Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/498D37264A2711EFA1894F85762E951A.roa
File: 498D37264A2711EFA1894F85762E951A.roa (raw, json)
Hash identifier: VQjB7QxkyWPW6zXkuLfk+fW9phqSykjKICBVdLaBH3M=
Subject key identifier: 72:99:C1:B8:EA:2A:2D:BD:DE:D7:0D:44:58:3D:26:40:1A:74:CD:48
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 43
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/498D37264A2711EFA1894F85762E951A.roa
Signing time: Thu 25 Jul 2024 01:43:28 +0000
ROA not before: Thu 25 Jul 2024 01:43:23 +0000
ROA not after: Mon 14 Dec 2026 01:43:23 +0000
asID: 37030
IP address blocks: 41.215.167.0/24 maxlen: 24
41.215.168.0/24 maxlen: 24
41.215.170.0/24 maxlen: 24
41.215.174.0/24 maxlen: 24
41.215.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 25 01:43:23 2024 GMT
Not After : Dec 14 01:43:23 2026 GMT
Subject: CN=66a1adbf-1a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:4a:72:8e:38:27:f7:59:e0:c3:7b:ea:13:
1d:b7:89:d4:e4:a7:05:10:21:24:45:be:7f:59:f5:
75:50:07:39:93:bf:72:cd:c6:8a:42:3b:59:70:28:
ff:d6:fb:97:bd:3b:76:4b:6c:1b:1a:08:2f:a6:c3:
6b:f6:82:8d:b8:26:d4:1d:a0:6b:92:80:95:08:cd:
26:fe:a5:2d:6e:81:28:dc:cd:a3:10:00:1b:b4:90:
f7:4f:03:35:15:e9:5b:20:78:c3:96:90:ad:32:ed:
e1:74:63:5b:44:58:ef:9b:29:84:82:d5:08:54:a8:
14:21:30:8f:41:22:8c:ee:bf:9b:e3:41:16:d3:fd:
1d:15:3b:c0:4b:20:52:43:f5:29:c2:99:50:ac:63:
51:14:a5:86:f2:34:1b:ff:23:b2:ac:7e:67:c9:00:
40:e7:c3:19:56:55:4a:72:c3:0c:12:bd:32:9e:4d:
18:b5:ec:9b:57:1e:2f:15:78:dd:3a:cf:27:f7:87:
34:e3:9d:68:b6:b4:8d:51:ae:4b:d8:8b:f5:59:52:
78:9c:21:99:b0:c1:8a:fe:d2:78:11:78:b5:47:d9:
8a:61:07:6f:12:ad:98:d2:9d:7d:96:6c:99:a2:b6:
ee:86:4b:c9:fd:1c:ab:11:87:21:6c:f2:93:ac:72:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:99:C1:B8:EA:2A:2D:BD:DE:D7:0D:44:58:3D:26:40:1A:74:CD:48
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/498D37264A2711EFA1894F85762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.215.167.0-41.215.168.255
41.215.170.0/24
41.215.174.0/23
Signature Algorithm: sha256WithRSAEncryption
e5:46:6b:41:af:0e:20:28:d0:06:bf:70:ea:a0:27:37:00:9b:
fc:81:4e:c9:af:79:af:fa:36:d9:00:2e:a0:ab:54:4e:65:c3:
36:85:cd:26:60:c1:13:64:87:15:55:90:1b:fc:4e:c6:2e:e3:
67:84:bb:9b:6b:38:76:5b:4a:3d:83:39:33:40:18:7d:ac:2b:
56:5c:55:d1:7c:a6:25:27:72:67:b4:b7:ec:84:d9:fc:55:07:
fb:25:7f:0b:23:b3:ee:7d:ff:d1:ba:f3:81:b3:2b:74:5c:0c:
f4:d6:ff:11:94:98:a0:ff:fc:fc:31:7b:9a:c7:d0:bb:f8:3b:
c5:71:87:1e:81:90:cd:08:f5:22:99:16:68:3d:0b:f1:15:bb:
82:5a:be:9d:cd:a1:e7:81:93:44:0c:84:46:23:cc:3b:6c:fd:
06:f4:2b:e7:ac:d7:81:0b:a8:d6:77:ef:6d:e8:66:ab:57:03:
4c:66:cc:d5:54:e4:95:b1:7d:7a:f1:3d:25:0c:38:63:5b:c8:
4d:0b:0f:cc:ea:69:74:2c:9e:4a:30:5e:57:0b:8c:18:84:10:
9a:39:4b:93:08:7a:ce:6e:9d:9c:4c:c6:73:7d:60:b8:65:95:
05:0f:f7:0c:3c:7d:7c:9e:8f:dc:95:6c:70:b6:75:26:b7:aa:
67:e8:2c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 03:58:06 2024 by rpki-client on console-fra.rpki-client.org