Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6C108DB64A3611EF92C1C272762E951A.roa
File: 6C108DB64A3611EF92C1C272762E951A.roa (raw, json)
Hash identifier: 3LWWxZduhASOp99bwc0yFeC4A2HSLl0PaRIJhKGmd80=
Subject key identifier: 44:D6:D0:6D:5E:0A:90:0A:C5:51:87:1D:A5:94:98:0E:EC:EE:F6:9A
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 4F
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6C108DB64A3611EF92C1C272762E951A.roa
Signing time: Thu 25 Jul 2024 03:31:47 +0000
ROA not before: Thu 25 Jul 2024 03:31:44 +0000
ROA not after: Mon 14 Dec 2026 03:31:44 +0000
asID: 37140
IP address blocks: 196.175.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79 (0x4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 25 03:31:44 2024 GMT
Not After : Dec 14 03:31:44 2026 GMT
Subject: CN=66a1c723-831d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:09:94:87:d9:62:59:57:71:ab:9f:10:2b:78:
d6:7f:72:f4:f7:8c:1b:28:c1:18:f7:c3:3a:44:be:
cc:4f:9d:1a:33:6d:7d:26:3e:04:17:cd:54:33:0b:
1e:6e:2f:32:b1:04:a7:8b:d0:78:3c:c2:05:32:18:
a3:d7:18:3e:c1:21:8e:1f:fe:02:96:0c:fd:17:89:
f0:4e:9c:e1:8a:71:bc:af:b0:17:db:21:50:c4:0c:
ce:e1:f3:cf:28:74:8c:fa:b3:9e:5f:1f:10:47:44:
2c:0d:af:16:2a:48:ee:5a:24:4f:4f:d7:eb:21:1b:
9a:e5:80:2b:87:8c:c7:c7:81:fe:b8:27:72:0e:f6:
54:7f:e3:bf:0b:ec:14:f0:52:f6:9b:96:2d:2f:eb:
a4:87:d0:96:d6:a5:e5:30:09:64:40:f0:a9:8f:b0:
92:ed:b1:61:7e:f5:8b:e6:be:4c:b2:82:cc:00:22:
9f:d0:fd:7a:d6:57:d1:52:b2:99:9d:76:ec:d8:5a:
51:1e:28:94:21:dd:cc:39:8e:2c:d8:e4:23:50:f2:
ec:7f:90:52:2e:59:ca:12:03:b9:0d:45:4f:09:3d:
b3:64:24:14:9b:0e:41:1e:d8:85:a0:ce:ec:8c:db:
67:8b:c5:a5:1a:f7:41:65:dd:df:c1:ce:37:cc:e4:
af:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D6:D0:6D:5E:0A:90:0A:C5:51:87:1D:A5:94:98:0E:EC:EE:F6:9A
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6C108DB64A3611EF92C1C272762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.175.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:76:2f:0b:52:0c:8e:da:3f:03:33:98:54:05:6f:6c:6b:23:
eb:12:5a:b1:11:1b:10:a0:18:30:3a:72:75:54:2b:dd:7e:7b:
4e:e0:1d:3b:3b:a1:fd:91:17:b4:e5:25:97:40:c1:e1:a6:3b:
fe:61:88:0e:81:61:21:fd:84:b4:01:55:a6:39:76:c4:9d:51:
84:af:17:62:5a:95:4e:48:73:30:de:04:46:35:aa:08:79:53:
5e:19:71:4f:57:e3:08:6e:b2:1e:13:63:14:c9:8d:69:b1:ee:
2d:9d:28:31:b8:2b:a2:89:0c:02:4f:84:45:b9:f4:61:52:f2:
98:5f:4a:2c:96:8c:d6:b4:c1:e2:80:f1:d1:b5:b1:ad:9e:28:
90:d9:b3:1a:0f:ff:a5:72:7a:53:cf:b8:7b:41:24:74:fe:47:
76:f3:b2:10:b8:d4:40:94:0c:6f:04:7a:2e:68:e4:c7:68:2c:
ce:87:a8:ef:1e:26:1f:63:e8:3d:c0:23:a9:0f:91:b4:7d:9a:
3f:34:e6:ea:00:ba:b6:1b:5c:0a:de:17:02:6d:80:3b:20:1c:
df:16:55:14:0d:6b:60:72:4d:c1:43:7d:0c:2c:7d:ca:d8:a7:
e1:0d:58:e7:7b:ca:d0:26:f0:db:60:0d:a8:9d:99:13:20:e8:
da:d2:48:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 03:58:06 2024 by rpki-client on console-fra.rpki-client.org