Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/8DE2B4F0F3B711EC90B2089FF1222468.roa
File: 8DE2B4F0F3B711EC90B2089FF1222468.roa (raw, json)
Hash identifier: A+kzR7ABSf4bZLwWwa1AnzE9eCnIaYLzcjrsCY1zoQE=
Subject key identifier: FD:8F:7F:3C:7F:ED:7B:35:82:51:71:3E:21:CB:90:2C:F1:51:58:0F
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 04F1
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/8DE2B4F0F3B711EC90B2089FF1222468.roa
Signing time: Fri 24 Jun 2022 12:17:03 +0000
ROA not before: Fri 24 Jun 2022 12:16:59 +0000
ROA not after: Wed 12 Jun 2030 12:16:59 +0000
asID: 36916
IP address blocks: 41.180.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1265 (0x4f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 24 12:16:59 2022 GMT
Not After : Jun 12 12:16:59 2030 GMT
Subject: CN=62b5ab3f-f25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:63:eb:c4:9a:61:69:06:42:b3:41:71:7b:9a:
50:63:45:11:72:22:8b:4b:10:4a:46:fe:66:7c:5c:
3e:55:4f:2c:1d:04:56:a2:88:e9:28:86:b5:16:ad:
2d:07:f8:7c:fe:db:db:36:6c:d4:47:dd:68:5c:91:
b8:32:b5:85:97:1c:11:49:92:ad:31:0a:2c:44:7c:
18:fb:b8:92:f3:7e:a4:47:d4:39:3b:ae:6e:0c:f0:
0a:4d:b2:99:26:47:cc:e3:02:3e:cf:d7:c8:91:ba:
c0:29:ab:c4:78:a2:bb:da:66:29:ea:77:d7:8d:3d:
8f:a6:64:43:30:2b:69:69:f8:4d:c3:b1:10:52:3b:
b6:3b:b7:c2:1d:2c:81:69:ae:d0:55:ed:ef:f7:da:
68:ce:d0:0a:54:2f:55:79:df:24:61:b7:9a:7d:35:
5c:0d:79:16:0a:1e:d5:c3:c1:ce:a9:b1:ed:7b:ce:
62:9a:06:0d:7a:78:e2:32:7d:22:53:47:5e:70:f7:
28:7d:a8:d5:dc:51:e7:e4:57:2b:7f:aa:c8:2d:14:
40:50:58:bf:07:8e:a9:ed:31:02:24:00:9d:bb:ae:
51:29:77:c3:d5:7e:fc:5b:d4:31:c8:c5:2f:60:50:
08:5c:c6:90:cc:a8:0c:9e:7c:c9:82:66:48:51:c6:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8F:7F:3C:7F:ED:7B:35:82:51:71:3E:21:CB:90:2C:F1:51:58:0F
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/8DE2B4F0F3B711EC90B2089FF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.180.4.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:2c:88:5e:33:14:87:33:ac:9e:a1:b7:b3:86:17:dd:95:28:
de:df:12:c2:19:ac:ae:20:a3:94:ed:3b:48:0c:b5:e0:35:f9:
ec:7c:26:0b:26:f2:7c:c8:01:8a:c3:0b:fe:43:68:f0:76:90:
45:ad:ef:d2:63:df:00:3b:0a:0d:38:7f:da:4c:e2:f4:26:96:
0e:09:66:cf:00:51:14:19:bb:ad:79:2c:0c:8e:20:27:8c:a3:
1a:be:8f:7f:90:38:ca:be:61:0a:e9:ac:de:eb:f8:cc:4f:1d:
8e:12:a1:43:18:df:01:5c:aa:8f:13:1d:5d:5b:aa:80:f2:62:
52:63:72:ab:6f:bd:6c:7e:c5:e6:2f:cd:d3:59:93:a4:59:bb:
c4:af:32:94:aa:a5:6e:f4:b5:7e:2d:7d:fd:a6:9c:46:70:51:
7f:8b:17:53:8e:39:ae:16:a3:1e:45:9c:52:c4:e6:10:01:3f:
22:96:78:7d:54:05:b3:3b:07:f4:f5:24:b4:3e:1d:6a:2c:82:
bc:66:a7:62:b9:f6:c8:d9:cf:aa:81:dd:06:b6:a9:b1:54:7e:
6d:1f:70:bb:94:59:ae:9f:ad:60:d6:64:dc:1d:35:cf:99:08:
c6:24:e8:63:57:df:31:af:bc:fa:f7:ce:94:ad:71:07:ad:05:
5d:e9:a4:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org