Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/08FDAA665A9911EE9FF78F214AD9E6FC.roa
File: 08FDAA665A9911EE9FF78F214AD9E6FC.roa (raw, json)
Hash identifier: j2zkZX9vmimwsY5p28FBWe+e1W0z4dEFlpr32IwMAp4=
Subject key identifier: CA:21:0B:8C:FB:01:0D:70:2D:C6:6A:49:C6:88:6D:0F:44:95:2B:7F
Certificate issuer: /CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Certificate serial: 0423
Authority key identifier: E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/08FDAA665A9911EE9FF78F214AD9E6FC.roa
Signing time: Sun 24 Sep 2023 05:13:02 +0000
ROA not before: Sun 24 Sep 2023 05:12:59 +0000
ROA not after: Sun 24 Sep 2028 05:12:59 +0000
asID: 37228
IP address blocks: 41.74.160.0/20 maxlen: 20
41.74.160.0/22 maxlen: 22
41.74.163.0/24 maxlen: 24
41.74.164.0/22 maxlen: 22
41.74.166.0/24 maxlen: 24
41.74.167.0/24 maxlen: 24
41.74.168.0/22 maxlen: 22
41.74.168.0/23 maxlen: 23
41.74.168.0/24 maxlen: 24
41.74.170.0/23 maxlen: 23
41.74.172.0/22 maxlen: 22
41.74.172.0/23 maxlen: 23
41.74.172.0/24 maxlen: 24
41.74.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.mft
rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1059 (0x423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Validity
Not Before: Sep 24 05:12:59 2023 GMT
Not After : Sep 24 05:12:59 2028 GMT
Subject: CN=650fc55e-bd27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:6c:88:85:c6:5c:f7:b8:69:7f:36:2c:be:
b5:64:94:2c:f7:ed:07:2b:e9:f9:00:82:1f:ca:24:
9a:69:5a:3f:91:2b:59:80:47:d5:41:5e:1f:2c:be:
b0:a3:e3:ce:a9:94:a5:8b:0c:2e:09:b2:f3:c8:50:
65:15:27:82:76:93:b8:b6:07:7f:0f:54:0f:a3:ca:
3d:e9:e0:39:e9:70:97:73:da:f5:5b:56:70:f5:15:
17:c0:46:87:9d:e3:85:3b:21:55:14:cc:1c:63:c0:
05:4d:e6:63:f4:0c:aa:49:53:cb:fa:2d:60:4d:2d:
41:06:85:cb:04:21:e1:9a:d1:b0:4b:db:28:2f:6f:
40:16:0c:62:2e:6c:b6:65:e6:cf:92:5b:4b:c2:26:
96:10:31:88:b6:c6:ed:65:91:c9:4f:22:70:b1:f6:
22:be:2f:56:39:1f:e6:15:7e:9a:8d:84:cf:d1:6c:
15:87:5e:41:62:8f:71:d6:9e:6d:1a:4d:a4:5f:13:
06:67:58:fa:45:a0:0e:e2:c0:d2:82:7c:97:f3:ee:
b6:14:43:e0:5a:16:a6:ad:26:f9:0b:6a:a7:2f:65:
b3:27:e9:30:0f:72:85:c8:88:2e:11:e6:75:12:14:
3e:a1:71:c9:65:2f:53:cb:b3:d1:20:77:ea:e9:16:
c4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:21:0B:8C:FB:01:0D:70:2D:C6:6A:49:C6:88:6D:0F:44:95:2B:7F
X509v3 Authority Key Identifier:
keyid:E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/08FDAA665A9911EE9FF78F214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.74.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:81:03:e7:f0:41:1c:8c:59:86:67:e9:66:33:32:a6:3b:af:
34:41:19:5b:66:0c:dd:f1:6d:4c:71:e0:51:b8:69:6f:33:58:
40:85:b6:03:c7:ab:6d:1c:3c:a4:09:31:1d:f7:9a:34:39:ad:
cf:36:ff:7e:99:74:fc:61:c0:b2:03:8c:4c:7c:7a:b4:b4:53:
2c:be:dd:e6:7e:b3:81:60:64:2b:f5:4a:cc:2d:ed:bb:fc:39:
fb:b6:1a:63:0f:7a:73:f0:b5:d5:d5:ea:60:00:90:29:32:f3:
71:da:9a:56:f4:02:fd:cd:61:39:73:67:a0:1f:d6:13:1f:00:
a8:ef:39:e3:31:6e:8b:5c:f7:80:94:b1:6b:6d:f7:e8:49:a7:
1d:93:2f:4d:8c:c4:79:b4:cb:16:2c:0d:42:f3:e9:25:a4:87:
7c:5a:02:02:52:6f:25:de:2c:92:c1:97:cb:e8:4d:11:a0:6a:
93:3c:40:d7:ac:e3:dc:e0:01:14:41:3b:27:65:8b:74:da:f0:
e1:6f:d8:78:96:a0:7e:66:c5:eb:25:d9:b8:4b:92:d4:6a:1f:
de:d0:ad:d0:9c:74:df:ff:b4:77:b9:64:b7:43:51:2b:3c:47:
64:07:9e:a3:b1:3f:ce:30:e0:21:82:10:4f:a3:e6:f9:df:8e:
a0:98:09:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org