Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/F9B24804FDF611EDB9858F624AD9E6FC.roa
File: F9B24804FDF611EDB9858F624AD9E6FC.roa (raw, json)
Hash identifier: XgiYHOYx4wcOXrZza9zqvfH5aFmrwXDAfxqyTM9D+GI=
Subject key identifier: 19:05:00:BA:4B:5F:41:D3:06:8C:DA:BE:8C:86:89:F5:D9:B4:0C:EA
Certificate issuer: /CN=F36F3412AF/serialNumber=938BE89351A81A42DF847BF3931372D098304446
Certificate serial: 052B
Authority key identifier: 93:8B:E8:93:51:A8:1A:42:DF:84:7B:F3:93:13:72:D0:98:30:44:46
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/k4vok1GoGkLfhHvzkxNy0JgwREY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/F9B24804FDF611EDB9858F624AD9E6FC.roa
Signing time: Mon 29 May 2023 08:01:11 +0000
ROA not before: Wed 31 May 2023 08:01:06 +0000
ROA not after: Fri 31 May 2030 08:01:06 +0000
asID: 327987
IP address blocks: 41.78.244.0/22 maxlen: 24
196.250.192.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/k4vok1GoGkLfhHvzkxNy0JgwREY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/k4vok1GoGkLfhHvzkxNy0JgwREY.mft
rsync://rpki.afrinic.net/repository/afrinic/k4vok1GoGkLfhHvzkxNy0JgwREY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1323 (0x52b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F3412AF/serialNumber=938BE89351A81A42DF847BF3931372D098304446
Validity
Not Before: May 31 08:01:06 2023 GMT
Not After : May 31 08:01:06 2030 GMT
Subject: CN=64745bc7-a27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2b:57:6e:19:0a:36:1e:54:21:e2:6d:c9:65:
37:ab:07:9d:78:2b:c1:36:37:b9:db:48:5c:c6:16:
55:89:b8:2c:6f:b0:0d:90:64:e8:57:7c:7e:a3:3b:
f2:a1:76:4b:20:b5:0a:e6:a7:88:2d:9b:87:10:73:
cf:7a:fc:20:e3:14:f3:89:33:fd:b9:65:9b:de:f0:
ee:b4:d5:85:9d:1e:d6:3d:ec:ba:2f:1d:61:7d:d5:
fd:c8:7f:34:3a:a7:89:a0:43:26:13:35:30:64:ba:
17:e9:3c:5b:69:47:7a:60:f2:2d:91:4a:9a:97:9c:
a5:8e:bf:82:b2:5f:77:3d:c4:e0:20:57:d8:96:ef:
36:f5:8a:88:14:d1:19:cb:78:3f:d1:51:67:4e:50:
4c:cf:b0:f7:d0:c2:f7:4b:4e:92:ff:24:3b:fa:53:
98:d3:23:9b:f2:52:4a:98:56:20:4a:b5:03:aa:d6:
a0:89:53:c0:e2:2a:fd:c4:d7:1c:58:71:91:41:e0:
1c:24:d5:62:3d:b4:24:de:cd:37:c7:16:70:13:78:
0c:27:49:91:47:5a:c8:15:4d:e3:5a:ec:af:b5:71:
c1:64:f2:7f:cf:e8:b7:3c:3d:ff:e6:51:26:65:37:
e5:c8:98:b7:8f:98:c0:17:b4:7b:fb:3c:25:0c:9f:
e1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:05:00:BA:4B:5F:41:D3:06:8C:DA:BE:8C:86:89:F5:D9:B4:0C:EA
X509v3 Authority Key Identifier:
keyid:93:8B:E8:93:51:A8:1A:42:DF:84:7B:F3:93:13:72:D0:98:30:44:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/k4vok1GoGkLfhHvzkxNy0JgwREY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/k4vok1GoGkLfhHvzkxNy0JgwREY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F3412/E82C776A177E11EA9CA7BC0EF8AEA228/F9B24804FDF611EDB9858F624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.244.0/22
196.250.192.0/21
Signature Algorithm: sha256WithRSAEncryption
cb:17:32:d9:24:b7:28:29:62:0c:af:ad:37:f0:69:fd:84:91:
a9:40:d0:46:74:67:f3:40:75:78:8f:8d:53:03:33:da:19:3a:
23:87:4c:7e:69:69:62:fb:12:f8:10:c5:37:ed:af:8b:ae:e4:
82:02:8d:e2:13:6d:fc:87:84:6d:40:f2:b6:14:da:f5:64:1d:
71:3b:7d:47:8c:3b:d3:45:b0:bb:8c:4d:85:20:1b:13:0c:19:
e3:bb:c4:06:2b:69:4f:ae:61:2c:90:a6:70:79:3c:15:14:5a:
da:53:97:69:9f:62:c8:12:e8:18:ab:8e:a0:90:66:af:87:81:
d2:a1:0d:3c:df:eb:1b:28:55:df:10:de:92:62:76:60:da:87:
73:65:df:03:94:10:b7:62:05:a4:fa:88:8b:4e:a1:16:7f:a2:
b3:95:f2:d1:dc:ef:bd:1b:b5:83:29:ce:d9:12:55:c4:6d:97:
b4:92:77:55:12:8c:aa:73:c4:50:a1:3d:bd:86:1d:20:81:56:
44:03:9e:97:14:cd:c7:0d:61:5f:cb:18:a3:72:d3:22:58:35:
6e:78:6b:fc:a1:39:7c:11:33:a8:c2:30:73:e2:c2:1b:85:83:
95:6e:03:2b:e7:3d:09:53:9e:92:8c:57:08:56:cc:74:71:4e:
e6:1c:39:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:32 2024 by rpki-client on console-ams.rpki-client.org