Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/0128E346323511EEAFDF97174AD9E6FC.roa
File: 0128E346323511EEAFDF97174AD9E6FC.roa (raw, json)
Hash identifier: HvZoWAKBZ0qFoA5O1kY+fmoka8I/gcaS+MwLFG2dEWo=
Subject key identifier: 39:9E:E6:84:13:3F:B6:32:9B:8F:13:96:94:49:55:14:E0:1D:98:C3
Certificate issuer: /CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Certificate serial: 03E5
Authority key identifier: E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/0128E346323511EEAFDF97174AD9E6FC.roa
Signing time: Thu 03 Aug 2023 19:36:13 +0000
ROA not before: Thu 03 Aug 2023 19:36:08 +0000
ROA not after: Sat 03 Aug 2030 19:36:08 +0000
asID: 37619
IP address blocks: 41.197.0.0/16 maxlen: 16
41.197.0.0/20 maxlen: 20
41.197.16.0/20 maxlen: 20
41.197.96.0/20 maxlen: 20
41.197.128.0/20 maxlen: 20
41.197.240.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.mft
rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 997 (0x3e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Validity
Not Before: Aug 3 19:36:08 2023 GMT
Not After : Aug 3 19:36:08 2030 GMT
Subject: CN=64cc01ad-d988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:7d:72:28:9b:79:c1:15:0a:88:26:fc:e7:
e6:8c:b1:56:0e:43:8d:82:ca:a2:83:6a:eb:82:28:
b3:d1:db:4d:f6:56:e2:2a:49:7d:6b:a1:5f:53:f6:
17:2a:1b:bd:ed:d4:b5:08:70:0b:3d:0b:d3:13:f3:
94:4d:3d:0c:48:94:a2:7a:ed:e9:61:8c:83:03:24:
bd:ca:5c:e8:e2:aa:67:0f:aa:4e:0b:09:a3:69:ec:
8f:6f:37:36:cf:46:ae:77:33:5d:d2:e8:19:17:67:
61:59:fa:c8:c8:35:b9:47:38:b5:fa:b0:d5:d5:e4:
e1:97:3f:d9:14:04:3f:b4:46:23:cf:10:a9:0c:09:
d6:ea:d6:59:b0:ac:f0:e8:a7:93:44:89:d3:64:2e:
d5:ca:fc:c7:fe:a9:d3:6b:22:44:b1:2b:cd:3b:1d:
cb:b0:33:5e:65:bf:44:de:67:63:44:ff:b9:2e:bd:
08:af:bc:33:1b:95:f3:72:27:31:d1:39:52:1b:fb:
f4:94:4d:76:28:9e:8f:ed:85:b8:37:c8:da:b3:ba:
e5:85:63:52:31:33:e4:e1:c8:59:c7:03:84:d0:9c:
18:ca:35:a1:5c:77:d3:9b:f7:18:26:fe:18:42:c4:
2d:c0:6e:29:52:da:77:72:91:90:29:77:14:0f:e0:
18:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9E:E6:84:13:3F:B6:32:9B:8F:13:96:94:49:55:14:E0:1D:98:C3
X509v3 Authority Key Identifier:
keyid:E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/0128E346323511EEAFDF97174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.197.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:f7:f6:79:a9:1d:05:c4:ce:f2:a3:d3:c9:34:c2:ea:09:25:
92:9d:c8:90:6e:3d:d9:c8:2c:82:37:0a:30:9b:1b:f4:28:9c:
0f:42:d5:77:82:11:e9:ec:b8:77:6c:b2:17:8f:b2:03:37:76:
91:23:c1:81:32:cd:8c:88:81:60:87:d0:a9:6a:39:9a:34:18:
1c:18:6b:d7:e3:24:ab:44:97:65:74:d1:15:53:1a:4a:1a:c0:
ec:10:d2:6e:be:60:2e:a6:d9:79:96:90:81:46:90:2e:2a:9d:
60:ec:eb:c7:95:8e:b7:d2:ad:f6:a2:8e:75:65:ed:48:71:78:
66:52:f0:75:bb:14:8c:d9:14:ab:5a:82:2a:b8:aa:26:f1:ae:
60:5b:a3:b7:78:10:15:a9:6d:05:a0:9c:d5:ed:5c:dd:dd:15:
69:e4:b7:6c:37:e9:0c:58:19:bf:70:c6:34:5d:4d:3a:49:c9:
0d:0f:d6:e2:78:bc:4a:f2:15:e3:24:9d:a7:ff:ff:91:eb:74:
c9:16:00:e6:c8:a4:b4:1b:f0:b1:6d:c0:1c:89:79:ce:42:43:
32:fe:c5:04:3a:d4:83:9d:9f:27:aa:cf:04:fa:39:43:02:eb:
02:84:c9:cc:ea:59:49:3b:bd:9b:1c:5f:d2:83:54:d9:09:59:
42:a6:2e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:56:53 2024 by rpki-client on console-fra.rpki-client.org