Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/A0D24DF67E8611ECBE0EA4755A40D577.roa
File: A0D24DF67E8611ECBE0EA4755A40D577.roa (raw, json)
Hash identifier: MafVgzxyumYkACUDU162eLPKpdlrPAKDQMJCmIH26AA=
Subject key identifier: 94:C4:45:85:22:41:A2:BE:27:82:75:85:1B:93:27:9B:C3:FE:46:A2
Certificate issuer: /CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Certificate serial: 0153
Authority key identifier: E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/A0D24DF67E8611ECBE0EA4755A40D577.roa
Signing time: Wed 26 Jan 2022 09:02:03 +0000
ROA not before: Wed 26 Jan 2022 09:01:59 +0000
ROA not after: Mon 26 Jan 2032 09:01:59 +0000
asID: 327980
IP address blocks: 41.216.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.mft
rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339 (0x153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Validity
Not Before: Jan 26 09:01:59 2022 GMT
Not After : Jan 26 09:01:59 2032 GMT
Subject: CN=61f10e0b-bd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bf:41:8b:56:31:0d:0e:89:d4:c6:f9:e4:70:
88:9b:df:15:bb:b8:e6:62:e0:0f:74:e1:13:c1:09:
92:fc:0c:4a:3c:04:55:f2:4a:cb:16:d0:c8:27:0a:
4b:35:d8:df:1c:c8:b8:08:7f:6a:53:5f:33:39:dc:
c8:cc:5b:a1:a4:62:dc:a9:af:4d:7c:05:4a:a8:7b:
cb:ce:7e:f2:c5:89:3f:e9:10:5f:86:7d:4f:01:3b:
79:2d:0e:bc:90:7e:17:36:94:d0:e3:c3:be:5e:2c:
05:3a:34:f3:4c:5a:db:88:a8:0c:8e:2f:27:f5:d0:
97:a6:76:d1:bb:5b:18:4c:c8:de:55:27:a7:23:25:
1a:15:04:d5:7a:c2:4a:bb:58:0d:48:a8:82:6f:37:
19:f2:8a:45:f6:21:6c:ff:99:d4:44:8a:aa:26:cb:
c4:43:66:db:cf:74:6d:9a:66:32:ab:2d:05:39:81:
29:c9:de:81:0f:95:12:1c:c9:21:35:be:eb:6e:b5:
ec:f8:8e:ff:b1:fc:72:02:8e:ed:6f:7e:46:cd:c9:
78:b1:06:44:35:e3:66:c9:dd:bd:74:2e:50:7e:08:
45:9d:74:a0:0b:d7:e4:a9:36:1c:65:08:a1:1b:aa:
cc:22:46:a8:07:d5:b9:4c:bb:2a:ef:f2:6d:b3:8c:
08:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C4:45:85:22:41:A2:BE:27:82:75:85:1B:93:27:9B:C3:FE:46:A2
X509v3 Authority Key Identifier:
keyid:E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/A0D24DF67E8611ECBE0EA4755A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.188.0/24
Signature Algorithm: sha256WithRSAEncryption
84:75:e9:4d:fa:0a:38:cd:05:12:eb:f6:f0:d6:2e:26:ed:2e:
22:fe:5f:50:7b:e5:73:b3:ea:e5:5c:c0:c4:11:75:c1:fe:48:
ad:ca:65:76:73:58:fa:2b:5b:a0:e3:7b:39:c5:22:b7:42:6d:
17:db:9c:f7:bd:9a:87:55:c9:09:5f:44:fd:85:46:e2:65:f5:
9b:f0:ab:ce:01:c4:c3:9b:0c:76:eb:da:ea:e1:00:5b:5f:a4:
0f:d5:86:42:cd:46:f8:55:dd:0e:5b:bb:1a:f6:25:26:35:12:
bd:73:d0:b0:e3:19:1f:95:42:38:d7:2a:1b:dc:30:b7:3d:b2:
05:99:a7:6e:75:53:bf:3e:b5:5f:00:c1:e9:a7:1f:5c:7c:a9:
82:32:32:fa:12:f7:d3:75:5e:41:81:3c:f0:fd:80:0c:e5:51:
0c:b6:7e:f5:12:8b:a7:cd:39:0a:69:77:3a:c8:ff:51:ac:82:
1f:cd:ff:d7:51:c4:83:1f:67:63:fc:1a:50:6b:bb:28:4c:53:
72:2d:94:b6:b8:4e:b7:e6:0c:90:34:2c:96:cd:f6:33:43:17:
ce:6d:95:ea:ce:36:bd:91:eb:b2:b9:6b:80:e0:c4:0f:a5:c2:
6c:c0:c3:fc:26:b4:16:09:a2:4f:3b:3b:56:de:cf:53:d1:d4:
0e:a6:91:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org