Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/8A675A6A216911EFA20C79097DDC24C2.roa
File: 8A675A6A216911EFA20C79097DDC24C2.roa (raw, json)
Hash identifier: yTfQ67chD1jSLhE+T2mU2SumVlLVpCyW/SllRT06N5k=
Subject key identifier: C7:D0:D8:8D:0B:37:92:FD:97:55:92:74:E7:E0:BD:97:9F:6B:71:3A
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 0194
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/8A675A6A216911EFA20C79097DDC24C2.roa
Signing time: Mon 03 Jun 2024 05:24:25 +0000
ROA not before: Mon 03 Jun 2024 05:24:21 +0000
ROA not after: Tue 01 Jan 2030 05:24:21 +0000
asID: 37684
IP address blocks: 41.242.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 29 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404 (0x194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 3 05:24:21 2024 GMT
Not After : Jan 1 05:24:21 2030 GMT
Subject: CN=665d5389-c40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:9d:c2:07:5d:b0:33:bc:27:dd:70:2a:1f:
48:4d:fa:d0:80:5e:85:fd:c0:60:08:9e:79:96:e5:
5e:6a:ad:4f:9c:be:73:ae:8a:90:cf:5e:33:ba:a8:
bc:87:75:78:8b:b8:f7:a1:0e:32:71:6a:6f:5e:0f:
fd:0e:63:96:a6:db:76:cc:ba:25:4a:fa:86:bb:1f:
1d:68:73:d5:5e:3c:9c:9a:ac:93:a3:90:70:fe:44:
fe:fb:49:9a:41:53:7a:95:78:20:45:19:84:87:8f:
f1:40:11:57:93:d0:d4:81:20:e4:d6:3d:8d:b8:45:
04:62:fb:b1:55:14:7f:3c:10:90:15:2e:45:12:7a:
2d:a0:5f:72:66:17:2d:ca:a0:d7:24:f9:e9:a7:b9:
ba:39:06:32:68:cc:b8:46:fd:e3:42:80:f1:1c:a4:
f0:e8:6d:e5:8e:73:4e:ec:29:c3:ee:c2:8b:a5:bc:
7b:fc:0c:20:78:a6:93:3c:7c:64:0e:ef:5f:e1:68:
cd:28:79:a3:66:be:dd:24:c5:cd:b1:96:13:86:b9:
92:32:80:cc:99:be:23:6a:a1:98:be:38:7b:ea:44:
41:e0:cc:d1:6a:ea:98:b1:8a:c1:9a:b5:ec:01:ad:
f4:90:a3:f2:ed:96:15:43:bd:67:1a:d2:b7:4e:14:
7b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D0:D8:8D:0B:37:92:FD:97:55:92:74:E7:E0:BD:97:9F:6B:71:3A
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/8A675A6A216911EFA20C79097DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:53:55:58:8c:0b:2c:b3:be:70:f8:45:b3:cc:e7:d7:53:21:
3f:72:b5:a6:d8:25:2a:df:7b:9e:07:01:a8:bf:4e:73:b9:c9:
19:f1:47:7f:58:e0:4e:03:49:bc:cb:33:bb:f9:ad:85:3d:d4:
8b:af:ae:7f:cc:4b:69:f8:e5:31:2f:91:3e:f8:b5:cd:91:83:
fc:e8:fc:19:b3:5a:9e:e5:c8:aa:c2:68:1a:93:26:ad:d9:b1:
ec:b6:08:e0:65:04:1f:53:4f:07:fc:63:c9:8f:62:b3:3b:30:
a5:d2:58:8e:44:30:0a:09:90:0b:42:17:c5:48:9a:b9:99:2a:
74:47:d4:11:dc:b8:6c:da:8d:d0:69:bd:82:58:3f:41:30:48:
92:f6:89:09:0f:70:85:09:c8:46:73:b4:d1:63:30:bf:32:6b:
51:a7:6f:6b:69:b6:1e:7f:ad:cb:c7:1d:18:de:dc:14:84:ec:
b5:b6:5a:da:c8:e6:40:c7:00:ea:2e:a0:29:91:1d:5a:15:2a:
f7:b9:5b:b4:89:fd:7b:39:a2:cf:4c:a6:55:8e:d0:05:9c:cf:
53:81:75:f8:19:e2:d6:03:0b:11:7a:f5:8f:ab:59:40:e9:53:
c6:4a:9a:93:96:cf:d5:12:b7:25:f1:8b:93:5e:1c:cb:fb:aa:
43:c5:c2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 03:28:33 2024 by rpki-client on console-ams.rpki-client.org