Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/6B04BB22011511F0AF554960762E951A.roa
File: 6B04BB22011511F0AF554960762E951A.roa (raw, json)
Hash identifier: 3WxUCfRbXJ1KMY5g7/PNsdsO7X5TUzWeRweVMnOzn2Q=
Subject key identifier: 66:4B:36:8C:9A:55:69:5E:7C:35:0D:DE:02:A9:A9:BC:43:60:28:17
Certificate issuer: /CN=F3668B03AF/serialNumber=C0E60D828818A0C15EFF3A12049E6575597ED9AB
Certificate serial: 06
Authority key identifier: C0:E6:0D:82:88:18:A0:C1:5E:FF:3A:12:04:9E:65:75:59:7E:D9:AB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/6B04BB22011511F0AF554960762E951A.roa
Signing time: Fri 14 Mar 2025 20:46:35 +0000
ROA not before: Fri 14 Mar 2025 20:46:31 +0000
ROA not after: Tue 14 Mar 2028 20:46:31 +0000
asID: 22351
IP address blocks: 41.194.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.mft
rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 03:26:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668B03AF
Validity
Not Before: Mar 14 20:46:31 2025 GMT
Not After : Mar 14 20:46:31 2028 GMT
Subject: CN=67d495ab-4af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:ac:40:2d:5e:a1:a1:02:da:34:f0:0b:d3:
00:5f:49:ea:12:0d:e3:1b:ad:32:77:4f:5c:a1:9b:
5a:37:a4:cf:cd:43:d3:94:4b:a9:6c:7f:99:29:4e:
ef:09:ba:62:85:38:86:21:9b:63:e6:d7:b1:82:18:
59:0b:df:e1:f9:d5:30:b1:f5:12:ce:ac:3d:aa:bc:
7d:26:dd:f7:16:03:5d:a2:a1:72:4c:eb:52:c5:2c:
77:b9:4e:49:d8:5e:3c:13:71:7f:2b:62:5e:94:71:
07:f6:a5:87:7a:51:04:89:b3:54:d0:13:91:cd:7f:
89:26:28:fe:c8:a5:91:82:d4:44:ed:f4:62:84:ac:
bc:cb:ae:34:19:e9:4a:4f:a8:43:30:2f:d6:97:b1:
99:e4:b5:b9:87:2f:c7:d0:b8:bd:4b:d3:06:b6:ec:
f4:52:5c:3b:f0:c6:fc:f9:57:a3:aa:8f:d2:10:e8:
28:28:85:8d:37:e7:45:84:19:7a:5f:fd:eb:98:ea:
2f:0e:b1:8e:67:a7:2d:3e:c9:03:73:ec:39:6f:5a:
ce:2f:68:48:8a:02:66:b9:90:69:b0:d3:43:e7:b9:
6b:f6:89:c1:fb:22:db:83:b4:81:25:36:7c:fd:03:
38:76:55:35:10:81:4f:13:19:3c:5b:d8:1f:89:b0:
41:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4B:36:8C:9A:55:69:5E:7C:35:0D:DE:02:A9:A9:BC:43:60:28:17
X509v3 Authority Key Identifier:
keyid:C0:E6:0D:82:88:18:A0:C1:5E:FF:3A:12:04:9E:65:75:59:7E:D9:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/wOYNgogYoMFe_zoSBJ5ldVl-2as.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wOYNgogYoMFe_zoSBJ5ldVl-2as.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668B03/6F9343B2011411F0BB17FC57762E951A/6B04BB22011511F0AF554960762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.194.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:10:62:7e:34:fa:0c:37:ef:ac:5a:07:a4:ba:be:93:fe:04:
66:25:54:2f:37:94:d1:1c:88:2b:90:db:39:42:f7:74:c8:82:
6d:3c:1e:d0:16:c3:d5:b3:8a:9b:6a:25:2c:a6:2f:21:ea:2a:
97:1f:c9:e9:7e:9e:6e:7c:45:d2:eb:84:be:5c:70:6b:88:19:
24:b8:6f:9d:42:ad:69:ca:3c:95:fd:05:95:f2:ef:9c:41:80:
88:b5:5b:64:ae:9d:29:2b:d1:34:28:93:c2:95:03:17:75:83:
88:6b:60:3c:b5:f0:28:4e:db:60:c4:86:15:29:21:3f:dc:fc:
f4:0a:f7:f7:54:c6:ab:81:77:f9:a5:cb:1c:48:f6:8a:6b:a9:
6d:4e:cd:d8:79:57:5d:5f:60:63:46:30:11:90:7d:12:f6:09:
17:b4:74:95:c7:53:f9:fc:03:09:1a:67:d1:ff:f8:8f:bc:61:
d7:57:21:a2:5f:9d:22:f0:e7:d3:e4:5d:5f:41:24:08:3d:54:
8f:ae:86:db:fc:65:14:e3:6a:b3:b6:19:e8:47:fe:e0:46:f5:
39:fb:d3:a5:c4:33:fb:fc:b8:d5:b1:77:0a:7e:4d:61:7c:0f:
71:c9:0f:64:16:df:7e:a0:34:5d:68:c3:1c:a2:d8:28:5b:75:
f9:24:df:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:32:29 2025 by rpki-client