Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/117629B09A8C11EE9DF93C3DD25BE465.roa
File: 117629B09A8C11EE9DF93C3DD25BE465.roa (raw, json)
Hash identifier: aec7duOy/USHF5MOI7j/np54aM5nu8KA+aYxekrk5R4=
Subject key identifier: A3:9B:A6:82:7C:EC:8A:A6:C1:0B:97:60:72:EE:37:A4:D0:9D:9E:80
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: F5
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/117629B09A8C11EE9DF93C3DD25BE465.roa
Signing time: Thu 14 Dec 2023 14:21:27 +0000
ROA not before: Thu 14 Dec 2023 14:21:24 +0000
ROA not after: Wed 14 Dec 2033 14:21:24 +0000
asID: 37105
IP address blocks: 41.73.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 26 Aug 2024 00:05:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Dec 14 14:21:24 2023 GMT
Not After : Dec 14 14:21:24 2033 GMT
Subject: CN=657b0f67-3f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6d:e3:d8:fd:ec:85:c3:74:6c:45:8e:74:70:
8b:ed:56:63:c8:1f:4c:68:8d:58:bd:6e:58:94:49:
2f:4f:d1:5f:f5:20:d8:70:39:46:09:63:b7:c0:80:
55:43:c8:06:5c:22:0e:b0:11:4d:c8:a2:29:dc:bb:
bf:9e:0f:40:ec:a3:dd:63:d3:52:b0:94:14:dc:2d:
d0:cd:3a:eb:31:ed:57:fa:af:a4:cf:d0:ed:98:0c:
ea:05:aa:6f:70:2f:cb:31:4d:82:fc:6e:b9:bb:a7:
9c:35:20:85:86:0e:0d:2a:92:1b:1a:80:a3:be:91:
1c:73:4c:da:11:4d:a1:c0:2b:68:a6:9d:49:18:60:
f1:85:4c:1c:0e:51:af:5b:bd:47:0e:04:5b:62:a6:
5c:3f:43:8e:6d:32:2b:d0:79:6b:29:01:7f:f5:59:
64:ef:da:05:03:d4:f0:7f:1f:a6:d7:43:61:18:f4:
07:23:a8:b8:4d:d1:e9:03:63:fb:9a:0b:3c:8a:1e:
91:cc:ef:e0:22:21:dd:8a:62:80:7d:e0:83:2b:f0:
82:ef:ac:cf:3a:f2:c4:0e:5e:7b:6c:b5:94:8e:28:
c2:1b:7a:b3:64:b0:96:5f:48:8c:00:22:4e:2d:6f:
6b:22:6a:92:c3:8a:8b:cc:60:9f:7a:71:35:74:02:
eb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:9B:A6:82:7C:EC:8A:A6:C1:0B:97:60:72:EE:37:A4:D0:9D:9E:80
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/117629B09A8C11EE9DF93C3DD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.42.0/24
Signature Algorithm: sha256WithRSAEncryption
58:88:d6:61:e4:f7:90:f4:6a:8a:70:c6:89:b8:83:8a:06:6e:
f7:e6:f0:7f:b4:a4:69:1a:4c:fb:9e:fa:eb:6b:4d:30:b9:8b:
40:a7:47:b1:a2:8c:09:a0:b3:b9:4f:4c:38:31:7f:4c:64:d6:
dd:14:d2:73:d3:55:56:40:a0:00:ad:be:53:77:24:73:56:28:
af:4b:f3:42:fd:48:ef:4f:6b:13:5e:1b:20:30:de:5b:00:9e:
18:8c:1c:11:67:78:5f:4c:49:ab:a7:81:ce:a2:06:2d:8b:44:
a4:64:d8:a4:85:40:1f:47:70:9b:7c:7a:fd:96:35:ca:92:f7:
db:48:25:f8:32:d3:0a:ab:ac:c1:97:de:4c:a5:5c:af:78:85:
f9:73:06:fd:a8:64:f2:4b:70:7c:ce:14:a5:bc:d2:5f:87:0a:
c6:d4:d4:b4:7d:f7:2b:fe:6a:93:79:c3:cc:19:32:e7:67:b3:
b0:bf:6c:db:8f:22:bf:f6:01:e4:5b:bc:83:5e:b9:3f:c8:6f:
42:ba:08:64:fe:8d:bc:72:27:7b:e0:5f:16:58:7f:94:e0:35:
1f:28:6f:3c:0f:eb:41:a2:fb:5b:6b:c2:5b:af:20:0b:f8:0c:
4e:31:74:66:a3:21:d0:40:57:07:cf:fb:79:26:eb:cf:60:a1:
6f:d1:de:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 04:29:29 2024 by rpki-client on console-fra.rpki-client.org