Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/2B48BC985C0C11EB9996AA30F8AEA228.roa
File: 2B48BC985C0C11EB9996AA30F8AEA228.roa (raw, json)
Hash identifier: q6nVowz9VuDpjWX/IbvfjqSfChWzoCDvGswNPS2gk/0=
Subject key identifier: BC:4B:0E:AC:49:A4:55:F6:30:D1:49:D9:3A:B7:E0:D3:90:B9:28:B4
Certificate issuer: /CN=F362FF17AF/serialNumber=9CD41396ABCF9BB9EFF6E26855324F83C59DC69A
Certificate serial: 3B
Authority key identifier: 9C:D4:13:96:AB:CF:9B:B9:EF:F6:E2:68:55:32:4F:83:C5:9D:C6:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/2B48BC985C0C11EB9996AA30F8AEA228.roa
Signing time: Thu 21 Jan 2021 17:14:51 +0000
ROA not before: Thu 21 Jan 2021 17:14:45 +0000
ROA not after: Tue 21 Jan 2031 17:14:45 +0000
asID: 6453
IP address blocks: 41.206.176.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.crl
rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.mft
rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362FF17AF/serialNumber=9CD41396ABCF9BB9EFF6E26855324F83C59DC69A
Validity
Not Before: Jan 21 17:14:45 2021 GMT
Not After : Jan 21 17:14:45 2031 GMT
Subject: CN=6009b68a-8519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:88:1f:d4:f5:81:4f:55:28:bd:8c:3e:9e:43:
3d:91:76:41:2f:ac:0a:4d:21:6a:5b:55:c3:c2:9a:
b5:c5:e1:39:fb:88:63:cb:f1:ed:00:f5:a7:36:2a:
34:c4:6f:8c:53:47:cd:65:11:30:6b:0a:0f:03:42:
a1:bd:f0:f0:9c:8a:c8:58:08:00:c4:6d:50:69:10:
11:cd:b8:f2:5e:c7:a0:0f:6a:76:63:18:c0:df:c7:
69:06:dc:69:a1:64:ef:bd:a3:5a:f0:4f:18:77:71:
19:03:e6:3d:8b:0a:2c:70:26:00:a5:29:55:0a:cf:
67:27:31:2e:d0:04:24:f9:b0:2c:e2:28:a8:6b:f9:
c3:68:88:18:22:de:84:34:02:2b:b7:03:f9:cc:bd:
67:e1:52:96:ab:c8:67:82:e1:e5:e3:52:2d:a1:59:
e3:b1:d2:e8:1e:e6:d5:4b:fd:5d:46:14:91:71:14:
ea:78:4a:bc:76:14:b8:75:68:bf:7b:83:f2:65:1b:
38:90:9b:e5:05:42:6f:92:91:85:b8:40:42:ac:fb:
36:be:82:f9:eb:04:7c:28:90:04:89:4f:aa:71:42:
c4:f6:21:05:73:15:57:a5:d3:0d:c0:ea:8c:80:eb:
d6:64:19:77:a6:44:32:e2:34:35:3c:5b:4b:c8:41:
9c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4B:0E:AC:49:A4:55:F6:30:D1:49:D9:3A:B7:E0:D3:90:B9:28:B4
X509v3 Authority Key Identifier:
keyid:9C:D4:13:96:AB:CF:9B:B9:EF:F6:E2:68:55:32:4F:83:C5:9D:C6:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nNQTlqvPm7nv9uJoVTJPg8Wdxpo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362FF17/A44CBC7E332211EB93A21571F8AEA228/2B48BC985C0C11EB9996AA30F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.206.176.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:62:06:8a:f2:a2:97:03:5c:c9:3d:2a:48:c1:3a:66:a8:cf:
c9:7f:e7:c5:9a:73:5e:dc:50:d4:43:28:90:b5:11:80:91:53:
bb:84:0a:78:02:7f:62:9b:ad:7b:03:37:98:a0:b7:20:88:78:
74:a5:e6:a2:d5:2f:89:41:81:24:23:01:f0:9e:4f:fb:a1:9c:
da:a7:ee:2e:a0:e9:a0:ad:9b:e7:40:c6:b9:27:ba:8f:62:ed:
76:fe:67:2f:c9:b2:be:4b:28:af:ed:46:14:e7:3e:e1:0d:71:
ed:27:e8:81:be:07:8f:5e:ee:3d:b2:f1:63:9d:a3:8c:26:c2:
72:5c:4b:90:1d:b3:83:2b:06:d3:7f:67:98:1b:11:1a:41:be:
de:57:7d:2f:ef:16:73:cf:09:0c:dc:f4:68:cc:ea:68:10:a7:
89:30:38:a3:b4:ca:f6:d6:62:fe:e3:ad:97:9c:01:b6:f9:76:
7c:91:28:33:47:5e:fc:d3:74:b5:f4:5c:25:18:ba:12:96:d4:
17:9d:ff:f1:52:1d:72:8f:f8:7f:3c:68:ff:21:4c:43:09:88:
ba:26:66:0b:72:e9:e5:38:93:7e:8c:04:94:9b:28:cf:15:93:
76:8b:40:10:8c:69:3e:a0:b9:cd:6a:f9:ee:56:b3:8f:30:77:
94:ce:9c:28
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBOzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYy
RkYxN0FGMTEwLwYDVQQFEyg5Q0Q0MTM5NkFCQ0Y5QkI5RUZGNkUyNjg1NTMyNEY4
M0M1OURDNjlBMB4XDTIxMDEyMTE3MTQ0NVoXDTMxMDEyMTE3MTQ0NVowGDEWMBQG
A1UEAxMNNjAwOWI2OGEtODUxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKWIH9T1gU9VKL2MPp5DPZF2QS+sCk0haltVw8KatcXhOfuIY8vx7QD1pzYq
NMRvjFNHzWURMGsKDwNCob3w8JyKyFgIAMRtUGkQEc248l7HoA9qdmMYwN/HaQbc
aaFk772jWvBPGHdxGQPmPYsKLHAmAKUpVQrPZycxLtAEJPmwLOIoqGv5w2iIGCLe
hDQCK7cD+cy9Z+FSlqvIZ4Lh5eNSLaFZ47HS6B7m1Uv9XUYUkXEU6nhKvHYUuHVo
v3uD8mUbOJCb5QVCb5KRhbhAQqz7Nr6C+esEfCiQBIlPqnFCxPYhBXMVV6XTDcDq
jIDr1mQZd6ZEMuI0NTxbS8hBnLcCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBS8Sw6s
SaRV9jDRSdk6t+DTkLkotDAfBgNVHSMEGDAWgBSc1BOWq8+bue/24mhVMk+DxZ3G
mjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MkZGMTcvQTQ0Q0JDN0UzMzIyMTFFQjkzQTIxNTcxRjhBRUEyMjgvbk5RVGxx
dlBtN252OXVKb1ZUSlBnOFdkeHBvLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvbk5RVGxxdlBtN252OXVKb1ZUSlBnOFdkeHBvLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MkZGMTcvQTQ0Q0JDN0UzMzIyMTFFQjkzQTIxNTcxRjhB
RUEyMjgvMkI0OEJDOTg1QzBDMTFFQjk5OTZBQTMwRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAynOsDANBgkqhkiG9w0BAQsF
AAOCAQEArmIGivKilwNcyT0qSME6ZqjPyX/nxZpzXtxQ1EMokLURgJFTu4QKeAJ/
YputewM3mKC3IIh4dKXmotUviUGBJCMB8J5P+6Gc2qfuLqDpoK2b50DGuSe6j2Lt
dv5nL8myvksor+1GFOc+4Q1x7Sfogb4Hj17uPbLxY52jjCbCclxLkB2zgysG039n
mBsRGkG+3ld9L+8Wc88JDNz0aMzqaBCniTA4o7TK9tZi/uOtl5wBtvl2fJEoM0de
/NN0tfRcJRi6EpbUF53/8VIdco/4fzxo/yFMQwmIuiZmC3Lp5TiTfowElJsozxWT
dotAEIxpPqC5zWr57lazjzB3lM6cKA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:25 2024 by rpki-client on console-fra.rpki-client.org