Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5F34A6C2DE7D11EBBAC31B64F8AEA228.roa
File: 5F34A6C2DE7D11EBBAC31B64F8AEA228.roa (raw, json)
Hash identifier: MWk8EFTOF3/10HYUuFgbnJ/fqlc/s+3SXXavsJ4h6cE=
Subject key identifier: 5E:67:4B:90:62:87:B1:7A:52:25:F5:2A:A2:7B:AE:19:B4:6D:55:51
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 08F0
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5F34A6C2DE7D11EBBAC31B64F8AEA228.roa
Signing time: Tue 06 Jul 2021 17:12:41 +0000
ROA not before: Tue 06 Jul 2021 17:12:38 +0000
ROA not after: Wed 31 Dec 2031 17:12:38 +0000
asID: 32653
IP address blocks: 41.77.158.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 00:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2288 (0x8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Jul 6 17:12:38 2021 GMT
Not After : Dec 31 17:12:38 2031 GMT
Subject: CN=60e48f09-0aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a9:3b:01:51:3e:42:59:13:a1:dc:f2:6e:15:
1b:3e:ef:8c:34:12:22:f8:d4:e5:53:73:c5:bc:09:
65:96:7f:e4:03:2e:fe:17:cf:7b:f7:0a:6c:9e:f9:
4e:9c:85:fa:92:61:09:de:f4:59:60:f7:5c:89:ca:
f7:0a:bf:a6:c3:2c:5d:01:e4:fd:7c:df:4d:7e:69:
c8:aa:ab:6b:ac:14:47:ec:c6:b4:86:6e:da:ed:23:
a4:47:a6:ea:c3:0e:0f:e9:51:fa:34:a1:de:01:f8:
14:27:50:fe:ef:c4:53:52:76:b8:64:10:0f:45:38:
be:b5:c7:31:7d:de:fe:27:c0:f4:ca:29:4a:da:48:
e5:5e:d9:f4:44:81:f0:7e:1c:c8:98:b9:d6:6b:5e:
f3:9c:09:2f:d9:51:ca:83:0f:d0:a1:94:3e:0b:61:
fc:92:e7:d8:16:11:f4:1b:31:7a:8c:ff:81:07:81:
96:58:81:41:8c:e5:c1:b8:5c:6e:52:9a:0b:05:23:
fb:03:27:32:f4:50:0a:b2:6d:a6:6b:03:b6:e5:f6:
1c:cd:31:90:6c:8b:dd:de:19:f0:2c:d9:f7:29:d1:
8e:99:d3:01:ac:de:8f:6c:e9:ec:3e:90:30:8d:c6:
4d:02:8c:ae:8a:56:66:d2:2f:76:83:60:0a:0d:cb:
ea:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:67:4B:90:62:87:B1:7A:52:25:F5:2A:A2:7B:AE:19:B4:6D:55:51
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5F34A6C2DE7D11EBBAC31B64F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.158.0/23
Signature Algorithm: sha256WithRSAEncryption
85:44:fb:73:ed:b1:0b:98:e6:0f:19:fb:32:49:c9:5f:4b:11:
2b:34:70:ad:ae:ca:d0:63:9b:4c:b8:c6:25:53:62:d7:2e:fc:
78:5e:34:c7:18:1d:47:83:79:38:be:af:f7:50:bd:38:d2:e4:
72:fe:3c:9c:f5:9c:2f:29:d2:33:57:f8:6d:22:7d:1c:66:24:
06:bd:fd:a1:4d:af:90:a3:08:b3:bc:75:e6:11:3b:18:54:95:
98:9f:a8:1d:fa:31:f6:d5:c1:af:c4:01:f4:ce:df:6c:b8:ea:
68:69:e5:12:19:45:7b:20:28:53:a7:e9:cf:74:cd:3b:95:c8:
a5:20:15:eb:f8:fd:c4:4a:99:7c:67:90:b3:fc:79:9b:95:0a:
bf:50:52:d4:ea:4b:aa:7b:5b:e5:11:49:f6:46:94:07:b8:c0:
43:c9:10:b9:1e:12:ce:d0:94:0e:de:b5:89:c2:c9:71:b9:e9:
21:7d:81:eb:1d:6c:4b:70:80:3a:d8:18:a9:a6:77:82:70:5a:
96:e2:1f:2e:9f:3f:84:c8:00:81:ea:34:4d:ac:ec:4f:d1:bc:
0e:d2:7e:d1:57:c5:4f:a5:3b:b8:00:3e:1e:1c:f2:80:0d:c7:
d1:6c:e9:c6:be:69:c4:a2:84:3a:b6:33:a6:91:e0:48:6b:1f:
ac:cb:2e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:16:40 2024 by rpki-client on console-fra.rpki-client.org