Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/AB725E028DE011EE9520701E4AD9E6FC.roa
File: AB725E028DE011EE9520701E4AD9E6FC.roa (raw, json)
Hash identifier: 7fwPCumSJFs34OrhghTo8l+HdWqKbq+1hmCpmK0WZcE=
Subject key identifier: CD:53:5D:7F:F1:D0:8B:BB:39:4F:05:F4:DF:60:B0:AB:70:23:7A:54
Certificate issuer: /CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Certificate serial: 013D
Authority key identifier: 83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/AB725E028DE011EE9520701E4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 11:24:18 +0000
ROA not before: Tue 28 Nov 2023 11:24:15 +0000
ROA not after: Tue 14 Nov 2028 11:24:15 +0000
asID: 37148
IP address blocks: 41.203.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.mft
rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317 (0x13d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Validity
Not Before: Nov 28 11:24:15 2023 GMT
Not After : Nov 14 11:24:15 2028 GMT
Subject: CN=6565cde2-32e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:4c:8e:f8:56:6e:0d:65:8c:cf:10:b3:7b:
4c:31:9f:97:f8:3b:e8:6b:29:db:5d:5f:54:58:f0:
d6:6e:20:80:17:ce:4a:3b:2d:65:f8:db:6a:c5:70:
5b:0e:28:5c:08:76:92:0e:c0:f8:c4:5d:27:da:89:
61:b2:03:ec:9b:52:c2:95:25:de:99:c9:6b:7d:f9:
6c:ff:c9:cc:6c:fa:5a:8a:27:08:7d:90:cf:7c:bd:
4a:2a:ee:85:61:f5:55:c1:81:de:e4:84:85:91:a9:
d2:2a:15:71:41:4b:df:67:18:21:43:a3:b9:0d:ec:
b8:0c:0d:ab:f0:45:16:dc:64:f3:39:9d:4a:0c:36:
2d:d8:56:0a:f3:4a:35:66:ad:46:90:1c:6a:f3:59:
fa:38:f4:b1:91:2e:27:3a:53:af:4c:16:49:2c:e8:
ad:9c:f3:54:47:b8:27:84:4b:93:2d:83:ea:f8:03:
21:46:1e:a1:56:da:f7:f3:64:17:cf:80:93:36:0a:
1d:18:61:3d:77:74:08:b6:a3:50:65:6f:75:bc:7e:
06:a0:d5:f5:71:38:37:0c:df:8f:96:e6:cb:b6:51:
72:2d:c9:15:e8:a8:e5:6f:f0:31:b3:4e:23:04:60:
8f:dc:e3:f7:a0:15:c7:6b:f6:64:84:39:d2:dc:4a:
a5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:53:5D:7F:F1:D0:8B:BB:39:4F:05:F4:DF:60:B0:AB:70:23:7A:54
X509v3 Authority Key Identifier:
keyid:83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/AB725E028DE011EE9520701E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.203.64.0/19
Signature Algorithm: sha256WithRSAEncryption
77:4f:f0:87:9c:6a:a2:bc:6a:fa:9f:e5:bf:4d:44:dd:bc:27:
c5:a2:d9:01:fa:4f:6d:20:cc:1c:32:4a:e4:ad:26:02:09:17:
e4:26:8e:a1:9e:24:8d:62:81:01:49:77:ce:f2:05:2a:99:b8:
ed:f2:8b:af:63:01:3c:37:79:ff:33:c8:88:55:13:82:d7:98:
a4:26:14:2e:e7:82:84:d2:21:5d:a1:3c:12:c3:89:84:da:f4:
2b:25:4d:fc:fd:ae:9e:ba:a0:c3:11:8b:27:d9:72:9e:50:2b:
53:9f:77:54:90:2d:b8:2b:99:9c:53:c6:48:8b:03:07:c7:b4:
b9:b3:7f:26:12:ec:32:c2:06:c1:14:ac:a0:d9:25:73:29:b9:
97:cb:a3:a1:69:dd:1f:81:61:2f:7e:41:96:1d:3d:3d:70:b7:
67:59:14:2e:a0:08:de:91:33:b3:a8:63:5e:b0:2c:d9:14:7d:
5c:d0:f4:f2:ff:77:c3:7c:4b:51:eb:70:9d:14:12:de:83:7f:
e4:4e:0b:a5:4d:5d:35:1c:ea:8a:48:16:b6:65:4f:71:92:89:
13:2e:90:61:ea:03:e8:b2:f5:c4:0a:da:5b:3a:61:2b:61:43:
73:df:97:c6:b4:3f:2a:3f:41:3e:0d:b3:76:b6:42:44:12:ef:
74:f9:05:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org