Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/247867E4E27011EFA0A04798762E951A.roa
File: 247867E4E27011EFA0A04798762E951A.roa (raw, json)
Hash identifier: +UBXwm2myeOTyr1l1PVQJ5MRdDqTlUZ0ucC+vd+kfcY=
Subject key identifier: F3:E5:D3:E5:34:3D:00:62:B8:A4:69:C4:0B:58:8C:0C:61:F2:AD:71
Certificate issuer: /CN=F361610CAF/serialNumber=D7E97EC41BB58980C40FE4A9E36C010BC0013D31
Certificate serial: 43
Authority key identifier: D7:E9:7E:C4:1B:B5:89:80:C4:0F:E4:A9:E3:6C:01:0B:C0:01:3D:31
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1-l-xBu1iYDED-Sp42wBC8ABPTE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/247867E4E27011EFA0A04798762E951A.roa
Signing time: Mon 03 Feb 2025 20:47:55 +0000
ROA not before: Mon 03 Feb 2025 20:47:49 +0000
ROA not after: Sun 03 Feb 2030 20:47:49 +0000
asID: 329506
IP address blocks: 102.207.128.0/22 maxlen: 23
2c0f:11c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/1-l-xBu1iYDED-Sp42wBC8ABPTE.crl
rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/1-l-xBu1iYDED-Sp42wBC8ABPTE.mft
rsync://rpki.afrinic.net/repository/afrinic/1-l-xBu1iYDED-Sp42wBC8ABPTE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 03:22:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361610CAF
Validity
Not Before: Feb 3 20:47:49 2025 GMT
Not After : Feb 3 20:47:49 2030 GMT
Subject: CN=67a12b7b-f464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:19:43:56:56:c7:d5:5d:2d:ac:9f:b8:62:e9:
93:03:46:18:43:f3:1c:dd:f7:c2:98:04:1e:ab:cb:
32:9f:82:27:4c:f6:10:9f:c7:8e:a8:76:85:bd:44:
c2:ef:39:b5:3f:b9:26:71:59:76:09:8d:07:f8:4f:
b1:c7:0c:a3:38:df:68:3f:42:b5:98:04:32:0c:31:
f4:0f:fe:40:9b:3f:10:68:3b:a3:8b:eb:1b:9e:73:
40:61:42:4a:ad:cb:40:af:cc:7f:de:78:45:56:67:
3c:5f:5b:cc:65:2a:62:80:0c:27:b2:3c:38:c6:ca:
74:3b:3a:c3:92:75:ca:6b:a2:b2:11:79:87:49:91:
f2:64:66:ee:20:2c:ad:7c:bb:e7:59:ac:45:b2:d4:
cf:0f:af:ed:c9:47:0f:4f:6a:c3:7d:a8:2f:ca:49:
7c:b0:7c:25:07:69:89:75:15:da:eb:ba:d7:83:78:
5a:42:bd:f2:26:a0:c8:c5:9b:c8:8a:1e:30:01:97:
01:1e:0f:72:b5:f6:07:56:b4:4d:a0:b1:62:45:35:
27:15:d3:a4:74:c0:6d:92:fd:2a:f0:ac:90:e0:33:
0e:e4:fd:66:6f:f9:fa:1b:cc:8c:12:03:74:0a:7b:
8c:77:e2:5f:41:39:15:a1:0b:02:c5:7e:af:a3:cd:
98:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E5:D3:E5:34:3D:00:62:B8:A4:69:C4:0B:58:8C:0C:61:F2:AD:71
X509v3 Authority Key Identifier:
keyid:D7:E9:7E:C4:1B:B5:89:80:C4:0F:E4:A9:E3:6C:01:0B:C0:01:3D:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/1-l-xBu1iYDED-Sp42wBC8ABPTE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1-l-xBu1iYDED-Sp42wBC8ABPTE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361610C/90D847F0B49A11EF9D6E0B60762E951A/247867E4E27011EFA0A04798762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.128.0/22
IPv6:
2c0f:11c0::/32
Signature Algorithm: sha256WithRSAEncryption
01:65:38:69:51:cf:75:9a:73:f9:a2:17:24:05:e7:8f:8d:0c:
3a:a0:8d:81:f9:7e:a4:0f:7e:08:d9:03:f8:21:40:10:eb:a1:
35:42:1b:ed:11:5e:a1:b7:27:58:69:df:8f:9e:3d:b4:18:d7:
fe:90:6e:4a:e0:7c:f3:2c:26:32:e3:30:80:0e:a2:55:19:46:
e2:53:98:ff:1d:84:db:4f:37:20:93:6e:bb:4a:92:49:78:28:
37:cd:24:8d:32:5e:7f:26:7b:5a:c1:f8:dc:b0:ca:b6:e8:bf:
03:ae:f0:25:93:13:56:19:f7:63:35:b1:48:4c:f2:dd:77:18:
29:ea:7a:80:c1:8b:84:d0:0a:db:8c:0c:13:04:da:de:bf:2e:
ee:78:ac:b4:c6:50:2b:1c:15:5a:04:e6:5e:3a:ef:a5:58:aa:
09:6a:86:b1:3b:2b:ab:0c:36:96:11:f9:2f:43:c9:ce:85:e7:
d6:70:48:17:90:bb:99:3f:ae:f1:77:eb:21:c6:7a:72:4d:32:
2a:ef:ba:83:b2:1a:e9:f9:c8:89:45:47:d2:16:56:3d:54:5b:
75:12:8e:57:38:d3:88:21:71:64:1c:fc:24:bc:7a:48:4c:b4:
e8:f5:3a:b6:9b:4c:41:26:c7:a6:6e:09:aa:70:df:9e:be:88:
98:f3:7b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:55:17 2025 by rpki-client