Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FF8AE3A2D27511EBA434AC13F8AEA228.roa
File: FF8AE3A2D27511EBA434AC13F8AEA228.roa (raw, json)
Hash identifier: 5+HC4jv4qZLLiwXnjuwHxqCdddSlDf0nEOGWfUV5PQQ=
Subject key identifier: F8:BE:68:6E:0A:00:4E:DB:07:7F:AF:B3:A1:2A:D5:E6:EF:11:08:33
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 073B
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FF8AE3A2D27511EBA434AC13F8AEA228.roa
Signing time: Mon 21 Jun 2021 09:49:41 +0000
ROA not before: Wed 23 Jun 2021 09:49:34 +0000
ROA not after: Wed 25 Jun 2025 09:49:34 +0000
asID: 11845
IP address blocks: 41.193.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1851 (0x73b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 23 09:49:34 2021 GMT
Not After : Jun 25 09:49:34 2025 GMT
Subject: CN=60d060b5-4307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:28:69:a9:a9:ef:fb:10:23:a7:3e:4d:05:53:
04:22:6c:33:c1:ff:a0:b3:43:f1:98:70:e4:97:ae:
6b:8d:37:b3:d9:60:b4:3a:e1:f0:a6:e9:b7:b0:73:
46:be:70:19:f0:0a:67:e5:44:af:97:c7:37:cc:5a:
20:df:31:d1:98:62:bc:d1:52:b3:a6:c4:24:31:03:
4b:17:ff:6a:dc:73:11:51:75:22:fc:2c:3c:cc:ea:
33:73:43:49:c8:57:5e:6a:db:a6:9f:ee:7d:3c:69:
44:6c:00:a2:3b:c1:fa:67:33:97:86:00:80:25:a4:
9f:81:d6:23:8d:4f:61:f2:db:77:3c:4c:ff:86:4b:
f0:6c:0d:1b:1e:cb:f0:96:ca:97:b2:98:1b:32:db:
9b:a5:29:1d:55:37:35:77:db:87:b4:d7:79:3b:10:
27:e0:04:69:a3:f1:e8:b2:2c:3d:1d:d5:a5:ac:e8:
4f:6d:6e:2b:ad:e9:09:9f:fa:52:8a:ca:3e:f8:57:
bf:b0:b7:81:9d:6a:a0:7c:67:91:bc:39:32:38:c2:
b6:39:f8:97:f2:8e:06:ce:45:01:25:86:00:79:89:
43:ec:34:5d:cb:09:05:33:d1:2c:4f:51:55:ec:0d:
31:e0:69:70:a1:0c:32:e8:65:c1:1e:93:f2:3f:b6:
f8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BE:68:6E:0A:00:4E:DB:07:7F:AF:B3:A1:2A:D5:E6:EF:11:08:33
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/FF8AE3A2D27511EBA434AC13F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.193.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:96:86:1a:e7:97:75:8d:3c:5a:98:a6:11:f6:0d:36:fd:c2:
a5:68:03:a3:8d:15:d2:fa:91:c9:55:f1:d3:c3:c0:54:ea:3c:
8c:ac:a4:2b:da:07:73:ee:41:14:50:d3:d2:6f:58:d3:54:1c:
9a:e8:b6:eb:f0:9b:6a:dc:1f:10:53:c8:f6:05:9a:86:73:c1:
5f:d9:c7:22:37:64:a7:66:5f:47:b7:41:20:26:61:92:10:2a:
af:88:70:91:a5:c3:7e:39:53:69:53:a4:13:a4:c0:de:e9:a3:
9f:57:5b:7e:7f:bf:57:58:be:09:97:c4:08:f0:97:4a:0e:ac:
27:a3:20:67:c2:55:47:f1:fc:3e:f4:bb:39:fe:1e:e0:95:0f:
63:af:d0:97:50:c1:3d:a0:f1:c8:3a:fd:f8:6a:89:3f:58:26:
4d:46:17:0b:35:dc:1f:bd:4a:4d:64:ed:3a:0b:bc:80:21:c0:
47:40:ea:2d:74:30:a7:17:65:49:4e:01:04:d4:ca:79:07:92:
4f:00:6f:3a:2d:d1:85:64:65:68:c1:db:d4:4c:24:49:11:27:
c6:ca:bd:dc:aa:ea:11:af:8c:4d:2b:1f:e1:b3:f4:ce:74:d5:
4a:e8:a2:8b:08:4d:4f:d9:26:3b:a2:da:51:4f:a3:6b:6e:41:
83:ce:b6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:18 2024 by rpki-client on console-ams.rpki-client.org