Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/B8A021FA4A2211EF8E185461762E951A.roa
File: B8A021FA4A2211EF8E185461762E951A.roa (raw, json)
Hash identifier: REvrDWvDpOLHYskkTXn9T4RA7HGDSP4fR+NvvGDn1uM=
Subject key identifier: 44:B1:37:12:BF:21:F5:7C:5B:67:E4:D1:39:26:1A:49:DB:72:08:3E
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 3F
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/B8A021FA4A2211EF8E185461762E951A.roa
Signing time: Thu 25 Jul 2024 01:10:46 +0000
ROA not before: Thu 25 Jul 2024 01:10:43 +0000
ROA not after: Mon 14 Dec 2026 01:10:43 +0000
asID: 37030
IP address blocks: 41.215.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 25 01:10:43 2024 GMT
Not After : Dec 14 01:10:43 2026 GMT
Subject: CN=66a1a616-6b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:a9:a9:06:29:ca:86:26:1f:3d:85:6c:bf:
84:e0:f6:d5:51:25:92:df:48:15:15:e4:5e:ae:1c:
7d:9c:dd:8c:2d:30:13:c1:65:a3:44:08:2e:7c:8d:
fa:ca:c3:a1:0c:e2:1a:51:b1:39:61:2b:28:46:bb:
ce:30:2d:67:84:b6:be:57:13:de:d8:a3:d3:1b:cf:
44:61:99:8f:c5:f8:65:f5:10:fc:de:c7:e3:86:fe:
1d:1d:41:b8:b2:a2:95:06:be:fc:43:d5:27:fa:7d:
39:0a:65:d1:59:17:e4:61:a5:6a:ca:70:f8:e7:16:
f9:4a:07:7c:fd:39:2c:6e:57:d4:33:1e:0d:1b:a3:
79:bf:df:cf:ad:df:0a:5a:fa:7c:c2:a9:c0:05:d7:
08:bc:f6:7d:d2:b5:f5:26:9b:d3:a7:b0:13:fa:b8:
73:a0:92:f6:04:06:74:78:48:e1:b0:ee:90:0f:05:
c0:09:08:fb:67:4c:d0:3e:ed:71:88:0a:20:60:87:
5c:27:1f:75:e5:3e:de:29:48:a6:1e:2a:0b:97:ba:
46:1b:50:81:ed:fe:de:e7:b0:0c:42:88:a3:62:c0:
b9:49:50:cf:ae:57:10:04:c6:1d:5d:11:be:dc:03:
e3:e2:dd:8d:27:f9:67:69:61:73:24:32:7e:39:8c:
f7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B1:37:12:BF:21:F5:7C:5B:67:E4:D1:39:26:1A:49:DB:72:08:3E
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/B8A021FA4A2211EF8E185461762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.215.162.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:cf:07:fc:49:a9:36:59:6a:d0:e6:f6:3e:4b:b1:1c:e8:1b:
da:2f:ae:8b:a4:4b:85:7f:76:b7:e6:5b:93:2b:bf:8d:84:b3:
5e:21:48:da:62:dc:b3:da:32:65:df:77:ff:03:5d:dd:e6:6e:
30:91:3a:57:73:94:ed:8b:40:d3:e6:66:88:47:df:3b:ec:43:
f8:69:73:8f:a6:0b:63:9a:05:0a:c3:50:5e:eb:9b:d7:5e:ef:
d7:33:3f:29:43:5c:40:c4:c0:1e:bf:12:ef:a0:b6:9e:c0:13:
4a:b5:0d:01:ec:07:f9:2d:1a:83:69:bb:c6:36:95:23:39:a6:
e9:5d:4a:7b:01:33:6e:55:90:e0:d5:cc:b6:9d:52:46:54:4f:
f7:ac:60:bf:eb:0f:5a:02:3b:97:df:bf:25:28:ae:df:dc:03:
2f:23:c2:39:79:27:bf:9a:c6:1f:bc:19:99:9f:df:83:a9:6d:
ad:bf:01:1e:27:09:9c:31:3f:85:45:87:19:a7:89:d7:91:70:
14:c1:b2:42:45:85:ba:9c:4e:80:9f:b5:24:01:49:b5:7d:d8:
86:62:bd:73:dd:0d:7f:7a:04:71:b4:a4:fe:e2:ad:04:50:57:
c5:67:93:84:43:dc:ee:0a:eb:10:0c:b5:d2:27:c6:83:40:c9:
ce:20:44:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org