Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/67CF4D4AC47A11EBAC1DCB2EF8AEA228.roa
File: 67CF4D4AC47A11EBAC1DCB2EF8AEA228.roa (raw, json)
Hash identifier: itFkoyhCFbkxoKe/6GZZJKhOYtJVGG20wDDeoMWtUpQ=
Subject key identifier: 25:A0:70:F8:4E:F2:E8:63:4D:D6:93:8B:1F:CD:F4:11:1D:5F:E0:45
Certificate issuer: /CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Certificate serial: 029F
Authority key identifier: 68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/67CF4D4AC47A11EBAC1DCB2EF8AEA228.roa
Signing time: Thu 03 Jun 2021 14:45:57 +0000
ROA not before: Thu 03 Jun 2021 14:45:53 +0000
ROA not after: Mon 30 Jun 2031 14:45:53 +0000
asID: 36969
IP address blocks: 41.221.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.mft
rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671 (0x29f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Validity
Not Before: Jun 3 14:45:53 2021 GMT
Not After : Jun 30 14:45:53 2031 GMT
Subject: CN=60b8eb25-ffc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e2:9d:f4:40:8c:24:6e:e8:14:78:21:30:25:
f6:90:40:d5:ca:d9:95:99:57:40:76:cd:1f:0c:0f:
4d:97:25:45:b3:7c:86:41:43:5f:11:b1:b2:6c:1c:
1e:fd:f3:32:8c:c5:14:48:50:0f:c6:ae:7f:0a:c1:
c5:0b:b2:e4:25:34:61:6d:df:75:b4:cd:71:5e:16:
6f:f7:f7:48:f7:d1:d9:6d:cd:d9:22:8e:1d:5f:d4:
2b:96:d9:7a:fb:54:42:8e:8f:cb:c6:01:79:54:36:
3e:fb:d3:c2:84:cd:e7:3f:40:22:3b:c5:76:5d:ca:
c6:5e:26:4d:58:d0:4d:07:10:46:c0:10:cd:6c:11:
1a:55:f0:0c:92:2d:93:cf:8c:ec:a3:7c:20:38:f0:
5c:3e:3d:73:fc:95:ec:61:27:be:f5:83:ae:78:b0:
10:a3:4f:db:ce:f8:95:6c:75:b9:02:7d:02:1c:e0:
3a:85:06:62:0c:d0:0d:90:43:20:ec:fd:ff:e7:c2:
af:73:f6:03:d2:81:69:3f:cd:b3:ae:34:67:20:b8:
3b:0b:4c:40:f3:3c:d6:12:55:21:4f:69:5a:f2:aa:
4e:6e:8c:02:ba:61:35:20:ce:51:c9:c3:a5:02:30:
6b:74:76:98:df:27:5c:29:3e:ee:c5:9c:1a:c1:c7:
e5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A0:70:F8:4E:F2:E8:63:4D:D6:93:8B:1F:CD:F4:11:1D:5F:E0:45
X509v3 Authority Key Identifier:
keyid:68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/67CF4D4AC47A11EBAC1DCB2EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.102.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ae:18:24:d1:b6:59:53:d7:d8:61:8b:68:5d:bb:76:f3:ac:
05:c8:26:09:f2:98:a7:7c:6d:87:a0:d4:a4:cb:eb:f5:45:87:
9c:86:e7:88:39:21:ad:6d:01:06:ad:a0:a1:53:7d:5a:2e:cf:
73:d3:de:c0:61:c7:44:cd:ce:93:45:3f:1b:64:8f:75:b1:cf:
39:d8:ab:f4:55:1e:f5:f4:c5:85:35:77:ba:81:21:00:02:f8:
36:73:8b:41:1c:e7:10:b7:f0:14:f8:7a:06:97:fc:c0:9f:dc:
d2:e9:4e:c4:7f:8b:b4:22:30:5c:d6:e7:23:36:24:f9:5a:2a:
5d:40:7e:e9:4f:41:83:35:20:a3:c7:c6:2d:6c:db:d7:42:49:
00:9f:74:69:87:15:3b:35:3b:9e:c0:43:6a:4f:5b:21:76:9c:
8f:b3:b3:e4:66:df:58:bf:29:58:d0:ae:32:de:00:49:e8:15:
93:da:d5:2c:00:40:76:b5:4a:4c:d5:50:02:2b:3f:db:43:f5:
b3:06:77:a0:13:d3:ad:b3:fc:03:7d:73:bd:bc:9b:4f:38:0a:
89:ae:15:c2:8d:0e:1d:8c:1c:5e:35:f6:5e:91:f9:d8:49:e3:
92:32:bd:78:77:1d:d8:e0:f9:ff:15:9e:5c:be:b4:17:6e:5b:
81:06:fb:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:01:09 2024 by rpki-client on console-ams.rpki-client.org