Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/0EF37AD45BDA11EF9E5BF670762E951A.roa
File: 0EF37AD45BDA11EF9E5BF670762E951A.roa (raw, json)
Hash identifier: 51koAiGBT4Qlz96Il2OYaGj869PU6MSFeqlPyjHqg1Q=
Subject key identifier: 9E:92:7F:08:E9:33:23:E6:23:99:BD:BD:4C:BD:8F:AD:D9:2D:C0:FE
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 0131
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/0EF37AD45BDA11EF9E5BF670762E951A.roa
Signing time: Fri 16 Aug 2024 14:15:58 +0000
ROA not before: Fri 16 Aug 2024 14:15:55 +0000
ROA not after: Thu 31 Dec 2026 14:15:55 +0000
asID: 36912
IP address blocks: 41.202.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305 (0x131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Aug 16 14:15:55 2024 GMT
Not After : Dec 31 14:15:55 2026 GMT
Subject: CN=66bf5f1e-a1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:b2:12:87:43:fb:95:d6:0b:bf:1b:c6:73:
88:35:d5:19:f2:b3:71:20:9b:e4:f0:82:c4:90:95:
62:92:16:dd:93:f2:e0:49:f3:a6:97:a1:9d:1c:1e:
6d:4a:1b:b7:01:a5:55:2e:af:2b:67:06:eb:60:08:
5f:1c:74:8f:f5:9a:d3:12:ec:c9:bb:41:91:8a:5d:
1f:24:55:ab:f7:1f:78:00:d2:35:ef:f1:05:9f:d6:
d8:ba:d6:09:63:7e:71:4c:9f:8a:28:52:9c:cf:d1:
90:10:f7:b5:5f:d1:a6:6a:62:b6:26:6d:96:ca:63:
5b:32:c8:39:7e:66:f0:ab:61:94:ee:24:dd:9d:86:
b8:c3:36:ac:f3:07:14:f5:44:ed:bc:c4:51:91:0e:
8f:34:4e:01:39:ab:a4:38:d3:bc:1a:22:80:37:f9:
f9:32:97:6c:1e:e2:1e:74:c1:e7:f9:58:a4:fe:a3:
e6:0d:fd:84:09:c2:1b:24:f8:ad:02:e1:2b:39:94:
2d:56:67:07:40:fe:e0:b7:c2:d2:0e:38:b4:00:6e:
cf:98:3e:35:64:3c:c4:fa:26:52:35:8a:67:d8:ab:
4a:79:57:f4:ca:58:4b:40:bc:69:05:01:74:59:94:
79:c0:c1:09:e0:eb:7c:a9:e7:5c:62:40:a8:99:c1:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:92:7F:08:E9:33:23:E6:23:99:BD:BD:4C:BD:8F:AD:D9:2D:C0:FE
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/0EF37AD45BDA11EF9E5BF670762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.202.219.0/24
Signature Algorithm: sha256WithRSAEncryption
72:21:f1:f2:50:3d:10:41:cf:5c:4b:50:1f:5c:ba:e2:44:58:
f1:93:f3:d5:96:41:54:e8:54:22:88:0f:ce:a6:81:a3:23:97:
60:ee:f0:21:46:1d:86:8e:5f:03:44:9f:74:54:41:95:11:e4:
03:85:50:d1:da:b5:15:07:a7:09:d3:92:cb:11:4f:a2:e8:7e:
c9:25:da:fe:ba:a1:61:44:eb:52:61:b4:66:1b:7b:16:91:f9:
c4:5a:8a:b3:87:3c:5a:9e:2a:96:76:8e:d4:fb:79:80:46:57:
44:23:f4:22:af:61:37:52:a6:b9:bb:bd:3b:01:b2:72:80:7e:
69:0e:ed:39:dd:06:ed:ff:d1:1b:00:93:19:7a:2b:3f:e1:2c:
ef:6e:33:97:da:dd:a7:c2:f8:3a:bd:5c:8d:5f:15:98:91:35:
da:cb:2d:04:2e:4c:92:7b:2a:82:e9:55:71:d0:b1:10:fb:a3:
42:5a:a2:69:0b:76:05:df:05:df:20:fe:ad:c2:ac:41:ba:cf:
61:cd:c9:6f:02:9b:ca:56:62:c6:ab:88:4d:d8:a0:62:b4:14:
85:88:da:fb:55:d0:47:c2:24:bf:7c:72:59:ed:40:31:ce:28:
c3:61:46:5f:07:c3:01:67:7e:65:2e:ea:e6:b8:80:de:78:2e:
b2:54:f6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:40 2024 by rpki-client on console-fra.rpki-client.org