Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/D265FEDE0BCA11EF917FA0F3007001B1.roa
File: D265FEDE0BCA11EF917FA0F3007001B1.roa (raw, json)
Hash identifier: JnlsXUtJ6yRPF3xH5RBfKSof1yPWn25dJe2aCkd3Tug=
Subject key identifier: 6E:E3:80:F4:B9:F0:90:BA:34:7F:A6:D6:EE:0B:2C:94:0C:7D:8C:DF
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: BC
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/D265FEDE0BCA11EF917FA0F3007001B1.roa
Signing time: Mon 06 May 2024 17:05:21 +0000
ROA not before: Mon 06 May 2024 17:05:18 +0000
ROA not after: Thu 31 Dec 2026 17:05:18 +0000
asID: 36912
IP address blocks: 41.202.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188 (0xbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: May 6 17:05:18 2024 GMT
Not After : Dec 31 17:05:18 2026 GMT
Subject: CN=66390dd1-cec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:12:d4:b4:05:8a:bf:1a:24:ee:ec:14:22:
75:8f:a5:b0:b4:30:0c:14:46:e6:c1:87:b0:6c:81:
4d:a8:20:92:b5:ae:b0:e2:59:bb:41:59:0f:ab:a2:
71:12:9b:9b:da:7d:c8:a4:91:ab:a1:01:63:5b:9f:
12:5e:46:f9:5e:b4:dc:c0:1d:9b:be:21:eb:0c:d3:
60:ba:8a:91:26:24:f6:45:88:51:d9:51:47:32:cd:
01:e7:65:a4:a1:9b:26:0f:63:2b:78:7c:39:c9:79:
a1:3f:08:13:d1:75:da:5b:ba:dd:16:1d:36:8b:39:
28:bc:7a:14:ee:f7:50:24:0a:b5:94:14:7b:37:4a:
c1:e4:01:d2:62:4b:8d:35:1f:2f:a3:ab:73:4b:8f:
7b:50:e8:39:a9:9d:0c:ba:c3:dd:7d:ea:82:85:67:
95:f0:73:52:86:ad:57:ed:91:91:f7:0a:14:93:ef:
b3:7c:19:66:eb:80:19:46:2a:e6:e8:4e:41:1a:e5:
fd:bf:5f:a2:40:25:d8:f1:d5:46:17:86:1e:02:11:
57:b1:67:ce:d9:57:5e:bc:a6:f3:aa:a4:e6:e4:2b:
34:15:1e:fa:5f:de:c0:03:8b:70:d1:de:e8:7c:da:
06:5c:16:d3:ed:51:90:e7:5c:22:86:74:c4:15:70:
1f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E3:80:F4:B9:F0:90:BA:34:7F:A6:D6:EE:0B:2C:94:0C:7D:8C:DF
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/D265FEDE0BCA11EF917FA0F3007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.202.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:1d:43:58:73:c0:2c:46:46:44:ab:69:0c:5b:6c:67:98:20:
c0:bc:a6:e3:fe:37:19:b5:63:fe:22:3f:98:cc:9f:69:98:19:
40:61:1f:f7:98:c3:ec:5c:38:73:3b:42:a7:70:1a:51:1f:87:
c8:c9:3d:e8:2d:ba:86:1e:99:ac:3b:17:a0:88:06:c5:af:a2:
82:35:a0:88:ea:0e:ed:46:f6:c9:45:34:69:4e:92:46:4d:fb:
c6:93:e1:24:80:30:c3:bd:87:8b:3b:e1:25:54:87:55:de:77:
b1:28:89:d5:7c:72:33:09:78:b3:b9:98:36:85:58:30:81:a4:
6e:5a:29:4c:64:35:85:35:63:17:f6:cc:56:bf:f2:6e:b2:e2:
24:e1:59:4b:c9:7d:41:63:f4:7b:c1:64:f6:9f:3d:86:45:32:
a4:a8:99:58:0a:0f:1e:6c:da:1c:df:68:92:4e:01:55:5c:99:
6a:4f:4b:ad:03:8d:7a:32:5a:fe:cd:7d:f1:54:27:02:ce:f1:
56:77:68:c9:29:68:3a:ac:23:ae:11:57:59:9b:80:27:f2:11:
9c:71:89:da:4b:aa:d7:60:cd:28:19:29:ac:26:5c:9a:7b:f4:
b2:46:0d:c5:51:d3:9b:c3:50:0e:79:ef:16:30:12:da:11:3b:
19:fa:77:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:44 2024 by rpki-client on console-ams.rpki-client.org