Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/89DF6E2A767711EBB4347171F8AEA228.roa
File: 89DF6E2A767711EBB4347171F8AEA228.roa (raw, json)
Hash identifier: RdloHLAK4gQJgsID0wnpZ6wew4Gn1opmX/BleJBr/IY=
Subject key identifier: 8E:E2:51:1F:37:41:45:CF:06:A6:76:63:23:21:7C:F2:F5:39:D4:F0
Certificate issuer: /CN=F36FBB68AF/serialNumber=0D150008651489BA5144B3F17EBECCDFB945640B
Certificate serial: 08
Authority key identifier: 0D:15:00:08:65:14:89:BA:51:44:B3:F1:7E:BE:CC:DF:B9:45:64:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/89DF6E2A767711EBB4347171F8AEA228.roa
Signing time: Wed 24 Feb 2021 08:08:55 +0000
ROA not before: Wed 24 Feb 2021 08:08:50 +0000
ROA not after: Mon 24 Feb 2031 08:08:50 +0000
asID: 37575
IP address blocks: 41.79.124.0/22 maxlen: 23
102.222.140.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.mft
rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FBB68AF/serialNumber=0D150008651489BA5144B3F17EBECCDFB945640B
Validity
Not Before: Feb 24 08:08:50 2021 GMT
Not After : Feb 24 08:08:50 2031 GMT
Subject: CN=60360997-756d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f3:e3:8c:93:c2:b5:5e:5d:08:e0:75:7b:35:
ff:09:c8:be:ba:5c:9f:06:04:3d:b3:4f:4d:26:8e:
b7:48:6a:79:9e:a7:c1:ad:7e:17:c5:cb:c4:5e:b6:
88:71:a6:ee:79:e4:87:7b:e7:9c:f6:12:6a:74:c0:
80:0f:d8:60:2e:ff:2f:0c:ad:ab:38:be:ad:65:fd:
19:5d:e7:1f:cc:0b:ed:b3:1b:79:82:3a:c3:6c:57:
a9:2c:f3:b2:31:7d:fb:7d:3a:93:25:6c:26:ba:93:
d5:91:85:f6:29:c3:9f:7a:5a:e9:f6:e6:db:f6:c2:
6c:ad:54:3c:9f:e1:cf:a8:ba:89:2b:46:22:42:a6:
42:9b:32:cf:46:08:92:cf:e2:d4:b3:4e:e3:28:34:
03:66:44:6a:ff:75:47:bb:9b:c7:81:55:20:76:d7:
3b:70:fa:4f:c4:f9:b0:8a:fd:0e:88:52:2e:32:2b:
88:52:24:a6:7f:0c:73:c3:57:bf:f1:67:db:0d:d8:
af:aa:55:ee:db:1b:7d:fe:5c:3a:20:c2:d8:af:e6:
86:de:64:a8:86:d2:99:2d:ce:2a:08:dd:33:5e:31:
c7:26:d9:68:e2:d7:d1:7f:be:7a:73:b6:27:52:37:
c1:20:4e:4a:48:81:5b:a5:a2:b7:9d:73:fd:a5:4d:
ec:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E2:51:1F:37:41:45:CF:06:A6:76:63:23:21:7C:F2:F5:39:D4:F0
X509v3 Authority Key Identifier:
keyid:0D:15:00:08:65:14:89:BA:51:44:B3:F1:7E:BE:CC:DF:B9:45:64:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/89DF6E2A767711EBB4347171F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.79.124.0/22
102.222.140.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:71:3d:e7:26:0e:3a:e0:91:4a:a0:14:57:7a:d6:80:6a:a9:
e4:26:b1:c1:15:4f:70:d8:a9:76:25:12:c3:fa:31:db:f3:8a:
ec:5d:9b:c8:45:11:e3:04:64:29:55:95:4a:ac:b0:e4:8b:62:
05:13:c1:77:8c:ac:54:c2:31:90:48:7c:31:40:29:47:bb:3b:
c3:a9:81:fa:5b:d1:b7:e2:6a:00:26:10:74:d5:63:63:95:ae:
9d:f6:f9:56:a0:b9:b9:38:77:0c:a2:bd:b2:7a:28:e7:50:59:
14:9c:a8:0b:9e:32:21:a7:88:46:54:a6:47:ea:5c:7d:95:0d:
3e:b0:2f:25:fa:8e:6a:c9:a1:4c:37:63:6c:ad:d9:62:52:c0:
1c:bd:b9:dc:6a:26:ab:70:b3:26:af:21:db:58:27:82:23:9f:
e2:86:97:9a:a3:89:a9:3f:08:00:db:8e:1a:70:34:9f:64:9b:
5a:7f:96:76:4f:a7:e7:e2:94:25:57:a8:a9:de:19:4a:f0:33:
c9:41:eb:93:d4:2b:97:25:ce:36:f6:03:c0:b7:60:67:42:cd:
be:86:ab:94:5e:58:82:5a:aa:13:eb:aa:2a:e0:4b:8e:fa:3f:
e7:8a:7d:2b:a2:7c:a1:a0:4b:4e:41:06:1a:95:af:bd:9d:8c:
be:27:09:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org