Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/05452416A56411ED96A12EE1F1222468.roa
File: 05452416A56411ED96A12EE1F1222468.roa (raw, json)
Hash identifier: +tDH/4pwpmFOreUrvo/gNa4SrrneLcJFqKlrqE3TG8Q=
Subject key identifier: E5:2F:1E:59:F1:F6:DC:01:E2:7D:5A:1A:8B:AD:0B:18:3A:3B:9B:A0
Certificate issuer: /CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Certificate serial: 01F6
Authority key identifier: DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/05452416A56411ED96A12EE1F1222468.roa
Signing time: Sun 05 Feb 2023 14:47:33 +0000
ROA not before: Sun 05 Feb 2023 14:47:28 +0000
ROA not after: Wed 05 Feb 2025 14:47:28 +0000
asID: 21003
IP address blocks: 41.252.0.0/14 maxlen: 14
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.mft
rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 502 (0x1f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Validity
Not Before: Feb 5 14:47:28 2023 GMT
Not After : Feb 5 14:47:28 2025 GMT
Subject: CN=63dfc184-ea2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e8:7e:18:fd:de:24:59:f2:50:06:a0:97:3e:
81:0c:8e:8a:3b:dd:ad:51:29:63:b3:f4:db:c1:eb:
c1:74:f9:d7:03:0f:eb:6c:9b:7c:31:94:4e:4a:d1:
98:58:44:be:bf:63:50:95:ab:dc:3a:e1:59:4d:2d:
7c:8d:f3:7c:5e:a7:7c:d9:41:9c:3d:d5:47:dd:b3:
e8:e6:9d:19:49:5b:ad:80:fc:8d:3a:20:ad:86:bc:
55:9e:df:9c:0c:ec:04:aa:cb:ed:60:98:d2:85:ac:
1f:fc:b5:f3:ab:79:14:1c:7f:9d:89:fd:9b:bc:77:
e8:07:77:4c:29:e9:d2:ff:33:3e:b1:e8:52:35:86:
9f:e3:1a:4f:86:15:95:fb:a6:1e:64:21:00:50:e4:
08:d5:08:6e:e4:8a:ab:aa:3e:da:ad:65:07:ea:c1:
86:07:e7:e5:b7:46:f7:93:5d:f8:34:a7:20:ac:9b:
a3:f6:5c:ac:5b:0e:ec:bf:b7:08:91:f3:18:c5:e0:
60:bf:e0:db:a3:6b:b2:62:1f:5c:96:7a:36:58:f3:
81:75:e5:58:2e:9d:66:83:6e:25:8f:e4:f3:9a:60:
67:7b:1d:65:83:6e:e8:5b:62:2c:42:66:18:69:76:
d3:2e:2f:7f:b0:70:18:c0:89:54:4f:81:be:95:d8:
1e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:1E:59:F1:F6:DC:01:E2:7D:5A:1A:8B:AD:0B:18:3A:3B:9B:A0
X509v3 Authority Key Identifier:
keyid:DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/05452416A56411ED96A12EE1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.252.0.0/14
Signature Algorithm: sha256WithRSAEncryption
4b:2c:e5:95:f9:c1:f0:ac:bd:35:63:99:05:8c:5b:5b:97:c0:
72:2a:93:0a:23:bb:76:6a:61:9c:86:1a:5e:36:05:b1:d5:03:
22:04:25:9b:cb:c6:f0:f1:f0:ba:e7:c4:10:5a:5c:ee:19:27:
de:75:6b:89:09:ac:a4:cd:ba:21:71:4e:1a:22:3e:37:5d:c8:
10:46:0d:60:fc:f3:7c:a4:c7:91:b6:5e:dd:ef:3a:1e:85:d1:
0d:74:a8:e5:9a:c5:6d:11:4c:6a:a3:b7:5f:1b:c3:b4:e7:02:
fe:6f:4a:22:e8:09:b3:71:ed:a0:a0:8b:94:c0:ad:a4:02:9e:
c8:30:c1:74:41:cf:d7:13:a7:c7:c8:82:16:b3:06:ed:ae:8e:
58:e2:22:04:10:67:eb:12:34:f3:c1:c6:71:45:24:0a:e0:1b:
16:74:b4:5a:4d:44:29:85:f2:0f:a7:9a:c7:1e:63:e4:23:b2:
2f:d0:12:0c:91:73:4e:26:dd:73:2b:61:43:ca:4e:f4:00:cb:
cc:6e:5a:47:d2:29:6f:e8:35:11:4e:01:84:1f:24:e2:7b:96:
f4:d7:70:01:fa:7e:9b:61:f2:91:03:fa:23:6a:53:ce:cf:41:
a2:7b:b3:0e:29:8e:cd:fc:7e:70:b1:60:de:cf:58:5e:4a:d3:
ca:92:26:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 04:04:21 2024 by rpki-client on console-fra.rpki-client.org