Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6D2E74EC495A11EF8DD0F68C762E951A.roa
File: 6D2E74EC495A11EF8DD0F68C762E951A.roa (raw, json)
Hash identifier: Tx9oqh45dbtkEF/evkOGPsO3I8D+e6jKaajVRCuI6SI=
Subject key identifier: C9:A6:9D:13:32:F0:84:76:D1:62:22:B2:0B:61:38:44:1C:F4:61:4A
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 36
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6D2E74EC495A11EF8DD0F68C762E951A.roa
Signing time: Wed 24 Jul 2024 01:17:00 +0000
ROA not before: Wed 24 Jul 2024 01:16:57 +0000
ROA not after: Mon 14 Dec 2026 01:16:57 +0000
asID: 37030
IP address blocks: 41.215.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54 (0x36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 24 01:16:57 2024 GMT
Not After : Dec 14 01:16:57 2026 GMT
Subject: CN=66a0560c-66c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2c:06:49:e2:8f:de:4c:21:28:f4:75:c4:f7:
fc:1e:98:fa:07:e5:76:4e:37:79:e7:db:5d:29:6d:
01:c3:c6:1b:a4:34:eb:45:6b:89:72:d8:5b:50:f3:
33:92:7f:bd:9d:a8:d7:a4:19:8b:52:e1:18:13:e1:
71:c3:42:81:d0:b1:c2:0e:df:01:c3:76:d6:fa:5c:
c3:e0:71:67:42:5f:fe:41:a3:4f:8d:ae:1a:80:b4:
38:ec:a7:6e:3a:2d:ef:09:64:9f:d0:35:25:40:3b:
8d:a6:7c:0b:48:ff:53:ed:4d:62:23:15:ea:3b:94:
02:f3:f8:e2:f7:10:1a:39:3d:2c:49:69:69:2f:83:
2c:de:68:dd:c1:f2:32:10:7c:39:93:9b:ea:b2:f9:
11:58:85:df:0a:67:4c:01:4a:3a:0e:10:5c:ed:a3:
78:76:29:50:08:8f:d3:3d:6e:f7:34:c6:17:7d:c4:
0b:7c:d5:81:fe:ab:d5:56:dd:93:a5:60:92:84:9d:
a7:bb:cd:97:2b:ad:7c:b1:b2:6d:e9:f5:33:b3:3c:
a3:4c:19:5e:15:a0:14:d7:6b:5d:02:4f:b6:ef:e9:
9a:9b:b2:ca:29:fe:48:e1:c4:4a:75:8b:0f:8b:9e:
b0:17:aa:f3:c3:90:13:ac:b2:d7:bc:a0:7c:51:c8:
f9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A6:9D:13:32:F0:84:76:D1:62:22:B2:0B:61:38:44:1C:F4:61:4A
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/6D2E74EC495A11EF8DD0F68C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.215.172.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d7:e4:c3:a2:0e:7f:9a:af:a4:05:f9:fc:4c:eb:1c:d8:80:
02:f7:7f:6a:7e:f9:c3:c0:44:be:c9:be:61:4c:9e:e5:30:ec:
ae:ee:fa:03:f2:c5:83:a7:b2:12:34:90:32:ad:5b:2f:f4:69:
90:a0:87:f6:8f:cd:0c:a9:6b:33:62:6c:e5:a0:cf:43:df:bb:
8e:fd:74:2f:cf:f9:29:5b:71:84:fc:79:ce:a4:e1:d1:28:20:
38:3b:7d:18:cc:7c:4b:e2:74:b0:1b:93:a9:67:66:e4:e7:13:
e7:e8:a1:c2:e8:24:06:4f:95:34:ff:2c:ae:d5:de:86:d4:4b:
a0:64:f1:75:f7:96:4c:cf:fe:4b:15:cb:79:d8:0a:52:b6:52:
3e:ad:7e:9b:99:a2:22:29:83:f3:e3:34:28:c3:de:c1:df:34:
56:09:75:93:f1:4c:15:41:5a:72:33:27:1a:a0:88:8f:05:56:
71:d9:26:af:2b:48:48:a4:42:ce:26:97:32:f1:ef:60:b0:73:
c4:eb:00:57:cc:93:f0:e9:6d:3c:08:fa:59:23:72:9b:ff:fb:
27:44:2b:b1:88:cf:9f:9a:41:fe:44:96:1b:a6:dc:5e:15:f2:
9d:c7:01:24:e5:10:c9:ec:2d:88:0a:61:b7:7e:ea:11:35:56:
d8:6f:07:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 03:58:06 2024 by rpki-client on console-fra.rpki-client.org