Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/4F75903E8F9B11EAB3F92A79F8AEA228.roa
File: 4F75903E8F9B11EAB3F92A79F8AEA228.roa (raw, json)
Hash identifier: 4DXiHxGSCbsyOMNhnwXSRwIzqtdpPeRGAU+Vq8d2Sbo=
Subject key identifier: DB:A8:E0:16:F8:F4:62:EB:09:0C:98:55:2C:31:5A:92:87:36:DE:5D
Certificate issuer: /CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Certificate serial: 0106
Authority key identifier: 68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/4F75903E8F9B11EAB3F92A79F8AEA228.roa
Signing time: Wed 06 May 2020 13:13:01 +0000
ROA not before: Wed 06 May 2020 13:12:55 +0000
ROA not after: Fri 31 May 2030 13:12:55 +0000
asID: 36969
IP address blocks: 41.87.0.0/24 maxlen: 24
41.87.1.0/24 maxlen: 24
41.87.2.0/24 maxlen: 24
41.87.3.0/24 maxlen: 24
41.87.4.0/24 maxlen: 24
41.87.5.0/24 maxlen: 24
41.87.6.0/24 maxlen: 24
41.87.7.0/24 maxlen: 24
41.221.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.mft
rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262 (0x106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Validity
Not Before: May 6 13:12:55 2020 GMT
Not After : May 31 13:12:55 2030 GMT
Subject: CN=5eb2b7dc-4ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3a:db:64:7d:40:8a:94:fd:20:0f:e5:e0:84:
11:2d:38:23:e0:05:fa:4f:8b:5f:39:13:e0:d0:d0:
49:53:eb:6a:dd:39:e0:27:89:f0:eb:f8:a9:73:77:
19:37:e0:80:78:b8:3b:fe:d5:5c:ca:9c:04:f8:08:
83:f9:90:35:be:17:6f:49:91:05:b9:18:a0:8d:e1:
06:1c:5c:c2:f2:bb:46:e2:49:47:58:8a:d7:29:e7:
49:0e:ed:17:b4:5b:d3:97:5b:ce:e4:5c:9e:61:d3:
1e:14:03:0f:2e:b8:e0:a9:84:4c:5e:5b:26:9c:6b:
84:f0:e3:a4:fc:de:7c:07:fb:30:3b:28:df:35:d7:
9a:ff:8a:96:10:c3:5c:c5:05:59:e7:9f:fb:d9:90:
c4:5a:9f:50:ef:f2:13:83:cf:61:4c:4a:f1:47:d1:
a6:16:2c:f3:a1:39:85:d5:28:94:1d:b6:33:49:8d:
6f:6e:1e:35:d7:07:f0:8e:9a:bc:37:6a:b2:31:dd:
d4:95:06:14:3f:2c:46:b3:1a:5d:87:aa:8f:1f:4c:
97:0c:f7:ef:cc:2b:2d:9d:b0:c8:40:73:73:8f:20:
e7:81:c6:50:40:e9:eb:ef:33:aa:2a:4f:5a:ae:a7:
7c:3e:d1:4a:33:61:86:57:9f:37:56:58:34:e3:64:
a9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A8:E0:16:F8:F4:62:EB:09:0C:98:55:2C:31:5A:92:87:36:DE:5D
X509v3 Authority Key Identifier:
keyid:68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/4F75903E8F9B11EAB3F92A79F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.87.0.0/21
41.221.100.0/24
Signature Algorithm: sha256WithRSAEncryption
08:bb:05:3f:30:ac:08:79:f3:0a:58:18:1c:ab:be:3e:f3:56:
09:1d:b8:05:74:71:d8:94:bf:04:ae:a7:df:45:2c:4f:40:2b:
ad:f3:7b:35:74:00:3e:25:f5:42:07:2d:86:21:2c:ff:fa:fc:
dd:90:0e:cb:45:e9:d5:ad:49:53:f2:99:60:bf:51:4f:96:e7:
8d:6b:fe:b9:71:6e:27:5e:83:1a:a0:88:6d:78:fd:c5:42:5b:
1e:4e:e2:41:cb:ab:0c:cf:2e:1c:b5:85:15:8b:7b:0c:61:3d:
8a:bf:33:80:5b:37:57:a6:90:97:84:8c:59:7f:0d:28:42:9a:
6e:1d:a0:d8:ff:42:1e:1f:6f:b7:0c:c4:6c:f0:35:e0:8b:f9:
4c:81:d9:ed:92:aa:f2:68:22:60:b7:5a:c7:be:5f:e4:97:59:
bc:f5:48:8e:ee:dd:4c:78:9a:6f:57:e8:cf:c2:7c:93:b7:52:
8e:38:10:b2:c5:12:9a:d2:cf:10:ca:cc:1d:90:e6:8a:18:e4:
4f:8f:e9:8b:99:cc:08:54:5d:48:9b:52:39:3b:f7:23:37:3b:
ef:bb:51:e8:36:7f:b6:c1:59:13:32:ce:79:39:d2:0d:2f:67:
b0:82:16:75:cc:d5:cf:4d:61:01:ae:73:1f:72:84:4f:33:73:
07:bc:14:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org