Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/F25C9A0249FE11ED99C68D94F1222468.roa
File: F25C9A0249FE11ED99C68D94F1222468.roa (raw, json)
Hash identifier: Vf9lw2qgHPDTfNIjpz7j0MfeufKn0mia6LXbqdEhm8E=
Subject key identifier: BC:63:A2:47:8B:8E:97:A8:87:F3:56:0A:8C:EF:F4:F8:5C:B6:13:4D
Certificate issuer: /CN=F3642818AF/serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Certificate serial: 02
Authority key identifier: 8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/F25C9A0249FE11ED99C68D94F1222468.roa
Signing time: Wed 12 Oct 2022 07:24:45 +0000
ROA not before: Wed 12 Oct 2022 07:24:40 +0000
ROA not after: Mon 13 Oct 2025 07:24:40 +0000
asID: 36890
IP address blocks: 41.186.0.0/16 maxlen: 24
196.44.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.mft
rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642818AF/serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Validity
Not Before: Oct 12 07:24:40 2022 GMT
Not After : Oct 13 07:24:40 2025 GMT
Subject: CN=63466bbd-db16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:8f:98:47:91:5e:99:b7:25:32:33:7c:e6:
3c:aa:33:c0:b1:23:28:f7:6b:08:28:3c:61:1b:79:
be:a9:22:c0:ae:8a:02:11:d6:ca:4c:50:2b:11:a6:
69:c1:49:3f:05:df:87:63:fe:d4:66:aa:f0:a4:ef:
46:77:70:87:65:c4:47:5f:1f:0a:f6:e7:86:1e:30:
85:36:e8:60:4e:69:f5:a2:a2:69:1b:db:38:09:56:
a6:dd:dc:56:7f:9f:fb:91:9f:e8:b9:9f:a9:bc:c9:
d5:72:c5:45:64:09:be:34:bf:a7:16:28:26:96:e8:
90:c1:37:1c:f3:85:84:6a:16:68:8e:a9:d9:41:01:
ee:ac:da:dc:ce:31:28:a0:ce:f4:75:31:f7:46:ba:
fe:7f:ca:3a:2e:02:8d:db:de:93:34:35:ac:95:9f:
58:8c:4a:01:dc:b7:43:de:b1:c0:62:b6:c4:5e:65:
d6:7b:2f:9d:81:47:72:bd:6e:c7:21:da:c8:56:3c:
65:51:7b:3f:49:76:3e:5f:00:de:72:f7:b6:bf:26:
29:1b:bd:e9:ee:73:3a:44:29:99:74:09:10:93:51:
fd:ab:8e:e6:a1:70:82:8b:c3:5a:b4:a8:43:a2:d6:
f9:19:51:64:69:8d:31:29:55:eb:a0:fb:d9:18:fa:
6b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:63:A2:47:8B:8E:97:A8:87:F3:56:0A:8C:EF:F4:F8:5C:B6:13:4D
X509v3 Authority Key Identifier:
keyid:8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/F25C9A0249FE11ED99C68D94F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.186.0.0/16
196.44.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:94:f9:01:0e:f6:7a:5a:dc:a6:88:f6:65:7d:71:0b:5f:44:
65:2d:c9:fd:6b:fe:93:74:bf:71:f1:46:b5:fa:d1:66:3f:c2:
85:55:2a:f5:5c:94:89:69:61:0e:7e:2b:b0:4b:7b:86:27:5a:
0f:07:2c:fb:e9:60:50:9a:ab:07:cc:a9:ec:46:d1:4c:20:7c:
23:b1:e3:62:fe:b8:bc:18:77:8b:27:ab:87:4d:36:e3:e8:a3:
70:3a:5a:52:71:ea:dd:99:50:99:ab:04:51:1d:1f:7e:87:22:
23:32:18:ca:6d:bd:3c:be:82:e5:99:13:c2:15:f9:67:7c:5d:
a3:39:91:a8:b4:c3:01:01:29:5b:95:2f:0d:79:9d:cf:46:e5:
1c:d6:5a:29:58:eb:14:de:b5:36:1e:03:f6:cb:46:a2:aa:d3:
2d:1f:db:55:49:be:62:a3:16:f9:23:92:e4:00:eb:68:62:cb:
2a:32:80:8f:84:c8:35:04:f6:be:f0:04:c0:8d:6c:3e:4c:06:
fd:5a:9f:c5:b9:1c:91:15:86:6d:83:cc:68:5d:a8:f9:01:15:
48:dc:ca:7c:81:71:29:8b:eb:b3:f1:d7:14:2d:cc:e9:9c:f7:
4c:9b:28:82:db:d6:22:a2:a9:62:e1:38:68:3f:e5:95:12:ed:
aa:82:65:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org