Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/2784247EB49D11EA83FF3B11F8AEA228.roa
File: 2784247EB49D11EA83FF3B11F8AEA228.roa (raw, json)
Hash identifier: 3npVwgpBE20PVcA5u5lrTYW4p2BPmihiNcM0JsUxVdE=
Subject key identifier: 8B:32:54:95:60:8B:23:7C:54:B1:D3:67:39:68:B4:FF:8F:F0:EE:09
Certificate issuer: /CN=F36FDDEEAF/serialNumber=2CD31C3C251F5EDA183F938E7FCB3A4A1DBA89DD
Certificate serial: 06
Authority key identifier: 2C:D3:1C:3C:25:1F:5E:DA:18:3F:93:8E:7F:CB:3A:4A:1D:BA:89:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/2784247EB49D11EA83FF3B11F8AEA228.roa
Signing time: Mon 22 Jun 2020 15:29:26 +0000
ROA not before: Mon 22 Jun 2020 15:29:20 +0000
ROA not after: Sun 22 Jun 2025 15:29:20 +0000
asID: 29465
IP address blocks: 41.206.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.mft
rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FDDEEAF/serialNumber=2CD31C3C251F5EDA183F938E7FCB3A4A1DBA89DD
Validity
Not Before: Jun 22 15:29:20 2020 GMT
Not After : Jun 22 15:29:20 2025 GMT
Subject: CN=5ef0ce55-de77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:06:19:45:0e:79:a6:b1:7c:36:20:83:fe:3c:
a1:ca:3f:0e:71:8c:73:fa:bd:01:16:4d:6e:4e:c4:
df:e2:36:4f:f2:56:4e:bb:ec:7f:8a:b2:d5:94:32:
43:b3:cc:5e:52:61:e3:88:3c:a1:09:0d:9a:e4:c2:
02:dc:a4:d9:94:0a:72:3c:dd:71:d8:f7:71:30:6d:
ee:2c:12:56:ee:9f:b2:95:f2:20:77:e2:49:e7:11:
64:7f:63:4b:56:6d:37:dc:0b:44:89:b0:83:0e:0c:
80:c5:0b:32:48:e1:c1:ed:98:76:c1:cf:37:34:77:
03:b8:4a:e9:06:0f:e4:e1:c2:d2:fe:51:b9:80:fb:
54:ef:d4:a9:ab:2d:a1:5d:51:f3:4e:d1:61:6c:73:
be:18:de:20:f0:28:9f:fb:47:5d:44:3b:85:b5:54:
3f:3f:95:e4:32:c9:9d:61:6e:e1:20:88:fb:6f:6c:
65:74:ca:22:85:c8:72:84:3a:69:48:65:ab:bf:5f:
3e:c3:cb:14:95:75:be:f9:f3:45:b3:a4:f0:10:97:
12:6c:d2:8c:b3:78:2f:0f:ea:43:41:a7:e7:47:5d:
5a:06:e3:a9:ac:db:03:98:9e:7f:ba:a7:e0:41:46:
4a:73:4e:60:65:9e:e8:6e:cb:66:e8:da:cc:34:59:
f8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:32:54:95:60:8B:23:7C:54:B1:D3:67:39:68:B4:FF:8F:F0:EE:09
X509v3 Authority Key Identifier:
keyid:2C:D3:1C:3C:25:1F:5E:DA:18:3F:93:8E:7F:CB:3A:4A:1D:BA:89:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/LNMcPCUfXtoYP5OOf8s6Sh26id0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LNMcPCUfXtoYP5OOf8s6Sh26id0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDDEE/214C5AECB49B11EAA3F61F0FF8AEA228/2784247EB49D11EA83FF3B11F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.206.0.0/19
Signature Algorithm: sha256WithRSAEncryption
69:8b:9c:2e:17:8a:c8:5b:3c:2e:80:c8:e5:cf:13:56:b2:a1:
70:53:98:6a:4e:55:c7:98:9b:a7:94:62:85:0f:9a:0b:0e:c2:
34:6e:cd:a2:8e:17:df:68:42:31:ce:45:c0:fb:ed:07:15:95:
e6:60:2c:c2:da:28:de:3f:ab:7c:62:62:3e:6a:eb:8b:0d:3a:
2b:a0:a6:62:0a:6d:26:24:08:16:f5:71:c5:5c:a3:5f:f8:44:
09:53:5d:8e:3b:df:7e:0a:89:3e:99:af:4a:bf:7d:47:b2:84:
7f:35:22:f1:a6:64:41:89:86:c7:9b:c8:7d:9d:ea:50:65:cb:
23:f5:b3:fa:db:00:a0:e5:d6:28:3b:3f:03:95:0a:28:22:20:
92:09:5f:ec:e2:73:ad:2a:5e:22:a5:a0:3e:b0:2d:a9:5b:e7:
cc:ca:60:50:a8:65:02:03:d7:ed:42:35:0c:40:ea:c1:e4:1c:
45:53:bb:fa:9e:0c:7b:10:1d:b1:79:76:0a:4d:76:5f:75:8f:
cf:b8:e7:96:e6:79:a4:4e:b5:53:e4:89:59:2e:a0:23:cc:c3:
cd:79:88:02:2d:e9:9b:8c:5f:8c:9e:2c:24:17:d0:a7:f0:35:
c9:70:8a:6c:c8:cf:fa:87:60:3c:58:6a:33:30:b3:c3:14:44:
65:2e:f5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org