Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5A777F624BB811EC988AD647D8A014CE.roa
File: 5A777F624BB811EC988AD647D8A014CE.roa (raw, json)
Hash identifier: 1YHFKzIw60VPhLGMqgaM8DC3X+uEENoWlpBODyIvx+8=
Subject key identifier: A1:F4:CE:FB:E2:56:3A:37:DD:18:F6:41:41:D0:BA:85:E8:31:3A:DE
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: 010E
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5A777F624BB811EC988AD647D8A014CE.roa
Signing time: Mon 22 Nov 2021 17:19:31 +0000
ROA not before: Mon 22 Nov 2021 17:19:27 +0000
ROA not after: Sat 22 Nov 2031 17:19:27 +0000
asID: 36994
IP address blocks: 41.23.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270 (0x10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Validity
Not Before: Nov 22 17:19:27 2021 GMT
Not After : Nov 22 17:19:27 2031 GMT
Subject: CN=619bd122-b20b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:77:21:92:1d:e9:ee:8f:69:83:e8:d6:ac:9e:
02:fe:6d:68:f8:de:8d:11:a2:32:0f:c9:29:70:ce:
7a:4c:82:10:02:be:a8:60:90:07:34:89:9c:28:e9:
36:7b:21:a8:95:a8:3c:88:a3:42:f1:77:a2:5d:a0:
9a:05:a4:fe:59:74:7a:cb:20:d3:9c:ff:7b:32:40:
44:dd:85:88:ba:29:91:ca:27:83:a7:8d:d9:72:88:
35:1a:8a:e2:45:26:a8:03:f0:d3:7a:c2:f9:a8:c1:
29:61:7d:fe:ce:d1:9b:ee:16:4c:7a:78:8c:77:f7:
e4:c0:95:d5:35:95:9e:a4:5a:27:9d:a2:4a:fb:69:
79:c2:fe:2d:4b:41:d8:51:86:c2:19:24:92:54:9d:
85:4b:97:aa:21:89:a4:b5:e8:1b:c6:77:48:a3:bc:
25:27:28:70:2a:c1:af:c6:a3:d1:49:c5:66:11:84:
b0:68:fd:60:eb:47:fc:02:70:e2:87:11:c1:db:b8:
31:aa:ab:a9:e8:6e:b3:c7:dd:db:49:4b:5d:c2:5f:
ac:6c:3a:cb:ed:90:76:9a:c7:f8:93:3f:2c:7b:58:
2c:6e:42:bc:7f:c3:c5:58:56:cf:42:84:34:17:b2:
59:83:5a:e8:e3:94:81:0b:b2:15:bd:d7:41:a2:65:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F4:CE:FB:E2:56:3A:37:DD:18:F6:41:41:D0:BA:85:E8:31:3A:DE
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5A777F624BB811EC988AD647D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.23.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:62:21:b0:09:62:46:25:2b:58:db:a6:84:a4:94:13:61:c8:
5a:c4:d0:cb:37:9e:0d:4b:d2:5c:b8:bf:19:fa:39:03:50:79:
23:c3:fb:02:7a:19:bc:0d:b0:98:91:91:28:2a:4f:3c:57:2f:
2b:44:83:42:8d:f6:cc:5a:0e:54:2d:f5:ec:83:b9:43:ee:a8:
3d:47:b5:76:c3:1d:a3:c5:2b:d8:1d:ed:7a:46:81:78:65:e5:
9a:d8:1f:11:0e:b5:15:5c:77:b8:8f:41:5a:67:a0:74:42:04:
32:e5:ee:60:b6:be:89:39:3e:68:7e:03:8b:a1:3e:e8:79:9d:
ee:4c:0e:f9:e0:a0:5a:4b:05:1b:1a:38:7f:9a:78:51:1d:6f:
b1:12:63:f1:e5:a8:c9:ec:a9:0c:0a:62:11:a7:84:e0:07:4e:
1e:fd:69:d5:3c:66:d5:d0:df:35:20:2e:06:4f:e3:5a:d2:07:
70:a1:aa:3b:06:bb:70:e2:98:ae:75:43:20:f5:e8:fb:59:96:
88:ec:37:2f:bc:0b:84:79:6d:25:43:e3:d7:83:e4:53:30:f9:
53:a5:cc:e8:46:e4:16:06:0e:2a:fe:69:a0:ad:bb:6f:63:59:
c7:1e:ab:49:04:07:f8:ab:2c:ec:5e:9e:b5:66:65:cf:a8:61:
46:df:91:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:15:12 2024 by rpki-client on console-fra.rpki-client.org