Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/3D3E31C6498E11EFBB02DB76762E951A.roa
File: 3D3E31C6498E11EFBB02DB76762E951A.roa (raw, json)
Hash identifier: u0Z0y5U3GM/VfkEEbg/zEJIp4QkqBJm1umtwXpHXzsE=
Subject key identifier: F9:32:D1:EA:96:8C:75:CB:55:10:99:85:A7:AA:E5:8D:D6:89:14:32
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 0D6D
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/3D3E31C6498E11EFBB02DB76762E951A.roa
Signing time: Wed 24 Jul 2024 07:27:53 +0000
ROA not before: Wed 24 Jul 2024 07:27:50 +0000
ROA not after: Mon 31 Jul 2034 07:27:50 +0000
asID: 32653
IP address blocks: 41.77.152.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3437 (0xd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Jul 24 07:27:50 2024 GMT
Not After : Jul 31 07:27:50 2034 GMT
Subject: CN=66a0acf9-f746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:a5:f2:e6:7c:4f:f1:67:a1:ee:35:44:fa:
82:f5:75:4a:2a:a6:c0:44:85:c7:d7:a4:fb:07:e0:
7d:c8:ac:ec:4c:11:9f:be:2c:34:22:67:83:62:73:
8b:ba:ac:a8:fe:25:4b:f3:f0:0b:a0:b5:b2:41:0f:
a5:d3:13:9e:55:80:db:ab:61:e8:3c:6d:80:5b:6e:
d7:7b:de:c5:b5:32:de:0b:b3:9c:5b:4a:ef:9b:2d:
75:08:ed:3c:ae:59:21:b5:d6:ff:1e:1c:b9:92:78:
88:bf:a7:ef:d2:f8:aa:3d:a9:1e:50:ad:f7:65:e3:
48:01:11:36:de:08:30:d6:a2:cf:3d:16:3c:38:26:
03:e8:be:61:4b:da:72:f2:6a:a9:de:eb:46:69:4b:
5b:d4:81:2a:43:65:78:a6:a4:75:ce:3f:bf:63:76:
af:09:be:52:26:56:e5:c2:c3:bd:50:0a:ba:07:04:
28:1e:01:0d:09:ca:fd:6f:9c:28:1c:25:97:50:5c:
77:a4:4f:c2:ea:ec:8f:9b:f2:34:d3:bf:45:57:d0:
f4:45:c0:d6:49:ba:1d:8e:24:df:9c:91:79:cd:fe:
50:88:24:f9:35:ab:87:68:3e:1a:c2:c5:2f:25:f1:
6c:50:62:ff:2a:42:1a:8a:50:86:0f:1c:4d:6d:52:
25:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:32:D1:EA:96:8C:75:CB:55:10:99:85:A7:AA:E5:8D:D6:89:14:32
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/3D3E31C6498E11EFBB02DB76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.152.0/21
Signature Algorithm: sha256WithRSAEncryption
72:0e:b2:97:65:bc:9b:d8:42:dd:88:b9:c9:d2:62:93:c3:8a:
1e:61:3f:c8:0b:b8:25:53:d8:03:38:08:bd:28:07:57:78:8d:
bc:62:ec:bd:41:28:1b:0d:50:99:9c:ee:92:36:fa:31:60:58:
c1:af:98:fc:68:af:45:fd:c0:b1:71:32:18:66:b5:20:9b:3a:
71:82:6a:40:b1:18:85:89:55:31:11:92:39:d1:41:a7:00:ab:
01:c3:ac:cb:ed:fd:25:60:85:4b:29:c5:5c:21:16:4c:32:a8:
93:80:91:c3:95:7a:9d:96:bb:84:40:fb:6c:02:49:f0:e7:20:
59:7b:e3:bc:e3:68:fd:3c:5d:06:ba:d5:b7:b7:75:9d:4e:92:
1c:64:e7:85:8b:6f:dd:04:06:d3:c4:88:7c:dd:98:77:4d:59:
f7:be:79:50:e7:a2:ab:22:f6:15:32:ee:4c:eb:30:98:eb:44:
7a:7b:96:18:2c:8f:b1:75:80:30:d2:ca:90:56:16:78:cd:44:
9b:ef:b3:d6:51:a1:07:82:cc:9a:dd:89:35:a6:40:57:df:1a:
f5:34:47:24:55:57:39:a1:4f:d4:d9:89:ff:47:46:6a:ad:98:
3b:23:90:04:30:ab:fa:53:35:4f:95:f7:25:3e:9e:44:ee:af:
4e:9c:8f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org