0d:e6:31:5d:13:ba:a1:23:95:
8c:56:c2:08:68:96:be:19:a1:7c:2b:fa:03:d8:ee:
ba:ab:3b:18:43:a0:8d:15:17:bc:a5:61:d7:b3:3f:
a1:94:0e:d0:24:91:9b:99:34:52:ef:f1:1e:1a:ff:
1d:f6:f3:54:3a:3f:39:9f:28:26:c4:7e:bb:16:4d:
0c:44:1d:fa:7a:fb:5d:a1:92:23:25:8d:48:23:7b:
a4:25:d9:8d:18:d3:10:a7:33:61:54:14:76:42:ed:
3e:54:f8:d3:b3:ea:2c:19:39:d7:87:63:ef:a1:17:
48:fa:4e:06:43:d0:82:cd:8b:8a:37:dc:c9:69:02:
43:f3:af:e6:38:fa:1b:47:dc:a7:3a:c4:f6:e3:bc:
9d:8f:16:b0:3d:36:e3:ce:41:44:55:af:82:af:b6:
98:4f:b9:7b:16:63:8b:26:32:f4:14:d8:d0:20:e3:
e2:b8:d3:37:c1:b0:ca:e6:a7:3f:2d:32:2b:c3:d5:
9b:9d:bd:88:f6:41:21:b1:76:f5:dd:a7:db:f6:58:
70:d2:89:26:1e:22:aa:89:1a:04:c0:0a:17:03:fc:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:14:E1:C3:D7:D5:22:3B:AF:7C:C4:C7:9F:1C:63:E5:38:7E:AC:40
X509v3 Authority Key Identifier:
keyid:26:B3:A7:58:B2:D8:D2:BE:B5:C6:F6:81:CA:5B:D9:25:8C:79:F7:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/JrOnWLLY0r61xvaBylvZJYx593c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JrOnWLLY0r61xvaBylvZJYx593c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8ADD/99DB6EFC6AC711EBB90AF548F8AEA228/7DE6E446144311EF8FE1610C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.87.88.0/22
Signature Algorithm: sha256WithRSAEncryption
78:d8:61:eb:21:fd:ae:b9:50:f8:0c:15:dd:b0:6d:06:70:dd:
0e:52:88:f1:ad:ef:6f:e2:f7:d6:6c:f1:10:7a:45:6e:a0:38:
d0:41:80:e4:4b:29:6f:93:c7:20:78:ce:d3:de:6a:69:4b:ea:
f4:bc:23:0f:c4:af:89:3f:a1:0b:1e:37:ca:ec:1b:1d:f9:c8:
b7:de:36:7b:1a:28:ef:4c:98:57:00:9c:de:6a:2d:40:aa:7e:
3f:d1:64:96:94:e2:2e:2a:70:d2:1b:fa:be:0e:31:39:44:df:
85:7b:97:f1:15:41:b9:16:16:ff:b7:07:fa:9f:3f:f8:34:63:
39:d5:9a:eb:71:23:f0:5e:93:62:69:a8:de:8c:58:bf:7e:f0:
18:02:f2:8b:1f:59:4d:db:3a:b5:b1:2b:91:3b:f5:f5:91:2b:
67:14:e3:9a:3f:ab:30:cb:3e:45:1e:6e:71:41:f7:cb:49:3d:
38:37:b8:69:32:e0:48:2b:1a:89:66:21:5b:d3:ee:97:15:6b:
de:8c:91:01:af:1e:04:f7:08:a6:f7:1f:29:25:b1:3c:7d:29:
24:a7:ef:55:52:be:2f:89:01:82:52:63:f5:50:a2:b4:f9:68:
2d:12:75:fb:a4:f9:ad:de:30:15:63:a1:d9:4a:da:32:fc:a6:
db:e3:12:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org