Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/41ED69D60D1511EFA8396400017001B1.roa
File: 41ED69D60D1511EFA8396400017001B1.roa (raw, json)
Hash identifier: x3aVslqCzMfioshN80Dla6JteewrsmH2GjIbIFA+j2M=
Subject key identifier: 18:5A:76:F9:6A:E7:80:61:47:C6:75:51:FA:C7:9B:4B:9D:5C:A1:1D
Certificate issuer: /CN=F36EE14CAF/serialNumber=DD8EE0395EFB34C4098E576E1FA95612F0AE108C
Certificate serial: 47
Authority key identifier: DD:8E:E0:39:5E:FB:34:C4:09:8E:57:6E:1F:A9:56:12:F0:AE:10:8C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/41ED69D60D1511EFA8396400017001B1.roa
Signing time: Wed 08 May 2024 08:30:42 +0000
ROA not before: Wed 08 May 2024 08:30:39 +0000
ROA not after: Mon 08 May 2034 08:30:39 +0000
asID: 37594
IP address blocks: 197.231.236.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.mft
rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71 (0x47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EE14CAF/serialNumber=DD8EE0395EFB34C4098E576E1FA95612F0AE108C
Validity
Not Before: May 8 08:30:39 2024 GMT
Not After : May 8 08:30:39 2034 GMT
Subject: CN=663b3832-398f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:e4:c9:8f:be:0a:ff:98:5d:69:95:0f:1d:
73:a2:1c:e4:30:06:35:49:d0:e9:1e:13:65:80:7a:
a4:41:a6:cd:d1:de:02:dd:7e:76:9c:1b:30:95:44:
20:dd:13:2e:18:99:0f:af:06:5d:8b:7c:7c:a8:62:
67:a3:3f:ac:34:74:fc:7d:41:57:e0:a3:ff:21:5c:
d5:45:62:ad:d0:b7:8a:94:42:c9:19:d3:f6:26:b7:
3f:31:b1:f0:fe:75:49:a7:9a:05:d8:55:03:e0:6c:
a1:18:f3:f8:0a:30:4f:fb:d8:54:0a:c5:67:ce:ee:
f1:2a:58:2d:09:12:e1:7c:ba:df:61:50:f4:d4:17:
65:92:1b:de:e4:d7:f1:da:53:d8:55:8d:34:82:ae:
ae:8f:24:74:de:a1:8c:9d:47:99:3e:e0:fb:47:18:
d2:fa:83:f5:99:2e:06:f9:97:6f:e6:4c:a2:c6:38:
04:25:a5:25:4b:79:90:d3:f5:91:16:ea:78:71:8a:
76:e4:71:53:c8:b2:69:f0:88:5a:1d:d1:a7:89:2f:
22:73:b6:cb:b2:4e:15:0c:b4:29:bf:f8:6f:bd:e2:
b6:65:d6:7d:f9:c8:b2:71:f1:80:76:43:2a:74:85:
14:15:eb:79:5d:9c:f2:da:58:0f:08:d5:ab:a2:7a:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:5A:76:F9:6A:E7:80:61:47:C6:75:51:FA:C7:9B:4B:9D:5C:A1:1D
X509v3 Authority Key Identifier:
keyid:DD:8E:E0:39:5E:FB:34:C4:09:8E:57:6E:1F:A9:56:12:F0:AE:10:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/41ED69D60D1511EFA8396400017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.231.236.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c3:88:35:8e:24:16:96:3a:c4:fa:c6:a2:5e:c8:18:69:37:
94:3f:c9:8a:58:3e:55:81:ca:15:7a:7c:6a:44:7f:f8:cc:2b:
62:34:af:6b:6a:bf:2d:cb:4a:91:66:4f:5c:75:f6:40:36:28:
af:d5:9a:df:12:df:3b:0f:f0:96:2c:1c:1c:15:60:47:f5:de:
3e:d4:e8:82:08:dd:76:eb:ce:9b:ff:d5:03:dd:97:1d:c5:ad:
c4:d9:6c:d9:10:1e:07:89:b6:b4:b6:33:87:79:94:ff:5a:a5:
c4:b2:fa:88:04:6d:74:1f:2d:69:50:7b:2e:80:01:0d:ba:81:
f5:f5:ca:f5:b0:ea:a9:41:c7:b0:6d:46:c2:e4:26:63:b3:c8:
59:e2:45:9f:4c:ae:df:56:1c:82:2e:2f:99:7f:50:66:8c:6d:
ab:76:52:8a:a4:c8:81:ba:41:32:35:ea:e5:db:88:bc:5c:3a:
4b:50:36:df:a4:2b:5d:5d:39:e6:31:d7:bd:ca:5f:9f:fd:b8:
ea:bb:6a:a1:60:c7:38:e9:49:10:7c:77:42:f2:8a:34:8e:3c:
36:5d:9d:d3:54:47:b6:c5:27:a9:62:4a:11:11:a8:55:63:36:
83:8a:b1:30:99:44:39:1a:a4:4b:19:26:30:bf:33:79:b6:30:
c0:d5:69:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org