Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/FD4DB548A1BF11EFA39151A0762E951A.roa
File: FD4DB548A1BF11EFA39151A0762E951A.roa (raw, json)
Hash identifier: jNJWeITwxu0vczeduFKEplO/t2/G8EFVwbsdEOzx9y0=
Subject key identifier: 39:16:35:2C:4B:8F:43:BF:D6:43:AB:02:05:D4:F8:E0:09:88:2D:22
Certificate issuer: /CN=F36F8B97AF/serialNumber=429F70A01A2B5922FEEB4BF0C83D73C5F574F25D
Certificate serial: 0479
Authority key identifier: 42:9F:70:A0:1A:2B:59:22:FE:EB:4B:F0:C8:3D:73:C5:F5:74:F2:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/FD4DB548A1BF11EFA39151A0762E951A.roa
Signing time: Wed 13 Nov 2024 13:05:43 +0000
ROA not before: Wed 13 Nov 2024 13:05:39 +0000
ROA not after: Thu 30 Nov 2034 13:05:39 +0000
asID: 37235
IP address blocks: 41.74.196.0/22 maxlen: 24
41.74.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.mft
rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1145 (0x479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8B97AF/serialNumber=429F70A01A2B5922FEEB4BF0C83D73C5F574F25D
Validity
Not Before: Nov 13 13:05:39 2024 GMT
Not After : Nov 30 13:05:39 2034 GMT
Subject: CN=6734a427-9017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:44:f1:f8:49:12:5d:c2:87:8b:19:78:a6:db:
a4:06:26:7b:8f:59:65:0f:2f:c8:7e:43:65:42:98:
84:59:2b:68:50:18:af:a0:be:f3:24:88:c3:47:9e:
ef:2a:85:9e:31:48:de:cd:74:3b:cd:c9:83:70:38:
0c:e9:83:a8:f7:67:05:57:05:4f:04:e3:ec:64:ed:
d0:69:0f:fc:1d:51:d8:81:89:25:ae:32:96:98:f9:
47:2c:b9:19:0a:1b:bf:8a:15:cb:02:7c:c3:e7:8f:
86:0d:5a:46:b5:dc:cd:4c:da:06:f6:9c:f0:be:c9:
65:c2:54:ef:5e:eb:20:a9:e4:b8:58:dd:21:32:78:
8d:c4:ab:97:62:3a:52:7a:f8:bc:4d:ee:32:b6:62:
ee:f5:49:0d:2e:df:a7:c5:7a:21:f8:fd:1c:63:9a:
ca:86:5c:e8:dc:b5:97:92:fe:2b:cd:16:97:e0:3b:
ab:80:55:04:58:62:1c:d9:29:69:cd:f4:44:75:9a:
56:85:12:18:ea:89:c2:06:8b:48:6a:b3:f7:11:15:
9b:3c:bf:23:98:48:2b:87:c6:7b:ff:fa:fd:bd:36:
73:d2:6b:10:fa:d1:92:ff:06:21:fa:49:3a:7a:bf:
39:7b:90:c2:6c:70:ca:3c:a1:0f:c9:64:df:ed:a5:
3c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:16:35:2C:4B:8F:43:BF:D6:43:AB:02:05:D4:F8:E0:09:88:2D:22
X509v3 Authority Key Identifier:
keyid:42:9F:70:A0:1A:2B:59:22:FE:EB:4B:F0:C8:3D:73:C5:F5:74:F2:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/FD4DB548A1BF11EFA39151A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.74.196.0/22
41.74.204.0/22
Signature Algorithm: sha256WithRSAEncryption
44:fb:77:3e:1a:24:be:c1:bc:f0:55:35:70:b8:5b:de:c9:88:
72:1a:e5:24:bc:24:e1:d7:3b:9c:bd:d3:f3:4b:bc:bd:8b:a0:
f2:ee:cb:3a:4a:80:68:13:e5:41:97:26:22:36:a4:dc:98:b3:
c0:4d:c9:6c:72:08:cc:1f:aa:24:79:65:2d:10:db:7f:eb:08:
d7:98:76:99:aa:7c:53:a6:49:f6:31:b1:5d:d4:70:d1:f3:be:
c4:53:48:23:1d:0b:88:19:1f:e4:3d:bc:74:f4:ba:44:dd:86:
75:08:87:cf:e5:ed:b7:74:d5:48:fa:af:09:ee:d6:ab:33:a6:
e6:7e:88:dd:4d:5e:50:a2:ce:9c:48:b0:9c:c4:cc:7f:e8:f8:
f8:1a:40:67:64:d1:4e:1c:9d:db:3f:a6:62:1a:c6:d8:99:a9:
fd:d2:aa:8d:26:0c:67:d9:7d:be:b1:3f:c4:f7:ea:5d:fe:c3:
98:69:2d:2b:88:26:5e:e8:50:5d:b0:e9:cc:35:1c:15:a0:3b:
a1:a0:fa:47:e0:0e:73:20:ca:8e:31:90:74:9c:57:89:60:cd:
b8:8e:43:4c:24:2f:25:22:27:64:09:84:f9:eb:d6:f3:42:99:
64:ac:89:6c:1f:d6:05:37:f8:8f:a0:4a:4a:14:e7:62:c1:89:
61:d1:d5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:32 2024 by rpki-client on console-ams.rpki-client.org