Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/CEECC3E225A011EF856FA02F7DDC24C2.roa
File: CEECC3E225A011EF856FA02F7DDC24C2.roa (raw, json)
Hash identifier: /w9FBmF/kR+fuwk0FzV8UcotNF1YR9aseD/+Di1G5Pk=
Subject key identifier: D0:71:A8:9E:BE:42:C4:DB:5E:D3:1E:BF:5F:A5:4C:AC:45:7F:94:95
Certificate issuer: /CN=F3611BE3AF/serialNumber=ED6C9C2BDF76F362655A7E047B976DB2B0D02BEC
Certificate serial: 0477
Authority key identifier: ED:6C:9C:2B:DF:76:F3:62:65:5A:7E:04:7B:97:6D:B2:B0:D0:2B:EC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/CEECC3E225A011EF856FA02F7DDC24C2.roa
Signing time: Sat 08 Jun 2024 14:10:07 +0000
ROA not before: Sat 08 Jun 2024 14:10:03 +0000
ROA not after: Wed 18 Jun 2025 14:10:03 +0000
asID: 36943
IP address blocks: 41.61.0.0/16 maxlen: 16
41.185.0.0/16 maxlen: 16
41.185.56.0/24 maxlen: 24
196.43.195.0/24 maxlen: 24
196.220.32.0/19 maxlen: 19
2c0f:fe90::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.crl
rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.mft
rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1143 (0x477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3611BE3AF/serialNumber=ED6C9C2BDF76F362655A7E047B976DB2B0D02BEC
Validity
Not Before: Jun 8 14:10:03 2024 GMT
Not After : Jun 18 14:10:03 2025 GMT
Subject: CN=6664663f-f40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:38:41:b5:e1:e9:44:2b:79:44:86:43:82:
b6:7d:a0:ec:29:0c:b3:2d:1a:80:e1:2d:3c:ff:39:
6a:e1:6d:cb:e6:50:37:c5:be:c4:8e:d1:23:45:be:
b9:b8:d8:86:5e:43:e7:8d:4f:e5:f1:9a:53:54:7d:
51:24:d8:23:e1:33:04:9b:6a:43:c1:a0:d3:ef:62:
3c:16:bb:72:51:99:64:eb:f1:72:a0:ac:af:3a:05:
84:fd:ea:f2:4d:59:b0:4e:b9:3a:41:84:1d:b1:73:
8d:e9:fb:08:0a:15:f1:b2:b5:e7:1b:fb:d0:6d:e4:
d9:52:2d:fe:5e:b2:97:0d:a9:b9:bb:e3:0a:30:bf:
6e:a4:34:1d:4b:22:07:c8:d7:ce:46:6f:37:e9:21:
ba:f1:44:a9:fc:e2:0e:84:ca:83:4b:b7:43:ea:36:
0e:70:b9:77:41:dd:a5:25:28:5e:b8:97:61:db:75:
2e:4e:bb:c9:61:65:98:c8:18:84:43:db:db:76:04:
64:ed:28:98:df:70:36:28:61:7d:1f:4f:aa:ef:ea:
d8:85:7c:41:e1:5a:d3:4e:bc:83:02:5c:6d:ba:bf:
bb:69:43:6a:bf:db:a7:32:d6:35:9a:56:66:33:7a:
f6:72:4d:c4:a1:7f:da:51:9e:38:6e:84:b0:eb:02:
81:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:71:A8:9E:BE:42:C4:DB:5E:D3:1E:BF:5F:A5:4C:AC:45:7F:94:95
X509v3 Authority Key Identifier:
keyid:ED:6C:9C:2B:DF:76:F3:62:65:5A:7E:04:7B:97:6D:B2:B0:D0:2B:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/7WycK99282JlWn4Ee5dtsrDQK-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7WycK99282JlWn4Ee5dtsrDQK-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3611BE3/41ACFDB2D36911EBAC3AEA5BF8AEA228/CEECC3E225A011EF856FA02F7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.61.0.0/16
41.185.0.0/16
196.43.195.0/24
196.220.32.0/19
IPv6:
2c0f:fe90::/32
Signature Algorithm: sha256WithRSAEncryption
ca:f6:07:64:5f:16:4e:3f:65:38:57:c8:50:60:fe:74:c4:17:
2e:a3:ca:6a:1d:ba:fd:77:39:d7:fd:9f:5f:47:9e:17:36:b5:
6c:3c:98:dc:a1:97:d0:64:b1:52:e5:3d:5c:fc:e0:34:c7:0d:
2a:9d:b6:5e:a0:de:c0:1e:08:9f:18:33:9e:1e:9e:4e:f7:5e:
eb:40:3a:e9:7b:be:69:f7:26:c4:5f:05:7c:28:ac:ec:85:a7:
bf:2e:01:27:bb:90:67:ce:b4:6c:50:6b:15:bb:11:31:3d:6e:
f0:c8:bb:5d:2a:2f:0a:2d:1b:ec:7b:58:62:f9:d2:40:2c:01:
b3:07:ab:28:a8:74:92:26:b6:81:f9:2f:af:7a:4e:15:28:74:
c7:ad:28:6e:3e:26:cc:34:ab:3e:90:6f:c7:81:81:57:e6:2e:
5c:b4:da:26:dc:c7:35:4a:73:63:72:1c:3c:8a:70:82:e5:8b:
cc:e1:d7:47:40:f5:88:40:90:ea:85:94:ea:29:c9:d6:5f:05:
f4:7e:89:8d:c8:e4:32:aa:48:cd:51:aa:9d:1c:cb:de:b0:18:
12:20:59:54:6c:27:aa:cf:b7:72:ff:d6:4d:38:db:7c:82:d5:
28:f2:4c:3c:0e:52:87:c8:52:f5:0d:51:ee:79:03:2d:cb:01:
e9:1c:4e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org