Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CD2E36C0BBA111EA8EE7CA13F8AEA228.roa
File: CD2E36C0BBA111EA8EE7CA13F8AEA228.roa (raw, json)
Hash identifier: axg0LjQ9j3/7i68ukdjbQOSCqk6z3Fs5MfwY3WcA5Io=
Subject key identifier: 5C:56:F8:35:83:CD:A9:D1:03:43:21:98:8B:EB:C3:13:45:7F:B2:AC
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: B6
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CD2E36C0BBA111EA8EE7CA13F8AEA228.roa
Signing time: Wed 01 Jul 2020 13:50:20 +0000
ROA not before: Wed 01 Jul 2020 13:50:16 +0000
ROA not after: Sun 01 Jul 2040 13:50:16 +0000
asID: 31713
IP address blocks: 41.221.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182 (0xb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Jul 1 13:50:16 2020 GMT
Not After : Jul 1 13:50:16 2040 GMT
Subject: CN=5efc949b-b373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a3:72:79:17:bf:13:33:ac:1e:c7:28:a9:e1:
99:45:0b:36:00:0a:5e:ca:d0:55:3d:2e:95:47:49:
16:e6:64:25:dd:ff:cf:dc:10:9b:76:32:a9:6c:f7:
bc:f9:3e:c4:42:7a:e8:85:9b:fc:8f:2d:f0:5c:c9:
84:d8:c9:3e:41:02:09:cb:48:96:00:7a:05:b2:ed:
af:de:0a:27:27:33:4a:26:9c:d9:ca:d6:ff:4f:5e:
9f:4d:c1:3d:aa:ce:2d:fb:c7:aa:a5:de:0f:23:39:
f9:f3:f7:58:e7:7f:20:87:b7:ac:6e:18:97:b5:52:
9c:c6:53:25:df:f9:b2:af:bc:b8:f8:b9:ae:0a:90:
8a:15:01:fe:2a:e0:44:b0:5d:fa:6d:77:01:dd:4c:
94:8d:fb:96:96:86:a8:07:dd:90:e7:ab:55:fe:a1:
88:8b:a8:c0:36:e8:95:20:fa:ab:b6:4a:41:0c:6b:
2b:c6:79:41:64:db:c1:bf:19:a1:14:e1:f3:1c:26:
e4:a8:94:03:e8:6f:b3:13:58:f2:b8:97:4d:f1:88:
cc:8a:b2:66:5d:67:69:85:76:c7:ee:a9:36:8a:50:
be:45:67:0e:77:dd:59:1e:2e:c5:d1:4e:7c:bc:fc:
4d:b8:89:6d:da:cd:39:5f:d6:f0:c0:7f:e9:db:d9:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:56:F8:35:83:CD:A9:D1:03:43:21:98:8B:EB:C3:13:45:7F:B2:AC
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/CD2E36C0BBA111EA8EE7CA13F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.208.0/20
Signature Algorithm: sha256WithRSAEncryption
9b:c0:6c:19:8f:f1:b4:b8:e5:c3:32:ea:8d:0f:b6:01:3b:f9:
9e:cd:90:6d:34:53:7a:ec:bd:e3:88:de:0f:38:92:b9:7a:cf:
76:c6:93:52:e0:6f:ef:4d:47:c4:36:70:49:65:b3:81:a0:01:
96:13:3a:e7:f6:6f:6d:7b:c7:46:fa:84:7b:3a:73:ee:59:3b:
42:dc:80:72:45:e1:37:43:06:1f:41:f6:f4:d5:2f:e0:96:77:
ff:58:da:35:ef:4a:bb:16:c9:c1:eb:79:e6:ff:8d:b8:02:4e:
73:56:7d:03:67:1f:b3:52:d8:7c:91:53:db:5e:28:fb:f6:fc:
69:24:da:3d:8a:6d:4f:8d:b7:2e:f6:3e:25:c9:4a:77:9a:a9:
ad:ac:5c:39:2f:8d:60:78:59:3c:73:30:56:fe:6a:4f:67:a9:
42:f7:d1:76:f0:65:97:ea:38:2f:86:ee:51:e6:d0:5d:df:87:
2c:ac:3b:7b:a9:7b:9f:ef:28:49:92:f2:58:e1:75:4e:c1:a8:
23:7b:cb:90:cc:18:eb:00:f1:a7:63:bf:11:22:f6:b7:8e:b9:
64:2c:85:47:f9:0f:ae:d9:71:e7:8c:d6:10:1b:d0:39:36:33:
88:7a:54:e6:7a:5d:c5:0a:89:bc:c7:cd:4d:8e:21:2d:1c:61:
e2:4a:3b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:01:36 2024 by rpki-client on console-ams.rpki-client.org