Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/D12E90E00A1E11ECA685D114D8A014CE.roa
File: D12E90E00A1E11ECA685D114D8A014CE.roa (raw, json)
Hash identifier: UQyl88URJgmyqxKhcag2REopBe8MadhSu1C5UDauq54=
Subject key identifier: 9E:E0:A4:7D:ED:6A:35:04:28:CA:06:D8:1F:A3:51:00:E7:82:1F:28
Certificate issuer: /CN=F367F176AF/serialNumber=7DD523582E855A9F9A6476040413BE8EC6C0B657
Certificate serial: 09
Authority key identifier: 7D:D5:23:58:2E:85:5A:9F:9A:64:76:04:04:13:BE:8E:C6:C0:B6:57
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/D12E90E00A1E11ECA685D114D8A014CE.roa
Signing time: Tue 31 Aug 2021 05:46:42 +0000
ROA not before: Tue 31 Aug 2021 05:46:37 +0000
ROA not after: Sun 31 Aug 2031 05:46:37 +0000
asID: 37054
IP address blocks: 41.188.0.0/18 maxlen: 24
41.207.32.0/19 maxlen: 24
102.16.0.0/14 maxlen: 24
102.20.0.0/15 maxlen: 24
154.126.0.0/17 maxlen: 24
196.192.32.0/20 maxlen: 24
197.149.0.0/18 maxlen: 24
2c0f:fa28::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.mft
rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F176AF/serialNumber=7DD523582E855A9F9A6476040413BE8EC6C0B657
Validity
Not Before: Aug 31 05:46:37 2021 GMT
Not After : Aug 31 05:46:37 2031 GMT
Subject: CN=612dc242-bfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:af:3a:ce:e3:42:6b:65:85:68:55:15:d7:
7d:59:b0:9e:ef:76:37:80:92:2d:6d:77:1a:75:7e:
68:5d:8d:d1:50:a7:b0:96:d2:63:48:ff:fd:79:e9:
25:39:51:e1:b2:c4:87:be:4e:5d:aa:db:cd:0c:3f:
2a:b7:d1:44:d9:9f:f9:52:13:3d:49:ba:d1:bc:e2:
2f:44:d1:ba:30:99:97:d0:90:0a:2a:a4:f8:5a:11:
73:08:44:21:c4:0f:84:30:ad:90:18:78:ee:d1:34:
24:43:0b:86:92:da:47:aa:06:47:39:4d:39:48:45:
5b:07:db:fc:a0:53:1c:06:5a:08:3c:15:dc:cd:19:
2e:b9:a6:cf:f4:f6:35:83:3e:45:2f:34:bf:2a:26:
cf:45:35:1f:50:4d:b0:1f:a0:57:36:60:7d:25:82:
ee:0f:7c:ca:b6:07:e8:17:97:35:28:a4:c2:85:ae:
25:89:41:56:d0:4d:9f:a5:26:b3:0c:93:34:68:ff:
b9:19:01:08:30:fb:1c:b5:36:b0:72:8c:97:f5:81:
11:e8:72:d5:48:86:73:c9:67:2c:81:c5:ba:32:1d:
94:25:4f:c3:8b:fa:08:f5:65:e0:d3:42:fd:96:83:
fa:64:7f:5e:e9:a1:30:a3:22:c7:13:74:f7:13:8d:
81:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E0:A4:7D:ED:6A:35:04:28:CA:06:D8:1F:A3:51:00:E7:82:1F:28
X509v3 Authority Key Identifier:
keyid:7D:D5:23:58:2E:85:5A:9F:9A:64:76:04:04:13:BE:8E:C6:C0:B6:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/fdUjWC6FWp-aZHYEBBO-jsbAtlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/fdUjWC6FWp-aZHYEBBO-jsbAtlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F176/947F74C4056511ECAECFA729D8A014CE/D12E90E00A1E11ECA685D114D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.188.0.0/18
41.207.32.0/19
102.16.0.0-102.21.255.255
154.126.0.0/17
196.192.32.0/20
197.149.0.0/18
IPv6:
2c0f:fa28::/32
Signature Algorithm: sha256WithRSAEncryption
52:01:a6:fb:a7:e2:f4:66:e7:10:30:72:cb:74:fb:ac:d8:96:
f7:f5:a3:09:31:81:7a:aa:80:5a:aa:4e:b5:b0:dc:bc:6b:98:
a9:1f:e6:9f:0b:36:68:f4:6e:f5:ab:ab:2c:0c:bd:b7:42:9e:
d8:91:fe:83:3d:84:a8:19:10:23:39:76:b7:6e:5e:b6:c1:d6:
d0:a3:08:93:2b:e5:b4:59:96:53:99:0a:70:a0:f0:66:5b:39:
20:e2:17:df:af:c3:53:bf:3c:f1:5b:72:f7:12:72:ac:ad:5c:
19:1f:ed:92:db:c1:2c:a2:70:f5:76:27:f7:9d:85:81:e6:16:
da:78:a0:0e:30:08:ed:5c:7e:ed:33:ac:fb:49:3f:b6:23:14:
05:cd:ea:a3:53:c1:45:cb:0a:35:68:b1:29:fa:da:44:9b:0c:
20:32:4b:70:68:3a:84:c6:55:79:8e:4f:00:4a:01:25:c6:a0:
f5:ff:1e:32:88:88:92:be:a5:9b:09:7a:08:1f:1a:09:f2:af:
90:4d:32:61:6f:11:05:4e:c9:64:10:94:ea:ee:bf:c4:9c:3c:
2a:9f:cb:26:72:50:6f:24:a6:a8:74:10:da:ba:0b:01:d9:2f:
97:8a:44:ab:c0:2f:a0:2d:07:95:63:54:67:59:63:58:f8:56:
39:5a:ea:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:56 2024 by rpki-client on console-ams.rpki-client.org