Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/7AA909E6661811EE9D9D6A304AD9E6FC.roa
File: 7AA909E6661811EE9D9D6A304AD9E6FC.roa (raw, json)
Hash identifier: ivpWYIkkTuF4QNjZtvInWtxGInyuZaU25bwDPzQEVc8=
Subject key identifier: 31:8C:B5:A3:82:84:92:31:AD:42:24:A8:2A:AF:AB:79:2C:54:28:C6
Certificate issuer: /CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Certificate serial: 0313
Authority key identifier: DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/7AA909E6661811EE9D9D6A304AD9E6FC.roa
Signing time: Sun 08 Oct 2023 20:23:02 +0000
ROA not before: Sun 08 Oct 2023 20:22:58 +0000
ROA not after: Wed 08 Oct 2025 20:22:58 +0000
asID: 21003
IP address blocks: 41.208.85.0/24 maxlen: 24
41.208.86.0/24 maxlen: 24
41.208.87.0/24 maxlen: 24
41.208.88.0/24 maxlen: 24
41.208.89.0/24 maxlen: 24
41.208.90.0/24 maxlen: 24
41.208.91.0/24 maxlen: 24
41.208.92.0/24 maxlen: 24
41.208.93.0/24 maxlen: 24
41.208.94.0/24 maxlen: 24
41.208.95.0/24 maxlen: 24
41.208.96.0/24 maxlen: 24
41.208.97.0/24 maxlen: 24
41.208.98.0/24 maxlen: 24
41.208.99.0/24 maxlen: 24
41.208.101.0/24 maxlen: 24
41.208.102.0/24 maxlen: 24
41.208.103.0/24 maxlen: 24
41.208.104.0/24 maxlen: 24
41.208.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.mft
rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Validity
Not Before: Oct 8 20:22:58 2023 GMT
Not After : Oct 8 20:22:58 2025 GMT
Subject: CN=65230fa6-01ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:34:96:0b:51:9a:ed:d2:a4:e0:d3:c6:01:
2c:45:37:52:2f:df:c6:11:92:eb:d3:f7:15:87:3e:
3b:d7:2b:6a:55:3e:af:58:fa:69:d8:f0:07:91:af:
05:b5:58:70:e0:c8:11:78:02:fd:91:59:05:5b:3e:
ac:a9:df:45:4f:af:31:fa:1c:c5:e0:5e:fa:27:f6:
0d:ec:02:b1:15:cb:5f:40:0c:7a:3d:be:43:d0:ff:
bb:78:23:8b:47:68:99:da:01:d8:19:33:31:f2:6a:
fa:55:46:7b:09:71:57:6a:b6:21:1b:04:fc:03:b0:
54:f3:fe:0a:fb:80:a7:6d:ae:12:25:3b:02:40:1c:
c2:24:d5:e3:82:48:03:69:43:11:f6:a0:4d:f1:76:
5d:44:d5:22:ba:5b:a9:8b:b4:53:ce:ee:f5:20:a6:
af:bf:4c:fc:08:7d:e9:21:ab:83:ce:bc:0d:82:9a:
bf:98:95:83:14:14:82:82:bd:89:2c:ed:20:5a:69:
14:d5:12:a9:a8:75:8f:a1:76:7b:86:9c:22:7c:17:
13:93:0d:c5:5c:0a:64:0f:bf:97:b8:42:53:42:92:
9e:db:21:ae:8d:3e:58:3d:e6:4a:f8:09:c5:7b:6d:
d3:3f:2f:3a:6c:03:b9:76:7b:08:ea:74:05:e1:98:
b3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8C:B5:A3:82:84:92:31:AD:42:24:A8:2A:AF:AB:79:2C:54:28:C6
X509v3 Authority Key Identifier:
keyid:DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/7AA909E6661811EE9D9D6A304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.208.85.0-41.208.99.255
41.208.101.0-41.208.105.255
Signature Algorithm: sha256WithRSAEncryption
0d:50:93:fe:54:95:b9:3c:75:6f:c1:02:00:33:68:9b:18:d7:
13:b7:a4:2a:39:84:cf:fd:33:8c:30:0f:f3:5a:44:e7:ab:79:
50:61:1b:35:29:96:45:56:3b:e1:d1:55:3d:44:ff:f7:0c:c9:
67:e9:e5:22:62:6d:74:4d:03:c2:3d:6e:78:cc:67:32:0e:91:
09:06:6f:3c:6c:dd:2d:5c:a6:3c:be:7f:ff:c2:cf:26:8f:c2:
b8:c6:de:61:3c:87:50:7f:83:f3:32:ca:9b:d9:2d:5e:5a:73:
09:a6:a5:1b:c1:d1:d2:6b:f2:db:87:a6:ea:1c:c6:7a:a0:3e:
ac:d8:19:0b:78:54:e6:e3:ed:4e:24:21:28:5d:ad:7c:86:d7:
da:f0:e1:d8:2d:3f:d9:fb:75:58:a6:f6:08:4c:9e:0c:f0:bd:
8a:78:e7:66:40:1e:bd:15:3d:c5:0f:f9:72:8f:7c:1f:86:f2:
12:fa:7a:cb:80:3f:d3:d4:53:80:5c:82:4c:a4:4a:9e:98:44:
8e:94:43:9f:cb:28:df:66:bd:01:1d:bd:d8:74:df:cb:d0:60:
2b:78:8e:dd:3f:0e:39:0f:02:a7:47:5a:f8:ad:f2:14:ac:d4:
89:b3:bc:68:ca:de:a2:aa:36:69:7c:5b:22:fe:59:8c:c2:85:
02:f4:8f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:49 2024 by rpki-client on console-ams.rpki-client.org