Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/10D8E69C0FF811EEBFA25F744AD9E6FC.roa
File: 10D8E69C0FF811EEBFA25F744AD9E6FC.roa (raw, json)
Hash identifier: nDeeecAIGQfn7JOPZQsUamIE5KwsYQLcRCSm00VCpC4=
Subject key identifier: F0:66:21:80:B3:5A:A4:40:9B:81:22:08:47:84:C3:F1:88:12:AF:3E
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0719
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/10D8E69C0FF811EEBFA25F744AD9E6FC.roa
Signing time: Wed 21 Jun 2023 05:54:20 +0000
ROA not before: Wed 21 Jun 2023 05:54:16 +0000
ROA not after: Wed 22 Jun 2033 05:54:16 +0000
asID: 63339
IP address blocks: 41.180.208.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1817 (0x719)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 21 05:54:16 2023 GMT
Not After : Jun 22 05:54:16 2033 GMT
Subject: CN=6492908c-21a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:3a:66:73:72:84:84:46:8f:1c:f2:5f:b8:11:
0f:b9:b7:70:af:2e:3d:4b:91:ae:f9:38:16:a2:93:
4c:b4:fb:01:71:03:0d:72:44:37:17:f9:62:30:6a:
e3:ba:8f:e5:55:48:44:f7:5b:62:a1:6b:44:ae:ed:
06:2e:76:33:44:04:6c:6a:7b:1c:e0:74:2d:b0:cf:
30:7f:59:2f:10:32:85:47:88:18:b4:0b:8b:34:41:
6a:56:be:d4:ab:95:a4:70:ed:19:5b:a8:ff:40:a1:
8f:58:7d:2e:99:3c:1f:e4:e2:75:97:5c:ca:2c:ad:
95:1f:e0:90:98:18:d9:1d:77:88:2f:49:04:fa:80:
2c:81:98:6b:83:93:32:18:d0:12:1a:aa:c1:bc:c9:
fe:39:8a:53:1e:db:b6:5f:3b:22:f1:17:55:77:20:
23:72:2e:a6:0b:f7:5d:b0:83:79:fc:a1:e9:5f:01:
4d:a3:e8:38:0f:0a:c1:b5:fb:f3:c9:44:a6:9b:c0:
a0:54:fa:99:82:84:ed:03:38:ce:e7:8a:75:44:92:
49:0a:49:fd:97:d1:7f:39:4c:11:7a:35:9f:34:2d:
a7:60:47:00:1b:c8:8e:5d:77:0e:e7:21:72:c9:30:
76:c2:2e:1c:89:c0:e7:6f:22:fb:96:95:02:60:3e:
01:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:66:21:80:B3:5A:A4:40:9B:81:22:08:47:84:C3:F1:88:12:AF:3E
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/10D8E69C0FF811EEBFA25F744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.208.0/21
Signature Algorithm: sha256WithRSAEncryption
82:15:8d:03:ed:7e:ad:20:c0:6f:51:17:6b:88:b1:9f:80:da:
37:fc:d7:51:0a:7e:b8:32:da:51:a7:d5:85:e7:f1:2f:8c:b3:
70:86:0c:2c:11:51:31:b6:e5:92:50:79:12:8e:1e:33:60:0f:
b7:9c:18:49:d5:e3:f8:fa:97:ed:ca:54:07:be:55:9d:fd:b1:
08:1a:e4:25:5f:18:0b:84:c9:2a:ca:ab:44:58:64:37:f6:bc:
3f:a2:2b:23:3e:e8:20:81:1e:0c:5b:df:99:97:ed:db:14:30:
fe:ff:85:a3:e7:d2:e0:3f:5b:aa:a0:41:68:34:bb:25:e3:5d:
f4:d8:67:64:47:4a:99:ea:c9:27:69:d0:c2:32:71:39:a9:8e:
b1:19:64:a9:e6:64:83:2e:06:f2:16:08:72:47:4b:22:5a:4a:
7e:c3:a8:b5:d0:5b:c0:6c:71:03:45:25:08:d3:b5:31:44:66:
68:b8:41:28:16:f3:8b:cb:fb:80:f1:e2:04:34:91:6a:2c:8b:
07:47:26:97:29:23:6b:3f:19:cf:93:2c:a0:36:92:fc:a4:be:
33:ca:09:23:aa:28:c1:a5:4b:22:25:b9:77:64:81:cf:f0:14:
56:0d:a5:3d:b3:d4:00:c9:9f:36:df:e1:9d:7a:9d:b0:11:51:
1c:5e:3a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org