Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/36179DCE456511EFB6170CA4762E951A.roa
File: 36179DCE456511EFB6170CA4762E951A.roa (raw, json)
Hash identifier: fW31+smtFp89q7DbRmjBn7koBQzEeA4McjXb/UoaZ+8=
Subject key identifier: 19:7E:75:A8:CB:66:87:4F:29:6C:CA:52:51:C5:4D:25:45:FB:18:06
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 26
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/36179DCE456511EFB6170CA4762E951A.roa
Signing time: Fri 19 Jul 2024 00:24:07 +0000
ROA not before: Fri 19 Jul 2024 00:00:02 +0000
ROA not after: Mon 14 Dec 2026 00:00:02 +0000
asID: 37030
IP address blocks: 41.215.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 19 00:00:02 2024 GMT
Not After : Dec 14 00:00:02 2026 GMT
Subject: CN=6699b227-1b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:15:4d:e5:c0:d5:8f:e1:60:a4:c9:22:27:f4:
22:e2:0d:e6:44:4c:55:f2:fc:3b:0b:2f:3e:d7:53:
1b:b7:14:38:5c:80:9b:4e:6c:5c:3c:cc:12:82:ac:
5c:43:59:2e:a4:a7:74:02:37:4e:ba:bb:35:f3:f8:
4c:72:84:09:af:16:02:fd:ef:54:30:e0:21:87:86:
a5:15:15:f4:59:cd:99:d5:5a:c3:f2:22:bb:b8:be:
bc:36:94:d2:8e:09:c4:bd:5b:99:96:92:14:41:4a:
17:bb:37:2c:48:23:0c:dc:62:d8:81:8b:37:26:57:
47:1c:96:1d:a3:6c:73:56:56:ca:9c:af:5a:21:69:
fc:7d:9d:e1:11:29:0f:14:a2:3b:fe:2e:b5:29:9b:
52:06:87:93:61:13:74:61:39:a4:cb:26:a4:5e:8f:
bf:7d:d9:82:c1:20:e8:52:19:3d:d1:70:af:7d:54:
9f:f4:17:3e:4e:1f:e2:08:63:45:a6:00:1b:fb:a4:
5b:88:44:96:5c:2d:0f:43:37:41:4b:d0:cc:86:a4:
f1:0d:58:c4:5b:c9:f8:9a:a0:f9:20:aa:d8:1a:dd:
82:53:4a:47:7a:50:0c:b7:eb:f0:da:95:58:a7:8e:
42:e3:34:6a:6e:7b:00:b3:26:b1:a7:28:10:a9:45:
7f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7E:75:A8:CB:66:87:4F:29:6C:CA:52:51:C5:4D:25:45:FB:18:06
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/36179DCE456511EFB6170CA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.215.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:16:80:27:a5:18:1d:a1:e6:49:3f:a1:e1:ff:69:17:9e:5c:
98:1c:a1:41:e8:9c:3b:d5:06:4d:21:f3:e8:79:dc:6c:86:9c:
5a:2d:30:41:17:d5:1e:18:bd:64:2e:da:41:45:3c:6b:a0:49:
f5:ec:ad:e8:bd:30:38:b5:36:ac:4f:88:e1:87:37:1e:a6:56:
c2:28:b8:1e:87:34:32:d8:9e:85:cc:52:52:55:00:a1:90:b7:
c7:7d:77:d1:4f:66:2c:b5:1d:4f:0c:89:7c:1c:39:8b:08:a5:
97:70:4a:10:60:ae:d4:15:bc:f7:4f:db:84:ac:eb:c4:50:e5:
06:62:36:72:7b:04:11:ab:9c:d0:f4:e5:1e:5b:16:a9:5a:91:
07:c1:67:c1:47:29:a1:39:df:95:cf:f9:20:cd:9a:2d:0f:15:
b4:b5:b2:33:89:fc:53:a5:d1:37:a3:86:19:0f:56:f7:f7:26:
31:9c:ff:01:dc:62:a0:4f:bd:6e:da:d5:07:2f:93:b9:ba:14:
15:95:00:91:3e:5e:57:02:d4:8c:5f:41:59:00:28:da:fc:a3:
df:ad:51:2a:ce:71:f2:63:94:5d:87:70:b9:d8:b5:d2:3f:44:
7a:b2:28:81:14:36:82:1c:62:ef:3e:9e:fd:36:57:58:08:d4:
b7:96:da:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 03:58:06 2024 by rpki-client on console-fra.rpki-client.org