Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/6B81950217F211ED90291AC3F1222468.roa
File: 6B81950217F211ED90291AC3F1222468.roa (raw, json)
Hash identifier: 9rMuozHD63olOv1qL+NCuYVweBLtAzHOnZZr7cPZiqE=
Subject key identifier: 2B:C4:BE:5E:C1:E3:F3:38:3B:8D:2F:2C:F5:EB:28:97:BE:3C:19:5C
Certificate issuer: /CN=F36FCE84AF/serialNumber=F8C24D4BD80A5F021A6D85CDD0FF07683DE17167
Certificate serial: 02
Authority key identifier: F8:C2:4D:4B:D8:0A:5F:02:1A:6D:85:CD:D0:FF:07:68:3D:E1:71:67
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-MJNS9gKXwIabYXN0P8HaD3hcWc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/6B81950217F211ED90291AC3F1222468.roa
Signing time: Tue 09 Aug 2022 14:49:07 +0000
ROA not before: Tue 09 Aug 2022 14:49:02 +0000
ROA not after: Sun 31 Aug 2042 14:49:02 +0000
asID: 37425
IP address blocks: 41.79.196.0/22 maxlen: 22
41.79.196.0/24 maxlen: 24
41.79.197.0/24 maxlen: 24
41.79.198.0/24 maxlen: 24
41.79.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/-MJNS9gKXwIabYXN0P8HaD3hcWc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/-MJNS9gKXwIabYXN0P8HaD3hcWc.mft
rsync://rpki.afrinic.net/repository/afrinic/-MJNS9gKXwIabYXN0P8HaD3hcWc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FCE84AF/serialNumber=F8C24D4BD80A5F021A6D85CDD0FF07683DE17167
Validity
Not Before: Aug 9 14:49:02 2022 GMT
Not After : Aug 31 14:49:02 2042 GMT
Subject: CN=62f273e3-c85d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:14:18:a2:1d:28:24:50:44:2f:dc:d0:b0:e3:
5a:bb:b6:35:f7:7b:91:ba:8e:a7:03:6d:5c:3f:aa:
95:17:19:73:4e:e7:01:13:14:a5:3b:8c:82:46:2f:
ca:da:d8:22:6b:8c:26:12:9e:c4:f8:93:af:c1:1f:
39:82:33:49:ea:83:ea:5e:92:38:75:1d:0c:cd:3c:
f0:69:af:19:12:ea:d3:57:40:2d:f4:b4:71:e0:92:
61:90:05:6e:a8:1f:3f:20:bf:d4:fe:5d:38:68:09:
bd:17:06:2c:9c:3d:55:3f:61:74:74:3b:b8:c9:91:
78:24:3b:b1:d8:96:75:f9:2f:a0:0b:18:50:1c:14:
4a:5d:60:b9:7a:80:8a:d9:6c:3d:f9:c0:ec:2a:54:
db:4f:ba:8d:93:18:6c:6a:2e:38:5f:2b:da:05:19:
e3:6c:a7:10:b7:24:08:fa:9c:84:a5:b8:aa:b0:46:
d8:4a:f3:a4:d6:a4:f1:ce:36:5b:b2:93:e1:6c:ae:
c0:21:c3:54:0b:28:35:8f:e3:ab:ea:38:b5:40:2c:
cc:b4:e9:29:6b:7f:9e:a0:8b:d3:71:13:d0:24:61:
1d:e1:37:90:c0:32:16:11:dd:6b:bf:73:ba:11:89:
a9:f3:b9:f0:1a:35:a9:ec:ed:fe:cc:e0:1c:4a:0f:
b7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C4:BE:5E:C1:E3:F3:38:3B:8D:2F:2C:F5:EB:28:97:BE:3C:19:5C
X509v3 Authority Key Identifier:
keyid:F8:C2:4D:4B:D8:0A:5F:02:1A:6D:85:CD:D0:FF:07:68:3D:E1:71:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/-MJNS9gKXwIabYXN0P8HaD3hcWc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-MJNS9gKXwIabYXN0P8HaD3hcWc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCE84/A8E1336817F111ED9F98A8C0F1222468/6B81950217F211ED90291AC3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.79.196.0/22
Signature Algorithm: sha256WithRSAEncryption
44:3c:02:bc:06:13:43:de:98:11:3b:df:84:78:11:56:d8:ba:
75:cf:f4:5b:e4:d3:03:22:5a:c1:d1:c9:8e:c6:d2:2c:d7:c5:
46:dd:5d:ff:14:b8:f7:50:ad:89:b2:5a:ae:b8:40:7a:38:22:
bb:5f:62:d1:b3:bc:ce:24:c4:df:e6:a6:61:d4:14:8d:53:28:
60:f0:a3:fd:fc:f2:6a:cb:3c:83:1e:84:40:12:6c:bb:42:1f:
0b:f8:d0:7f:4a:78:ac:7d:a2:5a:6f:2f:1a:8e:22:b0:5d:f9:
a2:91:85:9f:c3:ba:82:33:f7:4c:2d:f4:d4:40:3c:5f:76:1a:
4c:b7:be:d5:47:7f:58:d7:a1:be:25:5f:80:2d:75:78:1d:74:
ff:fb:ac:ab:f8:e5:fc:2a:11:20:e0:70:c1:7a:db:f2:4a:e9:
19:fb:cc:e4:b0:b4:28:59:25:e0:4e:8d:b6:47:b2:e4:00:18:
69:41:00:97:52:bb:bb:89:f5:18:e4:0b:8d:24:11:de:ba:4e:
bc:c5:7c:5c:7b:c1:35:5f:a0:d3:6b:da:97:85:4d:43:14:27:
3f:a9:3e:5c:8c:a2:02:e4:16:9b:1b:31:d5:6d:47:41:92:2f:
eb:4f:bf:54:81:27:3b:ad:24:60:da:ba:18:26:62:c8:f5:b2:
4f:ad:c5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org