Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/3BAA3D5C6FFC11EFA23C0A9B762E951A.roa
File: 3BAA3D5C6FFC11EFA23C0A9B762E951A.roa (raw, json)
Hash identifier: ZnDxmAxeEfDaWqAukKaPEazhsegTXYgu0pD30UCvUW4=
Subject key identifier: AB:78:68:90:D1:C2:2C:6F:AF:02:19:23:75:6D:61:08:B8:0F:6D:C1
Certificate issuer: /CN=F3615A34AF/serialNumber=131DDE4F00379CF4F143D5D00E137D697A0EB783
Certificate serial: 03B0
Authority key identifier: 13:1D:DE:4F:00:37:9C:F4:F1:43:D5:D0:0E:13:7D:69:7A:0E:B7:83
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/3BAA3D5C6FFC11EFA23C0A9B762E951A.roa
Signing time: Wed 11 Sep 2024 05:10:59 +0000
ROA not before: Wed 11 Sep 2024 05:10:55 +0000
ROA not after: Mon 11 Sep 2034 05:10:55 +0000
asID: 36914
IP address blocks: 41.89.0.0/16 maxlen: 25
2c0f:fe08::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.mft
rsync://rpki.afrinic.net/repository/afrinic/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:03:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 944 (0x3b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3615A34AF
Validity
Not Before: Sep 11 05:10:55 2024 GMT
Not After : Sep 11 05:10:55 2034 GMT
Subject: CN=66e12663-5015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:57:81:ae:4b:e5:01:1c:d6:6c:d5:25:3c:58:
81:54:dc:40:bc:c8:61:32:ad:c1:0c:72:37:de:23:
b0:bb:46:a8:1b:23:e8:3e:85:31:17:be:85:64:df:
d4:92:87:c8:dd:f2:63:ad:ad:45:fb:7f:fb:e7:89:
07:b6:ae:e0:c6:3b:a8:3e:36:95:0a:b8:d1:b5:64:
82:75:73:a4:68:65:22:60:83:f6:7b:31:c1:27:75:
cc:13:14:b0:f5:5b:85:78:ac:7d:26:a8:74:75:5a:
55:ea:5e:d3:c8:9b:b6:c6:c0:b3:f2:92:2c:e0:7d:
a1:e0:34:13:d2:dd:2d:f2:e6:95:b6:34:18:99:de:
d1:5a:4d:f6:bb:9a:38:f9:c3:36:a0:84:fd:01:1a:
5e:b0:59:d2:f8:28:13:20:38:46:0d:f8:1a:6c:ea:
bb:b3:0d:db:2e:50:c8:07:a6:94:7d:ed:0a:cb:d9:
b0:81:42:9b:b4:5f:72:82:50:18:9c:12:8a:5a:22:
f7:9e:85:8c:a1:45:ec:98:43:71:94:cd:8e:72:e9:
93:c1:76:b1:79:c5:c0:4a:0e:fb:3d:a8:df:4f:d5:
b5:30:77:1d:53:a3:d1:67:8e:2d:57:a6:81:4c:87:
ed:be:05:aa:4f:73:c5:9f:fc:cc:b2:37:3d:c7:3b:
6d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:78:68:90:D1:C2:2C:6F:AF:02:19:23:75:6D:61:08:B8:0F:6D:C1
X509v3 Authority Key Identifier:
keyid:13:1D:DE:4F:00:37:9C:F4:F1:43:D5:D0:0E:13:7D:69:7A:0E:B7:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ex3eTwA3nPTxQ9XQDhN9aXoOt4M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3615A34/02B52692AC0E11ECB3BC0FB05A40D577/3BAA3D5C6FFC11EFA23C0A9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.89.0.0/16
IPv6:
2c0f:fe08::/32
Signature Algorithm: sha256WithRSAEncryption
0b:05:ae:37:56:04:93:f5:ca:b2:b9:62:8a:6f:64:21:ab:19:
39:bf:b2:77:b7:04:3c:fc:6c:21:ad:b9:a9:ec:9f:43:90:24:
0b:57:18:f7:40:0c:91:2a:4f:14:f7:6f:21:67:f6:51:fc:0d:
c1:e5:5b:5e:22:15:cc:d0:65:99:23:1f:69:d7:76:e2:18:b0:
c0:82:ba:96:3e:43:34:5c:3f:74:cb:40:cd:84:fc:7d:0c:ae:
9f:3b:9f:2b:e9:a7:e6:03:2f:ba:08:af:c8:28:d3:e9:ce:ec:
cc:85:4f:15:39:30:c3:68:be:fb:65:63:b2:bc:10:fb:4e:6b:
f6:2f:23:34:c7:37:5e:8f:2f:6a:82:af:39:3f:54:85:c8:0d:
f3:8f:06:9e:46:2c:82:78:4c:e1:cc:83:e6:16:49:6d:af:0d:
25:df:79:fe:47:ac:f1:2e:d3:a6:d1:47:04:a2:54:55:50:e8:
1f:51:49:d5:00:5f:0e:31:10:bc:5a:ce:44:be:96:f0:8e:e7:
c2:8f:d3:76:34:15:82:66:cb:26:f3:18:9c:8b:51:53:88:ed:
0c:ee:2e:77:a0:20:84:a6:0f:a6:cb:7b:e1:06:84:b9:a1:8a:
2a:8e:67:72:b4:aa:47:9a:b2:4c:8f:91:6c:fa:b2:af:87:a7:
6c:c5:86:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:46:44 2025 by rpki-client