Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/15BEF06C669611EEBB547A464AD9E6FC.roa
File: 15BEF06C669611EEBB547A464AD9E6FC.roa (raw, json)
Hash identifier: Q096MBnYS9Mr2ffdsAW+/0ffgPNktzY7/iaZWIxcl1U=
Subject key identifier: E6:EF:24:33:81:0E:33:2B:24:78:0B:95:EE:34:84:D8:1A:F3:04:3B
Certificate issuer: /CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Certificate serial: 0318
Authority key identifier: DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/15BEF06C669611EEBB547A464AD9E6FC.roa
Signing time: Mon 09 Oct 2023 11:22:09 +0000
ROA not before: Mon 09 Oct 2023 11:22:05 +0000
ROA not after: Thu 09 Oct 2025 11:22:05 +0000
asID: 21003
IP address blocks: 41.208.68.0/24 maxlen: 24
41.208.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.mft
rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 792 (0x318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Validity
Not Before: Oct 9 11:22:05 2023 GMT
Not After : Oct 9 11:22:05 2025 GMT
Subject: CN=6523e261-047f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:34:73:8f:eb:6c:db:8c:ae:90:d5:39:a4:
79:09:0c:7c:58:5f:a3:50:3e:16:31:92:f3:ec:2d:
dc:a5:c1:33:c1:c5:94:41:fe:f8:88:07:e6:ef:be:
8c:1e:a6:41:6c:ba:b9:6e:87:60:74:07:12:22:9b:
13:ec:51:1b:df:83:cf:8f:fa:f0:bf:b4:ff:e5:9f:
78:81:b7:57:31:4f:b1:46:1e:79:1b:de:e6:04:d9:
f4:f6:ef:0b:1c:c9:6a:b3:68:d1:80:2b:39:d8:53:
2b:9b:05:ee:fe:99:90:e1:46:2a:0a:15:f7:2e:6c:
b5:2c:49:8f:62:95:56:85:d4:05:46:b3:a4:9b:e8:
ca:c8:6f:96:1f:83:ba:77:46:b4:55:f5:d6:1a:fb:
8d:69:96:de:5c:67:c4:85:65:bb:de:23:43:d9:e4:
94:cd:ed:a1:09:63:59:b8:86:b6:f5:85:ba:cd:37:
55:88:f2:14:bb:ef:f6:4a:10:0f:77:37:6a:29:8b:
f9:0a:28:35:f1:6f:ef:de:b3:1f:44:31:7d:bd:69:
fc:92:de:75:7c:2b:79:c6:ae:46:8e:59:40:31:df:
6a:b9:e4:06:1b:bc:07:c3:4a:7d:57:4c:90:69:34:
bc:da:7a:07:d1:c0:9e:f3:b3:d2:0c:0b:bd:56:65:
63:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EF:24:33:81:0E:33:2B:24:78:0B:95:EE:34:84:D8:1A:F3:04:3B
X509v3 Authority Key Identifier:
keyid:DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/15BEF06C669611EEBB547A464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.208.68.0/24
41.208.100.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9b:a5:bc:e5:21:53:93:2a:57:06:8b:b0:2f:f9:a2:74:b8:
05:0e:9b:a4:26:e1:7e:7e:0a:95:bf:14:e0:76:ab:c8:3d:03:
b6:f2:7c:3d:31:73:f2:5f:9e:ea:91:87:0a:f8:70:48:7b:eb:
25:d4:90:ff:b4:94:11:72:11:49:38:fe:44:03:67:17:08:55:
16:85:02:c5:a7:d1:2a:18:66:09:67:2e:0d:93:9b:0a:87:33:
a6:42:ae:1a:bb:0f:2b:1e:e2:f4:d0:0e:0c:aa:25:a8:67:71:
33:4d:d6:ec:4d:d5:b9:fb:67:a1:bd:5c:03:dd:dc:de:dd:09:
b1:c0:2b:c7:67:a1:08:e3:13:af:2b:ba:f6:b4:3a:0d:96:6a:
38:87:88:f9:81:ec:34:a6:be:d5:4b:17:21:8f:3f:b9:d5:f3:
eb:9c:24:26:bc:43:3b:ff:53:3a:7a:9a:8a:d8:fb:41:05:ff:
28:21:6d:e4:e6:b1:15:5a:41:b7:50:1d:fd:18:83:90:ad:df:
64:03:99:7b:55:f9:18:48:fd:b9:f4:35:8e:b3:96:49:b5:f5:
ff:cb:ee:a6:42:69:60:4e:31:89:1e:1a:30:87:28:22:d4:73:
0f:70:73:16:4e:75:af:b2:8f:06:12:48:30:a7:6b:b5:0b:a8:
c9:f4:b1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:49 2024 by rpki-client on console-ams.rpki-client.org