Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/50E525E4457B11EEB9C84B4D4AD9E6FC.roa
File: 50E525E4457B11EEB9C84B4D4AD9E6FC.roa (raw, json)
Hash identifier: /3fCZ5M7gX+2d2oVslebu/Gi7jYTFXq9ULmP31irCn8=
Subject key identifier: AB:73:DD:92:E0:53:66:24:6F:49:67:B4:F3:7D:F0:A8:FA:B5:7D:85
Certificate issuer: /CN=F365646EAF/serialNumber=55A9A4D6774E3D1C9D6BC1010074DDFA2540AA02
Certificate serial: 02
Authority key identifier: 55:A9:A4:D6:77:4E:3D:1C:9D:6B:C1:01:00:74:DD:FA:25:40:AA:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Vamk1ndOPRyda8EBAHTd-iVAqgI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/50E525E4457B11EEB9C84B4D4AD9E6FC.roa
Signing time: Mon 28 Aug 2023 08:17:24 +0000
ROA not before: Mon 28 Aug 2023 08:17:20 +0000
ROA not after: Fri 28 Aug 2043 08:17:20 +0000
asID: 29286
IP address blocks: 41.191.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/Vamk1ndOPRyda8EBAHTd-iVAqgI.crl
rsync://rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/Vamk1ndOPRyda8EBAHTd-iVAqgI.mft
rsync://rpki.afrinic.net/repository/afrinic/Vamk1ndOPRyda8EBAHTd-iVAqgI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365646EAF/serialNumber=55A9A4D6774E3D1C9D6BC1010074DDFA2540AA02
Validity
Not Before: Aug 28 08:17:20 2023 GMT
Not After : Aug 28 08:17:20 2043 GMT
Subject: CN=64ec5813-aea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ea:5a:3c:22:43:f6:52:f5:00:77:11:f2:ca:
8d:67:17:b1:a0:ff:9d:15:fd:bf:c1:b6:8c:a6:70:
0b:40:25:b1:c1:82:df:54:66:cb:d7:dc:eb:d5:b3:
03:8b:fa:34:2f:15:72:bd:db:88:66:87:b7:a8:39:
8e:4d:9e:42:ef:13:6b:fe:11:8c:6e:c0:d1:36:18:
d4:c1:bf:76:8a:2a:25:9d:01:aa:63:74:07:02:fe:
ee:91:e2:dc:95:51:37:af:7b:6c:e7:18:ab:49:ce:
e0:ee:e9:38:6e:46:3e:6c:b6:07:0f:6d:48:9b:35:
a7:2a:57:b5:e0:29:e8:30:0b:e4:c0:f4:79:49:12:
6a:38:dd:20:c3:3b:d3:8b:a3:17:4e:bd:00:3c:37:
28:49:ef:6a:40:e1:74:7e:cb:72:7e:85:76:fb:43:
6b:10:18:05:74:ff:cc:f8:71:c9:f1:89:02:70:f3:
0c:a7:1d:17:e4:11:32:5a:c9:bb:00:9c:8c:3b:1f:
6b:4f:00:35:06:2b:81:b9:8c:49:c1:52:ac:30:55:
26:c6:95:05:f3:ca:76:7d:80:be:c3:e4:b6:81:e0:
44:1b:d3:86:0a:99:69:b6:04:2e:1e:dd:f3:62:3f:
17:db:9f:59:96:48:88:2d:d4:17:1e:eb:ec:40:0a:
44:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:73:DD:92:E0:53:66:24:6F:49:67:B4:F3:7D:F0:A8:FA:B5:7D:85
X509v3 Authority Key Identifier:
keyid:55:A9:A4:D6:77:4E:3D:1C:9D:6B:C1:01:00:74:DD:FA:25:40:AA:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/Vamk1ndOPRyda8EBAHTd-iVAqgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Vamk1ndOPRyda8EBAHTd-iVAqgI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365646E/B0BF4C7A457A11EEA6B33A4B4AD9E6FC/50E525E4457B11EEB9C84B4D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.191.117.0/24
Signature Algorithm: sha256WithRSAEncryption
76:15:f8:ab:ce:64:5d:03:a3:5b:c3:8e:97:bc:f3:39:ed:07:
c0:d9:60:3c:ac:49:88:d1:0d:dc:95:06:01:2c:45:e2:97:4c:
b5:4b:f6:28:69:d5:00:7d:0e:ec:73:9d:3c:2b:20:35:fb:4e:
37:2b:35:84:66:11:a5:9d:2b:ad:8d:2b:d3:df:9e:98:68:9f:
a2:14:56:8f:c8:3f:9d:63:60:07:ac:d2:88:96:19:cf:97:75:
65:55:40:59:c5:85:2f:b8:6d:a7:70:15:2d:aa:75:88:3e:cf:
25:4c:f4:c0:b7:cc:5f:ae:9b:fe:e6:84:94:91:11:b5:c4:89:
d2:f4:b0:ec:18:d1:25:c3:79:cb:f7:c0:a1:e0:57:7a:fe:82:
c3:13:e3:fd:4b:0a:cc:9d:e1:a5:1b:9c:7e:61:d8:1d:3f:90:
8e:d6:e0:e9:c7:39:67:b8:cb:56:1e:4b:53:ac:46:5d:f6:0e:
b9:b8:7e:73:e3:0e:72:b2:ca:e9:fc:91:59:9c:7a:4d:9f:52:
da:61:91:6f:65:4b:16:74:29:de:6e:37:45:6d:5e:8c:a1:c0:
79:92:92:d5:d1:78:7a:9d:1e:69:cc:58:77:ac:30:dc:a9:83:
06:14:58:89:54:ed:e6:72:3b:39:2b:4a:82:20:e6:e9:8d:68:
78:ae:b1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:47:36 2024 by rpki-client on console-fra.rpki-client.org