Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/4950982841E211EE8834944E4AD9E6FC.roa
File: 4950982841E211EE8834944E4AD9E6FC.roa (raw, json)
Hash identifier: 3xpGJMGpfFtuBh/X+DB86zB83LJuJIk3NmjOA6Pr8VU=
Subject key identifier: 42:DC:87:A3:47:6E:83:11:82:B8:E8:25:D7:78:8A:A1:0F:62:FC:E3
Certificate issuer: /CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Certificate serial: 0D
Authority key identifier: 5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/4950982841E211EE8834944E4AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:24:24 +0000
ROA not before: Wed 23 Aug 2023 18:24:21 +0000
ROA not after: Tue 23 Aug 2033 18:24:21 +0000
asID: 29614
IP address blocks: 41.218.192.0/20 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.mft
rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 30 Jun 2024 00:05:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Validity
Not Before: Aug 23 18:24:21 2023 GMT
Not After : Aug 23 18:24:21 2033 GMT
Subject: CN=64e64ed8-14d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c7:26:01:ce:cb:98:39:06:74:19:6a:4b:32:
25:9b:e0:1b:ae:ec:a8:ac:0a:ad:a7:bb:db:ab:64:
ed:7f:52:d5:62:d0:c2:08:96:71:e2:aa:81:17:ba:
8c:df:a9:6e:3c:77:b0:10:fc:96:59:66:39:e0:f5:
e0:10:64:7d:72:3b:a6:4b:3e:35:02:31:07:ba:1b:
5b:d0:1f:34:94:fe:67:08:3b:c9:b8:5d:2a:16:60:
d6:39:3d:f2:c5:ea:8b:c6:22:db:83:5c:cb:68:89:
61:dc:2a:ca:9a:66:64:64:00:ff:e1:3f:43:42:86:
4e:de:d1:7a:86:38:24:ca:a8:0b:4f:2c:05:9b:33:
9f:0b:06:c8:7e:55:b7:ba:7b:43:61:75:95:a4:df:
46:7a:80:0c:4c:c3:7b:c0:c4:18:17:dd:a0:d1:2a:
3c:d4:58:6f:69:28:0a:bd:2a:c0:5f:77:7a:c5:e2:
0d:b5:a0:f2:e0:4d:00:14:07:dc:88:bb:6f:0c:37:
8f:ed:21:bc:f2:73:19:57:6f:26:3b:dc:6f:60:5b:
7b:77:dd:4d:40:ef:b2:7e:70:d4:23:8d:5b:8d:59:
c2:c3:c5:54:01:12:e4:ae:bc:bc:a8:84:86:f5:3f:
49:d8:a2:6e:ff:a2:04:8f:da:e9:9f:48:0c:c2:6d:
af:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DC:87:A3:47:6E:83:11:82:B8:E8:25:D7:78:8A:A1:0F:62:FC:E3
X509v3 Authority Key Identifier:
keyid:5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/4950982841E211EE8834944E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.192.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:4a:ef:c5:21:ca:c6:e0:b6:92:47:a6:ff:e4:83:62:26:17:
43:5b:87:6a:38:64:2e:80:fc:81:91:26:c1:d2:71:1c:14:d3:
df:c9:86:31:03:bc:32:71:41:74:06:af:f7:f5:92:58:0e:7b:
af:b1:2b:9c:29:64:29:f0:ef:6e:46:92:32:c2:70:06:43:1b:
2c:be:25:5c:4e:5c:ce:6d:ca:61:57:20:79:ff:54:58:a1:9b:
12:cd:2f:17:98:b6:be:f0:23:16:7f:f3:01:24:4e:4e:f4:90:
fa:fe:05:76:83:22:7c:b5:12:71:23:2d:f7:be:96:3d:b9:d8:
96:30:aa:d2:07:d9:82:eb:37:e3:a5:39:e4:0f:d2:3a:92:63:
39:60:3c:49:0b:d7:31:84:18:2c:1f:58:78:5c:92:1d:2b:a2:
0e:ad:d1:79:6f:51:4d:04:98:78:82:7d:ce:a6:3d:73:c9:a6:
88:da:33:25:44:c2:2e:c8:8c:3d:90:d8:7b:4e:b7:2f:b9:ec:
3b:7e:c5:27:af:f8:58:06:87:d1:2c:1c:0d:7f:d4:66:31:ae:
94:95:86:d1:d9:b8:94:db:06:2d:f1:5d:ff:8f:fa:3c:04:75:
e5:36:4f:1b:8a:0f:14:04:1b:77:25:29:92:0b:34:8d:1a:23:
bd:ba:91:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 03:15:19 2024 by rpki-client on console-fra.rpki-client.org