Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/05AE8E624BB811ECB8B77047D8A014CE.roa
File: 05AE8E624BB811ECB8B77047D8A014CE.roa (raw, json)
Hash identifier: IqZdrn6PDd5tCiFmENh9gtBL/vqPbtxvIIhISM2npRA=
Subject key identifier: 25:D4:81:D1:F4:EB:EF:3A:84:BA:BB:BE:5E:50:6B:E8:21:BE:EC:95
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: 010C
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/05AE8E624BB811ECB8B77047D8A014CE.roa
Signing time: Mon 22 Nov 2021 17:17:08 +0000
ROA not before: Mon 22 Nov 2021 17:17:05 +0000
ROA not after: Sat 22 Nov 2031 17:17:05 +0000
asID: 36994
IP address blocks: 41.10.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268 (0x10c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Validity
Not Before: Nov 22 17:17:05 2021 GMT
Not After : Nov 22 17:17:05 2031 GMT
Subject: CN=619bd094-58ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:72:33:95:f9:c0:51:17:7e:06:fb:7e:b9:e3:
50:6f:af:85:2f:26:d8:ea:5b:a7:14:94:fb:9f:7c:
a2:76:d9:d9:c8:50:1d:cc:95:bf:ca:8a:de:6e:ef:
53:16:28:17:86:ae:a6:42:f8:37:bb:ad:24:8b:19:
f4:bd:59:03:f7:fb:8e:a5:a0:2e:2d:00:35:15:96:
84:77:df:67:1c:d4:1b:48:50:8a:b7:5b:f5:70:1d:
40:e5:0e:1d:69:32:11:0e:54:12:7d:d1:1b:34:b3:
7f:02:5a:2c:19:42:2a:f3:b0:dc:b5:0a:45:d6:f1:
63:dd:65:d0:4b:ff:4a:96:de:10:b6:af:9b:27:32:
c1:56:fd:21:a5:96:b3:c3:37:9e:5b:ff:ac:b0:f1:
5c:7d:aa:f5:c8:32:78:6b:a6:73:8b:06:7b:d2:b6:
1d:56:95:4c:cb:b8:0e:39:9c:55:97:ff:30:fa:6c:
78:6e:c8:4c:2a:a8:c0:b9:c6:98:14:ba:94:12:3d:
cd:0a:06:79:52:ed:15:eb:98:b5:6f:a0:6d:0b:5b:
52:7f:23:26:63:9a:83:76:bc:17:50:e8:70:b9:4e:
96:06:22:29:9f:69:15:c6:5f:75:d0:ec:f9:e2:dd:
dd:a7:d9:c0:3f:56:db:43:dd:d3:24:74:aa:54:c8:
33:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D4:81:D1:F4:EB:EF:3A:84:BA:BB:BE:5E:50:6B:E8:21:BE:EC:95
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/05AE8E624BB811ECB8B77047D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.10.0.0/16
Signature Algorithm: sha256WithRSAEncryption
11:c1:e1:b1:7a:79:59:5b:4d:92:ca:65:28:2f:56:ee:02:7c:
8a:a1:25:3c:ba:96:0a:61:fc:4d:1f:05:5a:cb:2a:75:af:fa:
69:68:b8:6c:75:01:61:59:41:83:4b:bf:1e:65:88:83:60:e9:
86:e8:72:9b:d9:92:19:f6:c6:de:ac:c6:25:09:75:b3:8f:5a:
c5:b9:01:e4:ea:b6:91:e8:82:2f:53:3e:ca:55:0f:75:c0:c2:
b2:10:03:77:6a:19:2e:d0:92:0e:b2:a0:30:0b:16:87:1c:cc:
8e:c0:31:cc:93:4c:69:67:76:18:a2:b1:6d:33:b0:38:f6:0f:
80:b2:19:13:8b:25:f1:a0:1f:a3:6e:61:0d:73:20:66:9c:ce:
49:f0:14:13:5a:60:3a:b6:60:95:73:29:bd:b6:63:a8:7f:84:
bf:f3:6e:01:04:31:1a:cd:7f:4b:a0:2b:cc:c2:4a:c3:3c:6e:
54:30:1b:63:a6:77:83:29:8c:56:13:0c:ab:7a:d3:bd:1b:fb:
f3:f0:c2:ea:7a:d1:80:94:50:5d:ea:ba:dd:45:c2:83:57:73:
57:04:81:5c:1e:4b:d9:74:d8:7a:c3:30:6d:74:50:42:ea:d9:
88:93:6b:cb:cc:f1:49:cc:7b:41:53:89:40:2b:f9:3e:ae:85:
bc:4d:ad:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:15:12 2024 by rpki-client on console-fra.rpki-client.org