Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/57F10640DAFA11EE9F53D478775412E6.roa
File: 57F10640DAFA11EE9F53D478775412E6.roa (raw, json)
Hash identifier: DgkO3NkdQPnHgS1ciVVT4MvoVCX/ueUP/SYv7fBWM/Y=
Subject key identifier: CE:20:EF:C9:12:89:F4:55:CF:91:62:F4:4F:FE:59:EC:10:CB:64:D4
Certificate issuer: /CN=F36C01B9AF/serialNumber=E2FB6437B4C94D5F51221B1650563A48FF54BE09
Certificate serial: 0F
Authority key identifier: E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/57F10640DAFA11EE9F53D478775412E6.roa
Signing time: Tue 05 Mar 2024 14:12:05 +0000
ROA not before: Tue 05 Mar 2024 14:12:01 +0000
ROA not after: Thu 05 Mar 2026 14:12:01 +0000
asID: 25543
IP address blocks: 41.138.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.mft
rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C01B9AF/serialNumber=E2FB6437B4C94D5F51221B1650563A48FF54BE09
Validity
Not Before: Mar 5 14:12:01 2024 GMT
Not After : Mar 5 14:12:01 2026 GMT
Subject: CN=65e72835-84cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ab:7b:23:49:50:9e:04:f8:38:ce:46:09:ec:
d8:fc:57:c4:34:f4:97:6b:3e:f8:52:20:d6:8d:99:
8b:3d:e3:12:fb:8b:81:c1:ab:8a:ae:3b:92:ca:74:
a0:78:b3:a0:54:77:1a:c3:11:7c:eb:56:3e:fe:15:
fb:38:9c:b7:6c:92:f6:9b:34:7b:12:dd:99:e7:ac:
fa:71:fa:3e:74:de:ce:43:85:71:3d:c2:80:68:31:
37:7f:a3:bf:aa:39:b6:64:e8:5d:66:d4:d9:fc:e0:
52:00:d4:0f:30:9f:4b:28:4e:a6:a8:34:40:f4:8e:
7f:cc:d0:8f:ee:4a:47:4b:5a:c6:d4:2a:5f:fa:ab:
43:6a:95:98:2b:d5:4e:4c:f7:97:aa:73:98:c0:34:
56:8e:ff:c9:da:ed:12:cc:ee:80:f2:bc:dc:60:83:
09:2e:3b:3b:5d:53:85:b3:a8:96:0a:bd:6e:e2:3f:
3a:78:fd:62:11:2e:34:e9:bd:9f:db:82:e1:9e:20:
01:25:99:8f:24:66:59:89:3e:e1:c6:e6:ce:e9:a6:
e1:24:64:be:2e:42:0e:08:19:67:45:34:6a:29:31:
1e:e5:d0:3b:56:ce:20:ee:7d:14:98:9b:b8:0a:12:
c8:38:d3:21:f1:6f:e2:77:e7:fa:ef:03:03:5e:02:
5f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:20:EF:C9:12:89:F4:55:CF:91:62:F4:4F:FE:59:EC:10:CB:64:D4
X509v3 Authority Key Identifier:
keyid:E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/57F10640DAFA11EE9F53D478775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.138.96.0/19
Signature Algorithm: sha256WithRSAEncryption
10:d4:72:b2:bc:64:d3:af:cf:04:cc:79:1d:29:d1:d7:44:68:
c7:7e:ed:3f:7d:38:bf:26:ca:6e:a3:8c:94:f8:08:2e:3c:30:
eb:b0:59:19:65:d7:86:84:a5:f9:02:43:41:20:ea:36:14:c1:
a8:f5:ae:db:85:c7:3a:63:23:23:a5:ca:da:d6:7a:2a:4c:04:
46:85:8c:5e:cb:ec:a4:d1:5b:96:7a:e3:86:f7:9f:50:9c:86:
df:0b:b2:3e:b4:93:ca:31:b7:26:78:9a:2e:21:1a:cf:90:08:
cc:cd:14:8e:8d:da:1d:1e:90:a2:fb:f5:e6:e6:bd:45:35:8e:
42:93:e3:dc:d8:24:af:7a:f1:9b:15:f6:d0:19:3d:67:e0:65:
a7:c5:5c:94:45:29:da:9e:ac:27:76:b9:48:0a:77:f0:e5:31:
86:38:cc:7c:86:cb:e2:87:89:23:e9:5e:fc:d2:bc:0d:c4:37:
a2:2b:88:d2:6b:40:8e:c6:04:eb:91:66:f0:27:5d:d4:d4:4d:
89:bf:6f:c1:0f:52:40:ce:2e:a1:a6:02:a1:db:49:72:89:df:
50:64:fb:36:39:eb:fb:b1:32:55:2f:4f:15:38:d4:2f:a0:aa:
02:89:e9:43:a7:24:08:3f:ae:87:4e:aa:49:f5:17:6e:89:1d:
f8:d9:d4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 06:21:12 2024 by rpki-client on console-fra.rpki-client.org