Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/D16CB6506CC211EEAE1488764AD9E6FC.roa
File: D16CB6506CC211EEAE1488764AD9E6FC.roa (raw, json)
Hash identifier: 8W8MLoaZGdQj+poYAqkXMgXc2YN4jz1pc8HUUsTYfXk=
Subject key identifier: 68:BA:77:43:E4:25:BD:60:05:D9:33:47:8A:85:43:00:76:97:C5:2B
Certificate issuer: /CN=F365F086AF/serialNumber=02C44CED6B619AB1A404FCED3502B1D96848329E
Certificate serial: 04
Authority key identifier: 02:C4:4C:ED:6B:61:9A:B1:A4:04:FC:ED:35:02:B1:D9:68:48:32:9E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/AsRM7WthmrGkBPztNQKx2WhIMp4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/D16CB6506CC211EEAE1488764AD9E6FC.roa
Signing time: Tue 17 Oct 2023 07:57:29 +0000
ROA not before: Tue 17 Oct 2023 07:57:20 +0000
ROA not after: Tue 17 Oct 2028 07:57:20 +0000
asID: 37678
IP address blocks: 41.191.216.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/AsRM7WthmrGkBPztNQKx2WhIMp4.crl
rsync://rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/AsRM7WthmrGkBPztNQKx2WhIMp4.mft
rsync://rpki.afrinic.net/repository/afrinic/AsRM7WthmrGkBPztNQKx2WhIMp4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365F086AF/serialNumber=02C44CED6B619AB1A404FCED3502B1D96848329E
Validity
Not Before: Oct 17 07:57:20 2023 GMT
Not After : Oct 17 07:57:20 2028 GMT
Subject: CN=652e3e69-ff79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:04:6c:57:e7:18:6e:0f:71:f1:7f:7c:7c:4a:
2e:67:00:3f:c2:f1:73:84:9a:c4:5f:fc:6b:3e:d1:
97:ba:33:f6:87:ac:00:9d:07:89:43:45:4e:23:d3:
cc:03:0c:a9:24:54:d8:e5:c0:cb:66:f7:ab:8f:c1:
19:60:ba:d0:2d:2e:45:88:47:cb:04:8e:54:86:07:
fd:82:c0:66:1d:d4:d2:a7:de:b6:6e:67:8c:ad:64:
12:f0:62:32:63:58:a7:93:09:16:2a:52:7e:9c:5f:
84:83:4c:f1:e6:b8:38:57:ac:8c:8e:71:2e:e3:37:
f6:d8:59:38:c5:db:bb:6b:3f:6d:19:37:3e:2d:89:
7b:19:ca:53:2a:11:f1:74:a9:67:e5:66:dc:7e:0f:
35:b7:53:06:76:3b:ec:24:52:00:6c:a9:e5:b5:8f:
aa:50:b9:7d:fa:a4:de:21:44:d2:79:bf:da:9c:b9:
e8:e8:97:cb:b9:ac:f9:c6:63:b5:37:6a:ec:e9:2f:
1a:c3:13:38:13:1f:db:53:27:a1:73:4a:33:34:85:
60:f5:2c:ef:40:70:1c:b0:29:09:7a:29:bf:ac:14:
58:c2:b9:3a:4b:b5:62:ea:d9:86:41:0b:bb:2f:ff:
d7:28:0e:4d:02:9d:48:7e:4e:bf:29:0e:77:63:7a:
d2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BA:77:43:E4:25:BD:60:05:D9:33:47:8A:85:43:00:76:97:C5:2B
X509v3 Authority Key Identifier:
keyid:02:C4:4C:ED:6B:61:9A:B1:A4:04:FC:ED:35:02:B1:D9:68:48:32:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/AsRM7WthmrGkBPztNQKx2WhIMp4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/AsRM7WthmrGkBPztNQKx2WhIMp4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F086/DE7B16EE6CBC11EE9A59EE634AD9E6FC/D16CB6506CC211EEAE1488764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.191.216.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:97:2b:e3:61:0d:cb:f3:c3:df:27:b4:9d:f3:d2:5f:d0:63:
5d:55:84:47:6c:7a:6c:52:ad:ed:9b:e9:93:5c:80:4a:53:80:
c0:85:68:0a:88:49:36:dc:1c:7e:03:00:d1:83:4f:ac:c7:22:
0e:6a:de:f5:10:23:8a:a3:6a:a2:0d:11:d3:81:95:47:7d:69:
40:52:43:2c:10:dc:6b:4b:8e:7f:d9:30:1a:06:6d:64:14:85:
4b:c8:fa:69:15:cc:73:95:6c:22:49:69:8f:2c:1a:20:f6:bf:
7f:42:ae:57:9f:95:ef:c6:90:16:4d:73:bc:f5:f8:42:9c:eb:
f1:a7:c3:25:75:d6:69:0c:87:e1:02:c5:8a:df:54:2c:28:88:
47:cd:27:4a:e8:47:c6:e3:ad:91:a1:77:7e:39:8f:81:50:2e:
01:b9:b7:73:dc:3b:87:56:30:12:c7:32:0a:71:62:a8:6b:73:
a4:e0:56:6a:bf:a3:d9:72:ae:9a:74:a8:ae:3c:26:ae:b7:e4:
7d:1f:3e:c0:41:00:25:03:e5:3f:9f:09:05:e1:6f:e0:29:da:
c5:e0:c0:1c:34:3a:8e:3a:fa:ec:0d:21:a4:89:f4:a2:45:d9:
be:74:4b:c2:c1:69:44:6b:5a:d3:d8:d4:55:de:19:cd:ab:9c:
6e:46:99:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:23 2024 by rpki-client on console-fra.rpki-client.org