Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/123EB9062E5911EE9D25A8594AD9E6FC.roa
File: 123EB9062E5911EE9D25A8594AD9E6FC.roa (raw, json)
Hash identifier: g5auIPbDbEpKY8PKt6u7d2ryJCmXcDYC0fkJOG/8Zxc=
Subject key identifier: EA:8A:AE:DD:91:69:44:AB:C0:70:91:8A:D6:44:27:5F:53:FF:01:05
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 04DD
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/123EB9062E5911EE9D25A8594AD9E6FC.roa
Signing time: Sat 29 Jul 2023 21:44:19 +0000
ROA not before: Sat 29 Jul 2023 21:44:15 +0000
ROA not after: Sat 30 Jul 2033 21:44:15 +0000
asID: 37119
IP address blocks: 105.173.64.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1245 (0x4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 21:44:15 2023 GMT
Not After : Jul 30 21:44:15 2033 GMT
Subject: CN=64c58833-ce38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:78:4c:44:8c:fc:ed:49:72:3f:6d:dc:ad:
45:46:25:43:25:d3:43:f1:21:01:41:6d:77:69:af:
b3:93:2f:fb:a6:a0:5c:be:74:10:f5:9d:66:8e:3c:
6f:2e:37:be:ee:96:1d:7a:37:f7:8a:bd:c0:69:59:
e2:f1:07:5f:0d:7f:bb:75:d7:8d:0e:fd:99:d2:bd:
15:18:0d:77:15:d3:4d:bf:bf:fe:9b:79:76:9c:75:
c1:8a:b7:8e:4b:b1:c5:f2:97:4b:46:ce:cb:10:b5:
40:8b:34:7d:84:ee:dd:74:84:4b:23:2c:65:61:66:
b4:d1:4e:38:0a:e5:ab:9a:0f:20:8a:1a:49:5d:a0:
50:8e:d8:28:8b:02:7e:a3:5d:ae:82:96:50:9a:2c:
f3:cc:71:37:3f:22:d1:84:e4:f1:d1:90:76:9a:1d:
32:db:59:c7:49:f0:52:7d:42:86:2f:9a:9d:f6:bb:
82:a2:7e:5d:c3:b6:13:15:34:02:14:6c:82:f1:87:
15:fd:2d:b0:d6:c0:a1:09:25:0a:ff:ed:d1:aa:51:
e8:15:06:8d:9b:a7:d0:68:66:d1:e2:c8:72:6b:db:
dd:70:3c:98:09:3b:59:cd:db:26:8e:f1:ee:5b:91:
2f:b4:d1:24:02:bf:45:72:e8:3d:62:d8:ef:fb:82:
c3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8A:AE:DD:91:69:44:AB:C0:70:91:8A:D6:44:27:5F:53:FF:01:05
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/123EB9062E5911EE9D25A8594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.173.64.0/19
Signature Algorithm: sha256WithRSAEncryption
bf:03:04:53:ce:46:dd:2e:c8:4d:8a:25:c4:7e:db:7d:3b:a0:
5d:a6:67:47:74:c0:f7:7a:6e:1e:b1:8c:9b:14:cb:77:1a:6a:
4f:29:a5:ed:88:22:f2:93:b8:4c:95:5c:67:64:81:3c:22:52:
52:b7:27:e1:3e:f1:0e:7f:94:5e:1e:65:46:8a:78:b6:da:69:
61:b1:ea:85:83:2b:6c:63:68:d7:dd:14:dd:3d:20:14:1c:4b:
e4:c6:2e:f1:58:cf:38:f3:67:05:57:88:64:4f:0c:56:57:26:
63:7d:d0:51:c7:40:11:04:e6:1f:98:42:b6:c2:3d:f7:02:39:
a2:2f:1c:8e:be:89:f3:08:e8:9c:3a:be:45:54:a3:67:83:93:
06:67:c1:db:6d:8b:5f:a3:cb:ea:aa:b5:9a:63:8a:a0:96:ca:
4d:59:af:fe:dd:32:ab:b6:50:29:4c:b2:74:32:17:ab:94:f9:
79:22:53:e9:54:9f:46:9e:00:bf:3a:19:3c:2b:70:b0:50:7f:
60:f3:8e:91:46:0a:c1:61:ea:bd:d6:3f:e0:4c:af:61:b8:89:
54:59:a5:44:f1:13:6d:44:a1:ac:36:4d:6e:72:88:39:eb:da:
d7:8a:e1:ba:0d:d7:72:99:80:9b:86:73:d2:b9:3e:b8:07:d8:
50:16:63:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org