Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/DDE3A0322F8D11EE940E980D4AD9E6FC.roa
File: DDE3A0322F8D11EE940E980D4AD9E6FC.roa (raw, json)
Hash identifier: UY4T0ev+9ZX52l1jUHNlmzdW8uPIHHoKEIaFen2CiXY=
Subject key identifier: E5:98:D2:A4:4C:9D:3F:CF:51:45:95:69:68:57:36:6B:BA:FB:C2:CD
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 04F5
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/DDE3A0322F8D11EE940E980D4AD9E6FC.roa
Signing time: Mon 31 Jul 2023 10:34:45 +0000
ROA not before: Mon 31 Jul 2023 10:34:42 +0000
ROA not after: Fri 31 Jul 2043 10:34:42 +0000
asID: 198949
IP address blocks: 41.139.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1269 (0x4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jul 31 10:34:42 2023 GMT
Not After : Jul 31 10:34:42 2043 GMT
Subject: CN=64c78e45-38d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:a9:37:a7:28:95:eb:cf:32:eb:31:ca:7a:
2b:ca:77:00:fa:7f:aa:d6:e0:e1:84:d5:39:76:62:
5d:61:31:5a:1b:d8:a2:95:64:9f:ef:1f:74:50:65:
f9:34:45:80:15:f1:6a:58:07:a2:95:b2:90:70:ba:
8f:6a:53:15:23:0b:f9:4c:3a:0a:b1:7c:49:00:4b:
f5:07:98:59:f0:ff:d4:9c:5f:fe:ad:cf:85:ff:10:
95:fd:62:c3:67:1c:33:28:6d:7e:f7:71:2f:25:60:
b2:4f:a4:68:20:de:75:08:f7:4d:1f:65:a6:56:69:
95:32:60:0c:5c:b2:a6:1e:92:70:eb:01:3b:01:2f:
04:a0:fe:bb:98:07:de:91:e1:08:61:2f:9a:06:00:
17:f9:33:e1:65:58:8e:14:93:23:61:a0:5f:66:63:
c2:aa:03:95:a9:02:33:5f:fd:9d:3b:58:08:d8:d5:
24:16:99:cb:86:d3:96:f8:f1:20:29:c3:bb:27:a1:
f6:bd:b9:d7:a4:80:55:96:be:47:ae:62:3a:b1:64:
01:49:d3:b5:4c:ee:7d:b8:18:c1:51:a2:51:eb:d7:
46:f9:87:0b:d5:3b:f8:0e:24:e8:6d:f1:6d:80:dc:
37:b2:8c:9e:c7:eb:d6:2c:8f:05:ce:e3:ba:7a:f1:
f1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:98:D2:A4:4C:9D:3F:CF:51:45:95:69:68:57:36:6B:BA:FB:C2:CD
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/DDE3A0322F8D11EE940E980D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.139.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b9:5c:d3:58:99:86:3d:6f:2f:b8:eb:3c:d1:c5:14:1a:38:ab:
16:74:c0:a7:f1:4d:5d:95:07:90:02:12:ea:a1:35:50:4d:50:
26:27:03:41:e3:cd:6b:93:27:05:43:7f:34:59:3e:12:cd:ad:
da:67:a4:57:72:36:67:61:93:d3:21:46:e5:fe:70:a3:25:4b:
39:b9:66:6f:af:43:e7:1b:22:65:35:0b:6a:ea:56:c9:ac:c4:
89:aa:f2:94:e9:c5:b2:d6:ea:39:a5:65:63:49:06:d2:a0:e8:
13:18:eb:63:4b:34:2f:14:5a:72:33:00:49:29:e6:eb:5a:99:
c7:55:3b:c4:d1:c0:76:9a:50:49:ad:a9:a1:8e:1a:cd:3e:7c:
cd:fc:52:6f:49:61:69:ca:be:fa:cf:08:9e:7f:04:35:57:65:
4a:89:93:36:78:9d:c6:e0:06:83:7d:0a:e2:f9:c3:cc:58:6c:
6f:f3:b0:6b:fd:31:58:ef:53:e0:31:6e:97:6b:6b:b8:b5:72:
3a:81:95:19:a1:43:40:f9:14:95:f0:0d:13:01:a3:cc:6f:81:
57:6c:2c:5a:f7:ec:db:ae:c1:e5:df:b3:18:50:b7:a7:55:a1:
cf:fb:46:35:c4:9f:4b:79:4f:fc:c7:7a:2f:3d:d9:b6:67:3e:
d6:58:e0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:32:44 2024 by rpki-client on console-fra.rpki-client.org