Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/67A273EE166411EFBD7C3965017001B1.roa
File: 67A273EE166411EFBD7C3965017001B1.roa (raw, json)
Hash identifier: XYlnou7kQfD138NpOpxfEa0ALGHIsAR97sWZnC83Ikk=
Subject key identifier: 27:4F:92:9C:13:D4:BE:B0:F4:F9:06:3B:23:77:A4:53:FF:1D:0D:AE
Certificate issuer: /CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Certificate serial: 2E
Authority key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/67A273EE166411EFBD7C3965017001B1.roa
Signing time: Mon 20 May 2024 04:49:56 +0000
ROA not before: Mon 20 May 2024 04:49:53 +0000
ROA not after: Thu 20 May 2027 04:49:53 +0000
asID: 36867
IP address blocks: 41.223.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Validity
Not Before: May 20 04:49:53 2024 GMT
Not After : May 20 04:49:53 2027 GMT
Subject: CN=664ad674-ca5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:c2:33:bf:58:ba:65:0f:d6:5b:6c:0a:2d:
5b:5f:66:83:f2:2a:59:5d:96:c6:55:4b:fe:53:46:
87:99:8a:58:8c:d0:46:1f:b0:b4:25:7e:c2:43:35:
7a:db:0e:31:58:50:a0:8b:0c:59:b1:e9:1a:eb:02:
74:37:bc:c5:f6:e5:03:13:02:59:8e:18:d7:99:d6:
42:08:06:8f:50:06:5e:7a:d3:e5:72:a8:2f:22:e1:
82:e5:6e:3b:52:bf:38:e6:c5:cc:a9:b3:c8:c7:25:
70:f0:46:6c:64:5c:a0:a4:94:94:5f:fe:29:56:df:
da:00:31:c8:27:6f:64:b0:a6:91:71:44:9d:bc:ef:
62:8d:fc:5b:f9:98:42:ea:5d:07:40:ea:43:4a:7b:
8b:9a:e2:34:74:00:66:e5:0f:1e:76:19:78:42:b3:
a7:33:06:b1:76:a1:8b:95:37:60:e0:ae:78:d3:ce:
72:34:84:6a:83:51:29:c9:80:80:57:68:4f:dc:e4:
1c:be:e2:69:3e:94:db:c8:85:36:46:60:e5:a1:2f:
74:65:a6:5c:9a:71:b4:a9:1d:f3:e3:90:cf:71:26:
2d:55:f7:5f:4e:05:c1:7d:ed:8b:f0:47:31:f9:7d:
48:9e:23:2c:74:4e:5a:f1:33:3f:89:2c:7d:da:54:
07:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4F:92:9C:13:D4:BE:B0:F4:F9:06:3B:23:77:A4:53:FF:1D:0D:AE
X509v3 Authority Key Identifier:
keyid:4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/67A273EE166411EFBD7C3965017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.205.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:a8:bc:16:67:78:38:7e:31:99:41:36:10:2d:16:2a:ef:e3:
9b:0e:dd:9a:86:03:a6:af:d7:4c:0d:ce:2d:37:2b:f7:4b:b4:
f6:07:df:a5:1c:79:96:57:6f:4d:d8:02:72:d2:b3:ac:72:96:
28:b9:c6:45:6e:5f:a2:16:e2:a2:84:c7:84:35:2a:76:2a:32:
e4:a2:ac:4a:ac:30:a7:e6:e3:7c:11:21:c9:af:16:c7:f5:06:
2c:c2:25:95:fb:59:26:94:46:45:fa:e4:ae:24:8b:c8:9b:c0:
63:f8:6d:2c:90:8f:cc:c9:3f:b1:e1:90:ab:64:6f:54:1d:da:
58:7c:0e:d0:73:2c:9b:27:5e:30:5a:6c:92:2a:01:66:0d:0b:
0d:c9:2b:af:8e:ac:15:b0:cd:58:c5:a6:91:6c:86:19:b4:9a:
35:31:ee:ac:71:1b:55:39:76:39:05:fb:7b:ca:67:53:0f:4b:
9e:e2:1b:53:6b:8d:d7:e9:30:0a:6f:c8:35:32:76:ff:ab:40:
54:c3:06:35:c2:c6:e5:16:81:64:38:0a:d0:04:c9:91:7f:49:
3d:1a:5d:11:8e:8b:f0:2d:1b:06:92:36:86:95:38:8b:91:80:
8e:4e:ac:2c:c0:a5:d9:fe:b9:80:52:6c:5b:55:aa:ac:01:3a:
e7:ed:c6:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:38 2024 by rpki-client on console-fra.rpki-client.org