Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E39CBE6C0B6D11EEAFC6732C4AD9E6FC.roa
File: E39CBE6C0B6D11EEAFC6732C4AD9E6FC.roa (raw, json)
Hash identifier: Z/93cmGAN9OIGZMDU9Y698Bt0VToslG6bvT0Jr4ZDHs=
Subject key identifier: ED:7B:BD:6A:CC:59:BC:87:FD:1C:BF:DD:10:E0:47:1A:77:F0:0A:F7
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 0C
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E39CBE6C0B6D11EEAFC6732C4AD9E6FC.roa
Signing time: Thu 15 Jun 2023 11:15:09 +0000
ROA not before: Thu 15 Jun 2023 11:15:05 +0000
ROA not after: Sat 15 Jun 2024 11:15:05 +0000
asID: 37684
IP address blocks: 41.242.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 15 11:15:05 2023 GMT
Not After : Jun 15 11:15:05 2024 GMT
Subject: CN=648af2bd-4ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a5:49:fa:3e:05:e7:a3:1c:d3:55:27:e1:cc:
bf:f0:25:51:f4:6e:6e:6b:b7:5d:ac:75:f5:9e:9d:
68:e6:cf:62:34:c0:9d:4c:96:98:87:85:04:ec:9a:
49:50:ca:d8:b1:2b:dd:17:c5:0f:3e:6f:12:5a:10:
ce:bb:e5:d1:f9:54:35:9d:b2:ba:7c:91:5d:6b:e5:
2c:f4:b3:bd:46:df:ec:52:e0:ff:ac:e4:6f:19:a7:
10:69:17:71:08:dc:b7:34:a8:71:bc:1f:e4:6e:32:
5e:18:44:66:45:e0:12:61:ec:3f:f5:b1:72:51:a2:
f6:7c:de:0d:47:4a:64:49:1c:d8:79:f3:31:a7:c4:
e4:96:de:70:87:10:4e:b5:51:ff:26:4e:46:43:9e:
98:ef:9e:30:e9:50:f9:5f:f5:c3:05:13:4b:ad:1a:
4d:8f:86:7a:d4:23:51:5b:5e:87:56:f0:50:12:f1:
78:9d:f2:a8:80:ef:80:39:db:9e:0c:71:2b:a9:15:
91:ba:7e:28:15:09:65:75:85:1b:75:d3:94:9e:a6:
e4:23:e3:67:3e:22:d3:a7:7c:18:66:cd:c5:1a:97:
9f:90:6d:28:eb:a0:22:18:2f:59:82:5a:f7:50:18:
b9:64:d2:f9:6d:f2:da:4d:69:8d:71:d7:a1:ee:fc:
82:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7B:BD:6A:CC:59:BC:87:FD:1C:BF:DD:10:E0:47:1A:77:F0:0A:F7
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/E39CBE6C0B6D11EEAFC6732C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d4:67:59:a7:d8:69:3a:72:b7:56:ef:34:39:2f:79:9d:d1:
57:0b:8e:6e:bf:9a:1e:8d:3c:09:e9:ac:b5:aa:dc:55:42:ce:
fd:38:23:c8:72:8a:6c:8d:80:e6:c4:e5:d3:72:75:cc:ce:e1:
59:55:6a:cf:9d:21:24:23:a3:98:66:6a:88:5d:ab:d3:63:1e:
04:63:c6:6c:56:b8:ac:80:28:a1:68:99:6e:89:b4:41:c8:30:
15:ef:fa:a7:d3:21:8d:9c:a7:18:f5:4f:f5:d3:8f:00:a5:46:
82:3c:93:a2:bf:a2:61:60:40:98:ed:04:21:d5:40:bc:71:0f:
3e:cc:e6:c4:1e:e5:12:9e:52:b3:b6:11:b5:24:42:7e:5a:91:
4d:b4:c1:63:3a:78:11:a9:3e:d7:38:9b:36:d2:31:5a:69:f8:
e9:ee:b9:e3:f2:d8:be:71:b8:c9:ea:46:72:01:54:40:68:a2:
db:a0:ee:2e:e3:6c:36:20:ef:5a:c8:70:32:79:48:ec:8e:82:
d0:c5:4e:8d:fe:5d:e4:6f:72:c6:da:d4:80:62:b4:35:53:c4:
60:be:1a:66:9b:14:3b:36:91:93:9d:39:66:43:ad:78:67:e3:
e4:e0:6b:11:01:d5:a2:3b:5b:93:42:d4:05:d8:2e:58:ca:85:
4d:ae:66:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org