Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E2508EF0216811EFAE69D2047DDC24C2.roa
File: E2508EF0216811EFAE69D2047DDC24C2.roa (raw, json)
Hash identifier: +d1lZthDDgWXzpp9t9wep4/UCQeV5PqY4q6qmeSb/0E=
Subject key identifier: F2:F9:91:99:CD:00:01:B8:75:15:84:28:AE:41:74:8D:69:6D:0B:C4
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 018E
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E2508EF0216811EFAE69D2047DDC24C2.roa
Signing time: Mon 03 Jun 2024 05:19:43 +0000
ROA not before: Mon 03 Jun 2024 05:19:40 +0000
ROA not after: Tue 01 Jan 2030 05:19:40 +0000
asID: 37684
IP address blocks: 41.242.0.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398 (0x18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 3 05:19:40 2024 GMT
Not After : Jan 1 05:19:40 2030 GMT
Subject: CN=665d526f-fd33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a8:5c:f3:97:b0:c4:6a:51:c0:a1:36:7c:3d:
bb:27:d2:fe:e5:29:55:38:8a:cb:7f:30:1e:93:04:
19:de:02:bf:1e:c0:77:d4:36:15:dd:4b:b2:77:d5:
d5:69:df:e4:b4:52:a6:87:c6:30:2c:57:eb:fd:68:
51:0b:4c:44:7d:fc:db:4b:a6:69:0f:2f:19:8d:c9:
d9:ae:87:5c:4b:40:72:62:4b:27:fd:9e:73:f5:cd:
12:47:32:7c:a5:53:7f:7d:29:f2:3d:f2:82:af:6f:
fc:e5:e4:84:2b:a1:34:47:64:dc:4b:8f:47:75:5f:
de:70:f1:03:ae:39:69:1a:86:c6:88:df:d6:3c:b9:
33:f1:67:d3:7a:22:6f:02:02:4f:86:1b:f6:29:fe:
0f:9a:58:ed:e6:08:8c:d1:b7:9e:42:e6:3f:d3:45:
de:de:b2:d7:ad:e9:a4:30:9e:79:65:f4:f7:23:97:
1b:e9:f1:59:93:fd:53:f1:b3:9a:8c:6c:71:79:68:
49:d8:b4:c6:02:6c:88:0f:bd:5e:dc:af:74:22:74:
cf:01:6d:97:16:5d:8e:d8:93:ff:2e:f1:aa:15:b2:
bc:c1:52:b5:0d:4e:49:9a:f1:5d:ff:54:5c:29:62:
74:ea:e0:a4:a2:45:f1:14:3e:05:01:58:8a:83:9b:
99:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F9:91:99:CD:00:01:B8:75:15:84:28:AE:41:74:8D:69:6D:0B:C4
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E2508EF0216811EFAE69D2047DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.0.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:58:ad:d6:e2:66:04:ee:86:10:8d:d3:b8:3f:a2:2c:97:0c:
6d:f4:af:49:c8:44:db:49:a1:c9:f5:95:67:ec:38:6e:46:a6:
5a:2b:3d:93:33:4f:9e:fc:e9:a9:c6:02:43:36:27:f9:40:9d:
1e:d7:9b:13:ab:88:2d:71:50:68:ca:b4:78:27:4c:7b:5b:27:
a7:85:d2:a2:c1:24:05:3e:02:0d:e2:da:bb:be:93:d6:44:a1:
75:bb:2d:81:67:cf:fb:0a:96:76:c1:ec:23:5c:74:12:6d:6c:
77:ca:8c:b2:dd:79:cd:a6:18:1d:be:05:0c:98:78:9e:ed:9b:
4b:f4:da:e9:ad:a2:e4:e7:46:c8:04:96:85:f9:11:78:fd:ba:
72:1b:f4:6d:21:a6:38:74:91:e7:c0:56:0c:58:ee:69:9b:3f:
1b:80:0b:e0:af:3b:46:3f:36:d6:bd:56:c7:f6:0d:4b:f6:be:
5e:62:2f:6e:52:5f:c3:cc:43:25:e1:e3:af:d6:7a:76:ae:6c:
b5:77:fe:e3:7b:f2:dd:02:ba:f8:f0:8d:b2:9e:97:5c:33:46:
a4:1b:0b:63:0f:bb:88:8f:e6:ff:41:fa:7a:c5:69:78:ca:2a:
83:ea:83:b5:bd:6c:77:4a:56:92:b2:31:ed:96:4f:40:da:97:
65:30:55:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 04:04:20 2024 by rpki-client on console-fra.rpki-client.org