Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/529E19241B3A11EE8CFC2F144AD9E6FC.roa
File: 529E19241B3A11EE8CFC2F144AD9E6FC.roa (raw, json)
Hash identifier: IPBMxbbsRZcQmItmyOL7zxLz+lrJ1yuj9JR+vO3LHtI=
Subject key identifier: 36:52:DC:70:38:12:37:81:A5:30:DA:82:AA:A0:2C:C3:EF:99:38:49
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 11
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/529E19241B3A11EE8CFC2F144AD9E6FC.roa
Signing time: Wed 05 Jul 2023 13:46:20 +0000
ROA not before: Wed 05 Jul 2023 13:46:16 +0000
ROA not after: Tue 05 Jul 2033 13:46:16 +0000
asID: 37105
IP address blocks: 41.73.37.0/24 maxlen: 24
41.73.39.0/24 maxlen: 24
41.73.41.0/24 maxlen: 24
41.73.50.0/24 maxlen: 24
41.73.51.0/24 maxlen: 24
41.73.55.0/24 maxlen: 24
41.73.56.0/24 maxlen: 24
41.73.57.0/24 maxlen: 24
41.73.60.0/24 maxlen: 24
41.73.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 5 13:46:16 2023 GMT
Not After : Jul 5 13:46:16 2033 GMT
Subject: CN=64a5742c-da84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:18:68:8b:2e:b2:5f:af:33:ff:23:e3:2c:c2:
f3:97:95:82:0c:30:81:bc:7e:f8:1c:65:3f:87:f4:
6d:87:b3:e6:8e:c3:75:00:f6:61:02:11:6e:1b:f3:
bc:50:99:c6:4e:9a:fc:6b:d5:11:bf:b3:3c:0a:77:
22:32:0c:c9:bf:63:5c:f0:99:0a:81:25:6e:ff:6b:
e4:ee:3e:d2:6a:50:b8:97:c4:56:aa:b6:4a:64:c6:
ac:23:5d:41:04:64:20:0a:1b:c5:01:5b:f8:29:4a:
7f:2b:a4:30:98:61:56:e9:dd:b4:ee:ef:2a:2e:8e:
0c:a1:5c:5f:56:85:42:25:79:8a:b5:55:f3:52:57:
e0:da:c9:b3:9a:ab:5d:41:a6:c1:7c:16:dd:d7:bc:
d3:ce:4c:1d:29:92:93:da:56:12:3f:b4:9c:df:c2:
83:8b:0c:90:f7:f9:cd:9a:ff:14:fb:56:49:0b:d5:
73:d4:2a:4a:ea:65:75:21:fc:96:ec:33:ab:0e:8a:
45:8d:1c:c9:1e:59:08:7b:64:58:69:2e:e7:7a:fd:
ef:61:26:2c:44:ba:71:6a:66:7d:28:e7:58:f6:bd:
b6:5f:4b:2a:64:85:e8:ba:82:0a:79:1e:72:b8:bb:
f0:1c:61:2e:27:35:ed:16:0e:3d:9a:a5:7d:3c:f6:
59:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:52:DC:70:38:12:37:81:A5:30:DA:82:AA:A0:2C:C3:EF:99:38:49
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/529E19241B3A11EE8CFC2F144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.37.0/24
41.73.39.0/24
41.73.41.0/24
41.73.50.0/23
41.73.55.0-41.73.57.255
41.73.60.0/23
Signature Algorithm: sha256WithRSAEncryption
63:25:06:48:f2:79:95:c1:33:5d:7e:45:c7:9e:fb:30:d5:58:
5c:06:b4:77:59:d2:8b:cb:e9:37:d3:8d:84:ae:a7:13:d1:14:
fc:e9:9e:d5:c3:60:04:3b:09:7e:ff:89:23:99:0b:dc:70:6c:
71:66:22:95:97:57:18:bd:77:72:a6:04:d4:54:2c:73:68:25:
1e:b0:03:8c:46:68:a3:92:79:79:9e:b4:cb:e2:ab:c2:7d:79:
c0:ea:84:2a:08:23:e6:1c:c9:90:bc:80:95:15:fb:4d:bc:cc:
27:67:7e:51:37:30:5e:c7:47:50:97:f9:d2:27:61:32:2b:0d:
b6:46:c6:ae:d0:5d:8c:10:ed:d9:cc:9f:27:d6:76:3d:59:d3:
c3:c3:f3:71:d8:7c:44:fc:22:bf:21:5a:7b:1c:46:35:51:f6:
c1:cc:b2:e4:c5:4b:bc:b1:a7:57:a6:7b:8a:45:e2:bd:56:2d:
3d:81:51:59:57:10:ee:5c:6a:6c:6d:29:99:d2:0b:c1:6d:b4:
6c:e8:68:8b:76:ac:6a:a8:1f:6f:83:aa:16:04:6c:82:00:dc:
91:22:0a:cf:f0:19:4f:88:f8:43:29:e4:98:70:3b:df:61:23:
e2:0d:aa:9c:e6:e7:33:30:ad:66:ac:53:b5:01:97:e0:7a:68:
c2:04:f3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org