Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/4C64BF4C9AFB11ECB58B52885A40D577.roa
File: 4C64BF4C9AFB11ECB58B52885A40D577.roa (raw, json)
Hash identifier: 58jy1C6d3WrJ/oJASDCkngyvBXzia2JH2GYnHdN661A=
Subject key identifier: 2B:C2:17:16:80:7C:02:82:C3:59:85:79:73:F6:03:29:88:5D:46:A6
Certificate issuer: /CN=F36FA13FAF/serialNumber=5A86F988A1231F86C972331285587ECF864BDB90
Certificate serial: 03B9
Authority key identifier: 5A:86:F9:88:A1:23:1F:86:C9:72:33:12:85:58:7E:CF:86:4B:DB:90
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Wob5iKEjH4bJcjMShVh-z4ZL25A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/4C64BF4C9AFB11ECB58B52885A40D577.roa
Signing time: Thu 03 Mar 2022 14:07:45 +0000
ROA not before: Thu 03 Mar 2022 14:07:41 +0000
ROA not after: Wed 03 Mar 2049 14:07:41 +0000
asID: 4755
IP address blocks: 41.76.40.0/24 maxlen: 24
41.76.41.0/24 maxlen: 24
41.76.43.0/24 maxlen: 24
41.76.44.0/24 maxlen: 24
105.235.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/Wob5iKEjH4bJcjMShVh-z4ZL25A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/Wob5iKEjH4bJcjMShVh-z4ZL25A.mft
rsync://rpki.afrinic.net/repository/afrinic/Wob5iKEjH4bJcjMShVh-z4ZL25A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953 (0x3b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA13FAF/serialNumber=5A86F988A1231F86C972331285587ECF864BDB90
Validity
Not Before: Mar 3 14:07:41 2022 GMT
Not After : Mar 3 14:07:41 2049 GMT
Subject: CN=6220cbb1-fc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:29:7d:bf:78:5f:c9:aa:40:58:55:40:59:2d:
f8:66:84:0c:aa:38:7c:82:e0:d6:19:bf:86:6a:a0:
6f:42:c0:f6:15:43:72:30:7f:7b:a9:54:ad:64:54:
ee:07:d4:d6:85:4a:e1:04:bb:e4:75:e6:93:9f:8e:
d7:e7:68:d5:0c:45:73:0a:07:10:d2:8e:6e:c4:58:
41:02:fe:40:82:fd:a5:15:32:96:b6:4d:cb:19:3e:
b7:79:b4:ab:c1:57:31:bb:59:b9:e3:01:7d:35:15:
f2:68:2d:36:76:22:70:0e:65:58:8c:cf:49:78:e6:
f5:34:04:ab:30:ae:b5:30:c5:0d:66:c8:9e:21:97:
2a:54:d0:da:2c:73:58:7e:05:3d:7b:30:c9:74:89:
1f:de:c3:02:e7:4d:38:ee:a9:52:e6:65:56:e0:e8:
3b:d9:ec:9e:77:c4:50:54:05:eb:78:e4:8d:ec:63:
fb:d9:d5:0e:11:38:9d:98:bf:85:d2:a6:a9:dd:d4:
13:72:d9:c6:d1:f0:7d:ac:96:2c:38:7c:39:fd:d1:
37:af:9f:59:24:4e:b4:20:dc:66:f3:5a:01:b2:66:
3c:bc:99:ab:06:9e:53:aa:4d:2b:fb:9e:39:02:87:
92:00:83:b9:e0:68:e1:eb:4e:b5:f0:66:9d:c3:68:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C2:17:16:80:7C:02:82:C3:59:85:79:73:F6:03:29:88:5D:46:A6
X509v3 Authority Key Identifier:
keyid:5A:86:F9:88:A1:23:1F:86:C9:72:33:12:85:58:7E:CF:86:4B:DB:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/Wob5iKEjH4bJcjMShVh-z4ZL25A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Wob5iKEjH4bJcjMShVh-z4ZL25A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA13F/CDDBC4C8C4D711E98A076325F8AEA228/4C64BF4C9AFB11ECB58B52885A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.40.0/23
41.76.43.0-41.76.44.255
105.235.150.0/24
Signature Algorithm: sha256WithRSAEncryption
32:4b:af:c8:f9:e7:60:60:58:bd:cb:8d:fa:18:80:81:44:ca:
fa:32:61:8b:3d:50:14:5d:7b:f8:d6:0d:2d:de:48:e3:53:01:
c1:71:9a:bf:73:e2:cd:db:51:3b:72:ff:33:e2:45:3e:5f:92:
b7:76:60:e5:9f:47:a7:75:be:96:5c:fb:8f:45:55:0d:d9:6c:
ef:9e:29:40:02:f2:fe:19:7c:bf:09:21:31:b6:1c:2d:59:e0:
ad:54:3d:d2:6b:f5:40:ab:b7:b2:58:29:58:b8:5a:f1:32:15:
96:8d:20:35:eb:0c:bd:5c:8d:9c:aa:5b:dd:74:89:22:63:6a:
4e:32:f7:b7:85:9a:c4:46:1d:90:56:27:3f:c4:9b:c1:31:a2:
87:bf:27:bd:73:66:01:84:dc:cf:30:2a:c8:da:e7:51:f3:83:
5b:5e:c0:54:75:f0:3f:10:62:81:dc:40:bb:b9:87:ff:93:96:
9a:dd:3d:e4:df:7d:26:08:0d:37:ab:3e:8e:41:a8:5c:e1:ff:
d2:cd:e0:57:cd:7c:91:b5:86:c0:fe:c7:01:20:41:65:53:82:
06:d5:fb:49:c0:a7:37:74:d6:76:d5:3f:52:a3:5c:70:b9:ef:
02:32:92:6c:f2:74:38:03:05:2a:9f:1e:60:b7:0b:d7:b2:df:
b6:2d:c6:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org