Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/67A1D5582B7111EEA16C2D174AD9E6FC.roa
File: 67A1D5582B7111EEA16C2D174AD9E6FC.roa (raw, json)
Hash identifier: DRWTokh5rXrQzXOW32tfxh0mfcrM2IP9x1FJF1BO44Y=
Subject key identifier: 90:57:BF:10:3F:97:3C:E9:D8:43:42:3E:FA:6F:9C:06:A9:80:B4:34
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 053D
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/67A1D5582B7111EEA16C2D174AD9E6FC.roa
Signing time: Wed 26 Jul 2023 05:00:57 +0000
ROA not before: Wed 26 Jul 2023 05:00:52 +0000
ROA not after: Tue 31 Jul 2040 05:00:52 +0000
asID: 7262
IP address blocks: 41.221.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1341 (0x53d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Jul 26 05:00:52 2023 GMT
Not After : Jul 31 05:00:52 2040 GMT
Subject: CN=64c0a888-745b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:c4:d0:ef:fd:da:fa:22:e6:c5:3f:72:61:
05:20:5c:9c:37:5e:0a:a5:7a:9a:7d:71:c8:f4:4f:
0a:12:0b:aa:02:4e:c5:15:4a:9c:b5:58:c5:d0:61:
32:aa:10:69:71:6e:ec:ef:e2:79:1a:3a:4e:51:75:
a3:69:a4:74:bc:5b:49:77:0a:a4:7f:52:3f:13:ae:
67:77:0e:f7:ad:3d:9a:0b:11:2d:da:1d:77:51:4c:
bb:a6:84:23:63:d9:f7:09:5d:f3:a8:93:c2:9b:14:
1a:57:99:8e:40:e1:97:62:7b:ec:e5:2c:fe:d0:b4:
3a:3c:09:9c:d9:c2:08:d2:78:8d:5b:93:b2:2b:aa:
b8:26:65:ac:61:e4:85:b5:dd:52:24:6f:37:44:97:
9b:8b:58:08:2e:a5:2a:82:7c:64:81:b0:d7:cc:19:
11:86:dc:30:10:fd:5c:75:58:7a:96:17:59:b3:b6:
81:0b:16:d7:6f:dc:14:88:c5:70:bf:f9:aa:48:58:
f4:8a:48:f2:a6:b3:34:da:86:63:d1:a5:53:a1:ed:
e9:a8:da:f7:ce:99:29:42:97:e7:cb:dc:5b:43:26:
89:42:1e:74:8e:62:05:55:15:77:74:1c:4b:61:99:
6c:c9:19:d4:06:cf:ae:67:11:b6:b3:05:3b:30:ae:
4b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:57:BF:10:3F:97:3C:E9:D8:43:42:3E:FA:6F:9C:06:A9:80:B4:34
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/67A1D5582B7111EEA16C2D174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.214.0/24
Signature Algorithm: sha256WithRSAEncryption
da:e2:4f:af:1b:3d:d6:2f:42:75:5d:54:63:54:83:4f:db:ce:
c4:b7:79:b5:89:20:99:e9:7a:e9:d6:f0:13:36:e4:1b:e9:27:
23:10:f0:88:d7:f3:88:19:7d:41:bd:e4:c2:70:23:c9:2f:79:
22:e6:c7:7e:11:44:38:d2:ed:cc:3d:51:ac:8a:80:9b:48:69:
dc:2e:6b:55:8f:24:fb:29:e6:9b:7a:79:09:75:a6:6b:ed:e7:
86:87:b8:4c:fa:f8:8c:08:eb:79:a9:83:ea:16:56:57:26:b9:
ba:bf:20:69:78:47:6e:8e:5a:e8:e5:59:c1:ec:0a:fa:75:cb:
59:01:22:66:df:67:0e:39:23:73:d9:48:79:e6:31:a7:ac:96:
04:af:5b:23:70:4a:94:5b:f7:d1:a0:49:9a:10:78:9c:18:5b:
87:ac:70:b1:17:35:72:ee:34:08:31:bc:31:ae:44:37:f4:1b:
00:30:f1:7c:92:fd:5b:e6:04:4e:30:9a:99:53:48:e0:39:b8:
e8:38:bb:0c:5d:2e:97:1e:0c:f8:d6:66:3f:25:89:08:ef:38:
3d:56:42:62:5c:ed:d5:d5:06:7c:44:5a:cf:d7:3b:14:58:b1:
fb:01:ee:09:62:58:23:57:00:86:03:0b:ac:57:07:fb:90:75:
74:b5:a9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org