Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/2A0F92DAF65311EABA5EBE2FF8AEA228.roa
File: 2A0F92DAF65311EABA5EBE2FF8AEA228.roa (raw, json)
Hash identifier: THMJd5DgFhWv0Jk+1OcRnImey6Na8xQ3AsnqGvmdW70=
Subject key identifier: B1:21:2B:C1:34:3A:96:BA:BF:98:5C:EB:0A:B8:86:5A:37:E1:F6:62
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 0605
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/2A0F92DAF65311EABA5EBE2FF8AEA228.roa
Signing time: Mon 14 Sep 2020 06:26:04 +0000
ROA not before: Mon 14 Sep 2020 06:26:00 +0000
ROA not after: Fri 26 Sep 2025 06:26:00 +0000
asID: 206283
IP address blocks: 41.193.240.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1541 (0x605)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Sep 14 06:26:00 2020 GMT
Not After : Sep 26 06:26:00 2025 GMT
Subject: CN=5f5f0cfc-f97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:86:15:2c:c4:ae:e8:43:3d:ad:31:33:25:
df:9c:d9:a0:ec:b4:6b:ec:7a:d2:25:9a:ed:19:b7:
58:bb:e8:88:a6:60:bd:b3:73:51:c9:09:61:32:9e:
51:d5:fe:24:9f:0c:af:2f:14:2e:fa:1e:81:7c:a2:
b5:b8:05:9c:9f:54:4f:86:bf:e0:8e:96:14:da:0e:
de:5b:ad:1c:31:1f:54:bb:fd:76:b3:81:c0:59:40:
ae:38:65:33:1f:6e:8e:c8:7c:d2:f3:a7:90:7f:dd:
6e:34:7d:06:f3:03:c7:32:71:f4:b5:f5:b3:8d:7d:
a4:de:1d:ae:67:8d:1e:64:9c:8d:ad:d3:e9:21:62:
e8:d7:61:70:3f:e2:dd:43:11:8c:b0:b0:29:26:31:
a9:6a:3f:2c:41:bb:60:e7:cc:e6:47:e7:b8:5b:0b:
d5:35:55:a7:60:8c:f0:41:62:41:dd:b1:e5:c3:3f:
2a:ff:37:77:44:28:4b:26:28:e2:0d:a2:1d:9d:27:
1a:59:81:cf:31:18:8c:02:82:6b:88:9e:98:ba:55:
c0:a8:cf:a4:31:a5:34:ec:6d:45:f5:50:eb:49:98:
15:ac:f7:06:6a:80:32:f3:04:db:e1:17:21:5f:bd:
87:7d:f0:48:d8:cd:c5:39:ea:ad:b9:5e:30:6b:8f:
a8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:21:2B:C1:34:3A:96:BA:BF:98:5C:EB:0A:B8:86:5A:37:E1:F6:62
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/2A0F92DAF65311EABA5EBE2FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.193.240.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:d7:93:17:4f:1b:a4:24:3d:fe:42:a0:03:c1:74:85:47:a3:
40:66:3a:33:7c:92:f8:be:67:07:c6:04:2a:1b:f5:96:be:ae:
b1:f0:1e:c1:93:ae:9c:9b:fe:36:ba:f3:8a:92:fa:c2:91:b4:
fb:11:de:a7:df:47:7b:03:0e:0d:ce:eb:01:2d:ba:8e:9d:6e:
18:75:10:66:7a:1e:3d:22:28:ca:29:50:fb:a4:1a:ca:12:bc:
98:cf:30:d4:75:40:1f:23:15:ba:b7:df:c3:cb:d2:c7:d6:d1:
31:e4:9a:c3:59:93:e8:5c:02:19:fd:41:50:05:24:ea:50:cb:
f2:8a:3c:5e:ed:42:d1:3a:22:05:6a:0e:58:32:06:eb:29:ed:
e2:03:b4:09:4f:b3:b2:17:28:ee:55:9f:7b:94:e4:de:45:27:
4a:12:f2:4f:60:1e:66:8e:dc:8c:b9:00:c8:8b:cb:73:aa:eb:
cc:85:0b:3c:b6:8a:7e:af:cb:be:57:45:88:e1:b9:09:af:c4:
06:6c:06:ea:f8:8e:33:14:a8:83:42:d5:37:c2:19:7d:14:66:
bb:25:21:28:0f:39:d8:d0:1b:50:69:ff:bc:2a:86:93:19:d3:
4e:53:35:89:55:fb:dc:f1:40:e8:99:81:94:02:25:53:24:0c:
63:41:b4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:52 2024 by rpki-client on console-fra.rpki-client.org