Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5B28A01A463811ECB5776C12D8A014CE.roa
File: 5B28A01A463811ECB5776C12D8A014CE.roa (raw, json)
Hash identifier: sw9X0bgyaC8iP6hm/pS3038w/pYcaM83WRGaPy6yt0M=
Subject key identifier: 77:AC:B7:3F:EF:0C:57:1E:F5:6D:AC:30:6A:6D:FE:94:63:DA:D9:B6
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: F3
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5B28A01A463811ECB5776C12D8A014CE.roa
Signing time: Mon 15 Nov 2021 17:20:40 +0000
ROA not before: Mon 15 Nov 2021 17:20:36 +0000
ROA not after: Sat 15 Nov 2031 17:20:36 +0000
asID: 36994
IP address blocks: 41.0.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 01:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243 (0xf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF
Validity
Not Before: Nov 15 17:20:36 2021 GMT
Not After : Nov 15 17:20:36 2031 GMT
Subject: CN=619296e8-db93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d7:e9:64:a0:ce:2a:84:46:70:d4:47:3f:e0:
73:7a:c1:29:16:07:ec:0c:5f:93:3a:77:5b:36:af:
fb:6d:af:ba:5d:b8:f0:f8:e4:16:03:46:4d:9c:6e:
4d:6b:aa:9e:a5:2a:e7:dc:27:70:09:6f:91:51:7c:
8f:35:e0:7b:14:cf:ad:bd:dd:86:b8:9d:ca:91:5c:
17:49:59:43:dd:7e:19:22:e1:38:03:20:97:f9:6a:
9d:e0:3a:6a:b0:3d:63:27:05:53:48:c0:f6:e5:ac:
bf:be:c0:57:56:c1:a6:70:7f:13:4c:11:3d:ff:0d:
99:9c:ff:5c:41:3d:56:dc:30:84:fb:f4:e9:8a:9c:
cc:01:cc:61:e6:b3:db:5f:14:95:b3:94:28:18:fe:
42:bf:8c:b1:6c:3b:71:13:e2:e1:76:ea:0a:e3:a6:
4e:80:0d:6f:4d:67:c7:95:e1:9c:0a:42:5c:7a:f3:
0c:fb:20:10:d0:cf:ca:40:6f:93:80:56:ba:96:6b:
da:fb:96:c2:5c:ab:b0:aa:d0:94:6c:5d:8e:dc:67:
13:11:af:f4:01:73:f0:4a:fa:d7:f0:4a:90:aa:c0:
82:93:c5:ba:5c:c6:bd:54:45:7a:62:6f:6d:c0:0a:
1d:bd:aa:98:84:78:e9:ae:8b:e2:e3:04:27:38:6b:
0f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AC:B7:3F:EF:0C:57:1E:F5:6D:AC:30:6A:6D:FE:94:63:DA:D9:B6
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/5B28A01A463811ECB5776C12D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:02:a2:6e:1a:31:9f:43:d2:73:8a:1c:a7:6a:72:c7:2a:d6:
f5:cb:8a:9b:b4:60:24:de:54:a1:70:64:1b:24:22:6b:07:64:
bb:c9:34:9e:3f:e5:9c:e6:f3:a5:f6:3a:56:ba:07:f9:d9:2f:
c7:0b:d0:a7:c7:58:94:77:ce:89:e4:b5:2b:a9:4d:d4:b0:dd:
0c:c8:67:e3:0a:a4:a8:27:e5:55:aa:b3:46:ca:96:e3:00:1d:
7e:60:eb:0c:a4:91:c6:84:05:55:8d:db:5a:7b:92:77:2e:e0:
3c:47:2e:1e:67:2a:3d:c0:7a:55:dc:51:57:3a:4e:f4:88:3a:
6d:af:75:3c:21:ed:f1:ec:d8:f6:5a:19:13:0e:79:a9:c0:46:
c9:bb:ae:6c:f4:e1:95:ef:fc:05:53:1e:76:03:79:db:7a:fd:
3d:45:b8:ab:8a:6c:ee:70:9e:71:d9:df:18:8e:d2:e4:9e:4c:
66:49:53:f7:08:37:68:d3:bf:13:45:e7:41:34:13:13:be:cc:
c3:3f:59:d5:17:f8:97:69:ef:e7:78:e3:f6:61:c6:e0:4b:c9:
b9:42:01:7a:95:a9:b9:8c:1e:f7:cb:48:0a:a3:f2:28:4e:94:
f1:f3:78:7a:14:fa:af:7a:c0:59:00:c1:76:93:1a:71:e4:28:
6d:73:f8:c3
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDcxMkZBRjExMC8GA1UEBRMoM0Q1NUM3ODRFQTE3OTEyRjBFOTYwQTI1QzZDQTky
MEUxMDAyMzAwQTAeFw0yMTExMTUxNzIwMzZaFw0zMTExMTUxNzIwMzZaMBgxFjAU
BgNVBAMMDTYxOTI5NmU4LWRiOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC21+lkoM4qhEZw1Ec/4HN6wSkWB+wMX5M6d1s2r/ttr7pduPD45BYDRk2c
bk1rqp6lKufcJ3AJb5FRfI814HsUz6293Ya4ncqRXBdJWUPdfhki4TgDIJf5ap3g
OmqwPWMnBVNIwPblrL++wFdWwaZwfxNMET3/DZmc/1xBPVbcMIT79OmKnMwBzGHm
s9tfFJWzlCgY/kK/jLFsO3ET4uF26grjpk6ADW9NZ8eV4ZwKQlx68wz7IBDQz8pA
b5OAVrqWa9r7lsJcq7Cq0JRsXY7cZxMRr/QBc/BK+tfwSpCqwIKTxbpcxr1URXpi
b23ACh29qpiEeOmui+LjBCc4aw/jAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUd6y3
P+8MVx71bawwam3+lGPa2bYwHwYDVR0jBBgwFoAUPVXHhOoXkS8OlgolxsqSDhAC
MAowDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQ3MTJGL0U5QzRCQUEyQTBFODExRUI4ODk1OEQxMEY4QUVBMjI4L1BWWEho
T29Ya1M4T2xnb2x4c3FTRGhBQ01Bby5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BWWEhoT29Ya1M4T2xnb2x4c3FTRGhBQ01Bby5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQ3MTJGL0U5QzRCQUEyQTBFODExRUI4ODk1OEQxMEY4
QUVBMjI4LzVCMjhBMDFBNDYzODExRUNCNTc3NkMxMkQ4QTAxNENFLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwApADANBgkqhkiG9w0BAQsF
AAOCAQEAbAKibhoxn0PSc4ocp2pyxyrW9cuKm7RgJN5UoXBkGyQiawdku8k0nj/l
nObzpfY6VroH+dkvxwvQp8dYlHfOieS1K6lN1LDdDMhn4wqkqCflVaqzRsqW4wAd
fmDrDKSRxoQFVY3bWnuSdy7gPEcuHmcqPcB6VdxRVzpO9Ig6ba91PCHt8ezY9loZ
Ew55qcBGybuubPThle/8BVMedgN523r9PUW4q4ps7nCecdnfGI7S5J5MZklT9wg3
aNO/E0XnQTQTE77Mwz9Z1Rf4l2nv53jj9mHG4EvJuUIBepWpuYwe98tICqPyKE6U
8fN4ehT6r3rAWQDBdpMaceQobXP4ww==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:46 2025 by rpki-client