Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/836BAB0845AE11EFBDF032A6762E951A.roa
File: 836BAB0845AE11EFBDF032A6762E951A.roa (raw, json)
Hash identifier: 97JbsPdvNqKHfZPYs+HRGIXQO5xpkbISH3xnPHBeBc4=
Subject key identifier: 0F:C3:E7:E0:11:27:B8:04:F3:34:11:D5:A6:11:50:20:9A:1D:94:E1
Certificate issuer: /CN=F361B650AF/serialNumber=D92D971377A43C2ADC000530CDAB60B4B6760D1C
Certificate serial: 14
Authority key identifier: D9:2D:97:13:77:A4:3C:2A:DC:00:05:30:CD:AB:60:B4:B6:76:0D:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2S2XE3ekPCrcAAUwzatgtLZ2DRw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/836BAB0845AE11EFBDF032A6762E951A.roa
Signing time: Fri 19 Jul 2024 09:08:50 +0000
ROA not before: Fri 19 Jul 2024 09:08:47 +0000
ROA not after: Thu 17 Jul 2025 09:08:47 +0000
asID: 37225
IP address blocks: 41.76.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/2S2XE3ekPCrcAAUwzatgtLZ2DRw.crl
rsync://rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/2S2XE3ekPCrcAAUwzatgtLZ2DRw.mft
rsync://rpki.afrinic.net/repository/afrinic/2S2XE3ekPCrcAAUwzatgtLZ2DRw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361B650AF/serialNumber=D92D971377A43C2ADC000530CDAB60B4B6760D1C
Validity
Not Before: Jul 19 09:08:47 2024 GMT
Not After : Jul 17 09:08:47 2025 GMT
Subject: CN=669a2d22-1c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9c:c7:c6:f2:f3:fd:1b:4b:a8:a4:4b:74:df:
6e:7b:28:50:b9:13:5d:f7:ff:c5:35:1e:b4:f6:c4:
16:69:3e:70:cd:04:1a:ee:40:bd:0b:09:4b:5d:c0:
5e:8e:7b:d6:e0:25:57:4d:7a:d7:1e:64:c5:b2:17:
ac:a6:88:2d:cb:d4:cc:c2:e4:93:e1:06:89:c7:73:
b7:11:45:c2:50:7e:c8:a5:58:2a:c8:45:37:32:ea:
40:62:54:3f:ba:6e:17:0e:50:8c:ca:39:5c:13:69:
8c:70:ed:0d:00:3d:61:ab:6e:0e:a0:00:44:b2:73:
27:c3:38:a2:ab:4e:2c:80:70:44:4d:3f:7a:ed:51:
d1:9b:87:76:0e:8f:fa:71:92:f7:87:03:24:3f:7c:
01:cd:22:d4:e0:2a:e9:43:d1:88:2f:01:98:1c:ad:
85:5d:ef:77:3d:ac:78:c0:22:ab:dc:60:4c:07:87:
4b:8d:26:ea:3f:ce:87:f8:cf:7e:db:96:d1:19:17:
62:d4:b1:57:27:bc:9d:35:f3:9f:b8:fb:f3:c9:e8:
e3:29:fb:68:d0:84:40:e7:11:17:a5:14:66:7f:34:
f3:0a:50:ca:f9:c1:90:e2:57:72:17:58:ed:87:77:
f4:15:27:4f:02:af:42:b9:15:ac:2b:d8:b8:48:fc:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C3:E7:E0:11:27:B8:04:F3:34:11:D5:A6:11:50:20:9A:1D:94:E1
X509v3 Authority Key Identifier:
keyid:D9:2D:97:13:77:A4:3C:2A:DC:00:05:30:CD:AB:60:B4:B6:76:0D:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/2S2XE3ekPCrcAAUwzatgtLZ2DRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2S2XE3ekPCrcAAUwzatgtLZ2DRw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361B650/6895B0BE3DE611EF82ED8790762E951A/836BAB0845AE11EFBDF032A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.176.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:0c:bc:4b:92:39:40:67:c4:c7:3a:04:f1:3e:07:12:4c:1a:
8b:3f:0c:3a:32:e1:6e:47:9e:05:48:7e:14:91:fa:c0:51:81:
60:58:9c:20:f2:78:c5:fb:57:e7:cf:59:ac:87:bf:c9:cb:eb:
c2:02:05:4e:44:c7:64:01:04:fd:59:b2:ff:96:63:98:22:7f:
3e:dd:16:a6:69:0b:66:51:60:cb:02:97:37:7a:11:ca:4a:bc:
b5:a0:59:ba:36:52:ae:0f:24:42:ea:74:8a:0f:92:90:c4:86:
8d:e5:60:5d:fc:ea:6c:a3:c1:71:5d:82:e6:80:56:6c:0f:14:
5f:da:53:bf:b5:8a:bf:c7:4c:f8:16:65:82:cd:c2:39:8b:17:
9d:87:54:a2:f2:af:23:37:45:a5:a5:0b:e8:79:e5:5e:a1:6b:
d7:b2:88:01:ba:10:fc:ac:a6:f9:8f:46:3e:8c:52:0d:75:e7:
56:a6:d4:f6:7f:20:e8:68:46:a2:a0:4b:04:7e:7b:96:bb:ec:
5f:78:80:7c:f6:77:96:9d:34:de:d0:67:c6:d4:07:9f:72:00:
31:02:5b:4c:09:10:91:6d:28:3d:bc:f6:d3:90:2e:db:16:40:
b8:e7:6f:6c:a8:93:59:84:fa:2d:7a:d1:a0:45:01:bb:4e:82:
4e:1b:62:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:10:14 2024 by rpki-client on console-ams.rpki-client.org