Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/871CB39E908311EFB927C35C762E951A.roa
File: 871CB39E908311EFB927C35C762E951A.roa (raw, json)
Hash identifier: UjCaqYSwyHcmBwaC/RsQrNi/AriDnDSuYXRuAWn1YVo=
Subject key identifier: 96:04:84:57:73:7E:FE:95:23:F9:A6:85:9C:69:57:1F:B0:7B:F4:31
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 071A
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/871CB39E908311EFB927C35C762E951A.roa
Signing time: Tue 22 Oct 2024 14:40:05 +0000
ROA not before: Wed 23 Oct 2024 14:40:02 +0000
ROA not after: Wed 02 Aug 2034 14:40:02 +0000
asID: 37629
IP address blocks: 41.221.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1818 (0x71a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Oct 23 14:40:02 2024 GMT
Not After : Aug 2 14:40:02 2034 GMT
Subject: CN=6717b945-b85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:c5:68:8e:1d:a2:a9:f2:79:b8:41:b4:3b:
4f:20:b8:fc:11:c6:89:f3:15:3a:9f:9a:2e:96:86:
dc:2e:14:d8:25:c3:9e:fd:a2:ab:d5:c5:9b:a5:71:
ce:75:15:a2:06:c2:43:14:ae:b9:93:60:d1:cb:68:
11:e7:13:a9:a4:db:43:18:0e:b6:65:16:56:04:f7:
30:d6:5f:28:03:f8:01:07:6b:ff:e8:4c:c3:fe:04:
a3:0d:f7:69:60:a0:91:84:29:62:9c:0a:f7:59:24:
ac:9c:2d:b0:a1:36:04:12:69:c7:e9:a0:c5:ad:2a:
a3:2a:50:2d:13:b0:b9:bb:bf:37:e9:49:8c:64:43:
d8:78:f4:3e:38:ea:69:5e:c5:48:54:18:90:12:17:
50:07:0c:ab:2f:80:b6:f9:b8:22:b2:3c:d4:3c:0a:
ca:ca:10:ae:be:c7:72:07:0c:ba:c6:f6:e7:32:75:
a4:a4:65:2d:64:2d:28:62:61:c4:c6:d2:74:44:4d:
5f:c7:b6:3d:ae:14:67:f3:ad:e9:7b:97:79:7e:8b:
22:9e:9e:76:e3:21:9c:f2:67:1e:29:39:61:4b:aa:
23:4c:05:c9:8c:96:52:2e:3c:de:b2:f0:a1:cd:9c:
ef:41:48:b3:0e:52:0f:40:7c:15:77:c3:56:bb:3d:
4d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:04:84:57:73:7E:FE:95:23:F9:A6:85:9C:69:57:1F:B0:7B:F4:31
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/871CB39E908311EFB927C35C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.217.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:56:65:0f:6f:42:b7:83:b6:51:05:3f:31:d4:90:00:fa:42:
6a:5f:6e:88:35:7d:93:92:9c:26:93:1a:5f:92:3e:50:e8:0c:
54:6f:dc:7d:ac:c1:68:a9:22:52:4b:fd:08:ff:c9:ca:67:68:
a3:e9:50:87:e3:52:0c:84:ea:4d:d2:a6:30:7e:4e:52:99:13:
60:c3:e4:01:37:ff:27:a3:7b:f2:33:da:58:8f:eb:b7:08:f7:
35:5a:e5:e8:96:bd:07:14:44:96:74:d6:e1:34:e1:0c:0c:0c:
2c:4b:54:5b:f9:b3:01:6a:96:9d:62:1d:f0:e3:88:f1:f8:a7:
28:73:dd:0e:75:0c:46:9d:0b:34:27:71:62:d4:db:44:05:a2:
9a:7d:ee:63:66:b5:10:c9:01:02:83:f9:e1:c5:1b:3a:a1:47:
57:b9:9c:e5:b7:6d:00:ac:45:7c:44:ec:44:46:38:4a:2a:ea:
07:83:2b:fe:00:4c:ba:f6:5b:53:7e:1b:7a:bf:65:fb:cb:76:
cd:9c:76:13:07:bb:3d:ff:d3:d4:8b:1a:89:1b:39:08:4a:a0:
f4:27:18:18:d2:ea:d1:d0:60:c4:d0:06:d0:24:a9:e4:be:e1:
b2:9e:36:79:8b:2c:01:44:2b:f9:7b:4c:8e:a8:22:d0:4f:1c:
70:5c:a3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 04:57:14 2024 by rpki-client on console-ams.rpki-client.org