Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/53E9AF201C4A11EF92B1620D7DDC24C2.roa
File: 53E9AF201C4A11EF92B1620D7DDC24C2.roa (raw, json)
Hash identifier: KdhlIJ+hQm0D2JssqauHu+bI+aH2TH0/RDTYBo7Rfl4=
Subject key identifier: 50:B0:15:13:F3:C1:17:82:0C:12:CC:B9:8B:E6:A9:FB:37:E1:C8:8F
Certificate issuer: /CN=F36C2BF2AF/serialNumber=FB85E08E5DBB05C95B7BD0DA7E5FE6FCE39826FF
Certificate serial: 17
Authority key identifier: FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/53E9AF201C4A11EF92B1620D7DDC24C2.roa
Signing time: Mon 27 May 2024 16:58:23 +0000
ROA not before: Tue 28 May 2024 16:58:20 +0000
ROA not after: Thu 28 May 2026 16:58:20 +0000
asID: 37517
IP address blocks: 41.221.192.0/20 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C2BF2AF/serialNumber=FB85E08E5DBB05C95B7BD0DA7E5FE6FCE39826FF
Validity
Not Before: May 28 16:58:20 2024 GMT
Not After : May 28 16:58:20 2026 GMT
Subject: CN=6654bbaf-664c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5c:23:c1:08:13:79:63:14:d3:10:ce:5a:ff:
60:34:e0:0c:26:25:79:a3:db:75:17:9e:52:8e:a9:
02:02:9b:db:80:c5:4e:44:44:d8:11:a5:9f:28:68:
02:95:cf:50:3d:c2:9c:b1:33:04:8d:e8:bc:f1:06:
1b:06:7c:0c:92:c9:d9:ed:5f:6b:bd:7a:ad:9d:d9:
f1:e4:3c:02:1e:9d:af:23:26:c1:01:00:22:e4:e3:
5e:2e:f4:c5:d5:d0:de:14:a2:c9:07:ad:dc:c2:db:
2a:cf:35:bc:f4:a2:e3:bf:0f:86:3a:2e:a9:1e:7d:
f0:10:a5:be:f7:b3:25:76:00:cd:ed:28:7a:b3:7f:
0b:db:d8:16:71:5f:7e:1a:29:1c:5b:33:ca:37:89:
61:d7:cc:ef:c5:40:6d:5f:b9:d7:d6:dd:9f:b0:ad:
e7:52:aa:71:29:9c:25:dc:6d:9b:2e:70:80:06:5e:
d2:67:33:ae:48:84:d3:f0:a4:b1:5e:97:e8:d7:48:
9f:75:2f:5b:f9:9a:76:ed:48:29:5c:e3:f5:6a:2d:
93:ef:33:b5:3e:9d:0e:c6:78:58:4f:6a:c0:fd:89:
1a:c8:44:40:60:f4:f1:2f:f8:45:d4:1b:0d:42:1d:
d2:9d:da:ce:21:96:dd:46:04:b1:a4:b4:92:a9:76:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B0:15:13:F3:C1:17:82:0C:12:CC:B9:8B:E6:A9:FB:37:E1:C8:8F
X509v3 Authority Key Identifier:
keyid:FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/53E9AF201C4A11EF92B1620D7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.192.0/20
Signature Algorithm: sha256WithRSAEncryption
61:c2:48:5e:cb:39:b0:ca:b4:f4:5c:5f:93:be:62:fc:83:86:
1b:fd:46:39:a8:72:fb:8b:02:f5:3f:e6:80:0b:b5:d7:91:cd:
eb:81:56:40:58:ca:93:00:6d:02:76:91:f8:86:b2:3a:00:b6:
82:06:b9:03:42:f0:a9:d7:47:76:94:30:9c:be:7e:ac:d7:00:
4a:65:be:2e:03:15:ef:da:fb:b5:45:1f:85:00:55:b9:59:63:
9b:ce:8a:f9:40:a1:95:46:5c:f7:f7:fa:e8:22:6d:09:e1:7d:
67:64:7b:6f:02:75:60:3f:ee:81:92:5f:d9:2f:f6:f8:60:7e:
b0:a2:d2:f1:51:a6:b8:90:25:04:0e:fd:44:6e:f4:6f:c7:f7:
76:ba:4d:e4:3c:3b:fa:45:dd:cd:18:65:c5:d4:fc:b7:8c:fc:
be:0f:1e:c1:7d:c3:6a:f3:aa:02:61:72:2d:78:63:c1:16:c9:
cc:01:e2:e4:1b:48:0e:74:a4:6c:6f:31:3a:ac:ee:a9:7f:35:
e8:c7:c9:c3:b5:7f:d6:e5:b4:7d:00:92:f5:f8:8e:f5:ef:c5:
fc:b6:b3:ba:86:32:6f:12:2a:18:8f:14:8b:e2:55:b8:10:5f:
07:56:81:6d:a2:de:10:a0:08:9a:c4:ea:b8:36:3f:af:1e:cd:
1e:f0:01:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 05:03:26 2024 by rpki-client on console-ams.rpki-client.org