Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/08688A10D03C11EBADCA1848F8AEA228.roa
File: 08688A10D03C11EBADCA1848F8AEA228.roa (raw, json)
Hash identifier: UULTXrL85+bezl68GtpqLoWAg4A3nsYr6IyfXGM6tP8=
Subject key identifier: 0F:B5:8C:7C:F5:FA:0F:E1:C0:6D:4D:AF:3B:78:A4:7F:7C:8B:76:01
Certificate issuer: /CN=F3627EC7AF/serialNumber=16F298A5700A954AF7548360EE40312B4415F289
Certificate serial: 0B
Authority key identifier: 16:F2:98:A5:70:0A:95:4A:F7:54:83:60:EE:40:31:2B:44:15:F2:89
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/08688A10D03C11EBADCA1848F8AEA228.roa
Signing time: Fri 18 Jun 2021 13:49:42 +0000
ROA not before: Fri 18 Jun 2021 13:49:37 +0000
ROA not after: Mon 30 Jun 2025 13:49:37 +0000
asID: 29918
IP address blocks: 41.203.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.mft
rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627EC7AF/serialNumber=16F298A5700A954AF7548360EE40312B4415F289
Validity
Not Before: Jun 18 13:49:37 2021 GMT
Not After : Jun 30 13:49:37 2025 GMT
Subject: CN=60cca476-5947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:fc:5b:89:cf:b8:84:bf:55:d8:cf:96:93:
88:aa:27:f1:31:2d:54:41:3c:ca:fc:ab:01:4e:2d:
92:58:8a:97:fc:0f:57:dc:d7:29:13:52:3a:34:48:
7a:8b:72:92:90:5e:9c:62:fd:1c:5e:d3:3f:cb:cb:
64:15:3f:78:35:5e:e6:19:21:57:6b:9a:53:eb:69:
e6:1c:c1:6d:77:14:ba:28:3d:96:ee:63:96:00:a7:
ee:f2:6d:76:cb:c4:2e:e4:c8:91:98:ae:fe:4b:82:
8a:6d:1c:e6:da:90:08:d3:8d:ba:33:5e:2a:e5:aa:
fe:83:eb:e3:99:89:85:87:17:48:e0:1f:3d:4b:b5:
71:38:9e:a6:57:80:c7:69:0b:b0:4b:db:d2:da:c9:
fa:89:aa:44:83:d1:d4:d0:54:0d:03:a8:63:8f:61:
1c:c9:c0:96:be:5e:e1:a9:17:a2:18:8d:86:63:fc:
12:18:cd:3e:f1:54:62:e8:5b:ef:da:5d:ed:09:80:
a6:cf:31:4e:8c:ad:14:1e:37:66:12:61:64:de:df:
5b:d8:dd:61:bf:45:31:dd:1b:8a:6e:ce:ad:2d:64:
4a:5f:bc:ae:c1:1d:9f:5c:88:07:f3:ae:1f:d5:4b:
e2:9c:96:54:8f:6b:94:9e:d2:38:7e:30:cb:01:e8:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B5:8C:7C:F5:FA:0F:E1:C0:6D:4D:AF:3B:78:A4:7F:7C:8B:76:01
X509v3 Authority Key Identifier:
keyid:16:F2:98:A5:70:0A:95:4A:F7:54:83:60:EE:40:31:2B:44:15:F2:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/FvKYpXAKlUr3VINg7kAxK0QV8ok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FvKYpXAKlUr3VINg7kAxK0QV8ok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627EC7/6429C7D6D03911EB827F7B44F8AEA228/08688A10D03C11EBADCA1848F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.203.160.0/20
Signature Algorithm: sha256WithRSAEncryption
14:7d:4b:db:47:14:c2:e9:b7:70:73:67:ed:2e:f8:27:09:0b:
da:d0:b3:7f:15:00:b8:67:37:5c:36:fd:a8:5c:2b:09:c2:66:
97:86:8f:47:a7:3d:b1:16:ff:3b:d5:7a:fa:18:3b:80:45:51:
4d:94:44:8b:5e:7c:f3:2f:a2:33:e6:17:28:35:46:08:e3:a7:
08:d5:4a:2c:dd:b6:14:d9:95:3b:11:a7:63:11:b5:bf:ba:bf:
17:79:c3:3d:86:07:39:9c:34:0b:d1:d5:e1:4c:11:99:1a:e8:
32:c3:7c:73:c3:ea:9e:1d:a0:3f:ee:8a:55:ba:c4:9f:39:d7:
e3:f8:50:1e:22:f3:be:e6:52:f9:36:be:7e:06:ee:9a:1f:43:
e1:f1:fb:ef:e3:89:2c:c5:06:2e:32:d2:7e:7b:3a:1f:bb:d0:
ff:04:c2:cd:70:58:47:e8:12:70:a1:97:12:b2:4d:a3:15:b9:
c7:eb:96:91:59:ff:bd:89:03:5f:5b:66:1b:c8:e3:bc:12:d6:
77:4d:7b:51:3b:07:03:ff:55:a1:15:28:d0:65:b5:c7:b8:51:
4e:59:0e:cb:0f:d5:81:eb:8e:25:ce:9d:c2:66:1f:08:4e:d8:
5b:e9:4b:51:43:89:a7:00:2d:5a:9f:13:9a:f8:c9:26:da:cc:
aa:29:1a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:18 2024 by rpki-client on console-ams.rpki-client.org