Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A2D13DF841E211EE8413814F4AD9E6FC.roa
File: A2D13DF841E211EE8413814F4AD9E6FC.roa (raw, json)
Hash identifier: +7tV3cQty0a49mDJHI575oP8uB6zRrZwyEYtIFBv8tA=
Subject key identifier: 6F:52:37:F1:FC:9B:A0:CD:5B:96:F0:F6:09:DA:99:DC:0D:C5:9F:A2
Certificate issuer: /CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Certificate serial: 0F
Authority key identifier: 5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A2D13DF841E211EE8413814F4AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:26:54 +0000
ROA not before: Wed 23 Aug 2023 18:26:51 +0000
ROA not after: Tue 23 Aug 2033 18:26:51 +0000
asID: 29614
IP address blocks: 41.210.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.mft
rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Validity
Not Before: Aug 23 18:26:51 2023 GMT
Not After : Aug 23 18:26:51 2033 GMT
Subject: CN=64e64f6e-7a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:86:fb:0a:ac:1f:4f:08:a0:20:e2:01:0a:06:
52:96:3b:46:06:38:bd:05:a6:33:9f:cc:0b:e8:2b:
87:45:0c:9f:14:9c:6e:57:5e:11:bb:fd:7d:ff:c6:
1e:0b:48:56:3f:1c:9d:e2:99:1a:8d:2e:e0:08:28:
5e:7f:af:37:7b:97:46:eb:7c:d5:0a:fe:78:46:f3:
94:02:d8:21:3e:9c:eb:50:9e:07:ce:0d:66:37:f8:
29:a8:41:3e:32:8e:88:dd:68:c5:2c:51:bf:32:ec:
35:be:61:17:03:68:c5:89:ae:b0:8c:aa:89:91:6e:
cc:99:3f:56:8a:b4:f8:5e:cd:70:a7:72:4f:af:5c:
51:9e:88:d5:31:ef:bb:40:06:5f:48:df:6b:fd:18:
d9:d3:49:e7:bc:f7:74:1b:76:6b:f4:d3:02:d3:78:
e2:93:a5:57:07:7c:a4:f4:ca:08:ab:9f:1a:20:d5:
8e:2f:b8:6d:63:01:fc:b5:12:ae:ff:cf:f1:56:be:
8f:0a:48:45:57:37:66:48:c9:89:9d:55:6d:09:4e:
0e:02:0c:a4:d9:87:10:87:7e:13:ef:bc:81:7e:a7:
6d:42:bf:4b:0b:f6:67:1c:76:a5:1e:01:db:df:1c:
36:0f:83:7c:64:9a:e9:01:3a:df:ae:42:c5:65:02:
c6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:52:37:F1:FC:9B:A0:CD:5B:96:F0:F6:09:DA:99:DC:0D:C5:9F:A2
X509v3 Authority Key Identifier:
keyid:5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A2D13DF841E211EE8413814F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.210.0.0/19
Signature Algorithm: sha256WithRSAEncryption
80:bf:e0:18:82:44:f8:22:15:c7:24:30:7a:d4:f6:82:45:c1:
df:d4:0c:64:d6:9a:1c:97:e5:c9:d6:6c:10:78:c1:cd:27:46:
f2:b1:32:4b:5c:34:d7:2f:3c:71:b1:c7:39:c5:e1:51:50:2f:
34:de:46:ef:fa:65:77:7a:13:32:ba:1c:f4:54:df:d6:35:f2:
a8:b9:31:e1:88:95:25:8c:ed:8b:31:96:48:ee:57:f3:6b:b4:
9f:52:ee:1d:cf:58:8c:b3:21:70:3b:14:ed:a6:67:de:02:a3:
cb:96:a0:fe:35:7a:27:0c:a5:74:3a:da:4b:9b:ff:85:a2:fe:
10:43:37:a7:75:7a:e3:8d:e4:33:d2:b6:3c:99:36:92:30:61:
6a:94:14:9c:99:8c:3a:21:1e:36:ca:44:99:3d:8e:3c:43:44:
a1:8e:21:d1:51:99:79:57:39:5b:98:ca:86:6d:77:c0:c2:5a:
4b:8c:7e:e9:0d:41:d2:26:64:cc:2c:bc:32:31:09:31:00:d2:
20:53:41:45:fe:14:dc:52:2f:e9:67:78:25:06:3f:10:cf:9b:
26:4a:df:1f:b7:b2:52:16:68:4b:dc:25:67:1f:08:a8:bc:9d:
7a:9d:e0:08:53:7f:08:f8:c1:97:3e:9e:f8:98:44:c5:0c:3d:
61:87:28:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org