Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/DA956AF2E91F11EB8EE78B08D8A014CE.roa
File: DA956AF2E91F11EB8EE78B08D8A014CE.roa (raw, json)
Hash identifier: yi/kGe9K7bgzzNjuJJ9WkvYPrz9NLiez9H+X0/yDZ1o=
Subject key identifier: 7D:BF:E0:F0:CB:BF:A3:FD:03:9D:16:A6:14:54:56:8E:14:3D:BC:8F
Certificate issuer: /CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Certificate serial: 02D8
Authority key identifier: 68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/DA956AF2E91F11EB8EE78B08D8A014CE.roa
Signing time: Tue 20 Jul 2021 06:01:06 +0000
ROA not before: Tue 20 Jul 2021 06:00:56 +0000
ROA not after: Sun 13 Jul 2031 06:00:56 +0000
asID: 36969
IP address blocks: 41.87.16.0/24 maxlen: 24
41.87.17.0/24 maxlen: 24
41.87.18.0/24 maxlen: 24
41.87.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.mft
rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Jun 2024 00:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 728 (0x2d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Validity
Not Before: Jul 20 06:00:56 2021 GMT
Not After : Jul 13 06:00:56 2031 GMT
Subject: CN=60f666a2-1605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:b1:95:00:db:86:72:8a:1f:03:0e:3e:fe:
44:7f:64:6a:20:e0:d2:c0:b9:2d:c0:ca:8a:78:b5:
be:b8:b0:b9:3a:7f:3c:4f:c7:04:f9:43:f8:43:a0:
3c:96:b6:93:9b:6f:91:78:c9:72:d5:03:d5:48:21:
bb:1e:79:7c:f0:90:56:49:70:ab:46:c2:13:05:24:
f8:fd:b3:d2:5c:05:ff:07:12:ed:5a:c2:ab:65:d9:
dd:b8:8a:5c:31:1c:70:58:e3:d9:6d:f2:2a:e7:94:
36:4d:74:57:a8:67:54:e2:0e:85:6b:7f:fb:cb:77:
ef:ca:fc:e1:b2:41:0d:7c:9c:a1:62:8c:f4:11:3a:
2b:1a:62:06:f8:58:e8:96:4b:1a:dd:6d:e0:20:46:
a0:15:b9:24:cc:e0:6e:09:f2:de:ee:66:77:ca:26:
f6:04:dd:2a:73:bb:02:69:16:d9:2d:c8:84:89:4e:
a7:19:f0:e0:88:cc:68:37:c8:11:3e:f6:43:b7:da:
08:4a:e5:ca:c3:35:a0:0e:e6:1c:36:64:c8:0a:44:
e4:13:91:36:50:0c:27:f2:54:19:2b:56:fe:89:5c:
95:61:f7:33:46:8b:0d:67:3b:25:02:54:0d:5c:46:
93:3c:fa:2b:74:0c:c4:95:4e:57:56:5e:5f:3f:98:
57:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BF:E0:F0:CB:BF:A3:FD:03:9D:16:A6:14:54:56:8E:14:3D:BC:8F
X509v3 Authority Key Identifier:
keyid:68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/DA956AF2E91F11EB8EE78B08D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.87.16.0/22
Signature Algorithm: sha256WithRSAEncryption
65:b5:58:d2:b7:80:4c:35:e5:0d:91:9d:0f:0f:f3:3c:c5:8d:
45:07:ee:78:37:9f:7c:0c:d6:b0:bd:fa:8e:2e:af:e0:bc:2a:
1b:c4:b8:9a:5f:b3:89:be:1c:8d:fe:d4:cd:ee:48:3b:3c:1e:
ab:de:a7:46:0d:1e:5e:48:1e:9e:4b:9d:f4:0e:96:5b:17:e2:
00:a3:98:2a:03:6a:fc:bf:57:8d:03:f8:04:a4:a1:f1:b5:dd:
a3:ee:e0:11:97:4e:f9:24:3e:33:d8:0e:cc:b7:44:fa:38:0d:
56:ac:59:64:84:ab:93:da:d9:9d:9d:49:0f:56:ff:dc:25:3a:
b8:ab:f9:79:44:d6:bb:e6:81:68:b4:68:cc:af:ed:9c:ec:96:
f2:4a:fa:52:e6:97:3a:69:3e:fc:0e:99:f2:52:ed:65:b1:5a:
a1:03:bf:9b:59:08:8f:8d:45:45:3c:d7:66:ea:7d:2c:b0:80:
be:6f:08:a7:46:84:19:1c:8a:0b:bb:58:e0:ae:e8:15:66:b5:
e9:0a:19:ba:58:ec:94:c1:52:52:d4:ff:cb:a8:bf:64:71:30:
c4:2d:9f:25:7a:d9:0e:fe:79:bd:58:a2:a2:aa:a9:ef:7c:84:
4f:99:ee:8f:4f:68:c0:83:cf:16:86:41:e6:c3:08:dc:94:b6:
51:4e:bd:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:03:07 2024 by rpki-client on console-ams.rpki-client.org