Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0A03DE48C16111EDAB12C0EAF1222468.roa
File: 0A03DE48C16111EDAB12C0EAF1222468.roa (raw, json)
Hash identifier: wNEEwiy2rmT1qt5hDyAJJ1svwBI+/RBpe0IsnB0X3sE=
Subject key identifier: A7:1D:12:28:0B:F9:4E:11:F0:3F:E2:29:F2:8A:95:D1:A1:44:7E:5C
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 5D
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0A03DE48C16111EDAB12C0EAF1222468.roa
Signing time: Mon 13 Mar 2023 05:36:44 +0000
ROA not before: Mon 13 Mar 2023 05:36:39 +0000
ROA not after: Thu 31 Mar 2033 05:36:39 +0000
asID: 37182
IP address blocks: 41.93.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93 (0x5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 13 05:36:39 2023 GMT
Not After : Mar 31 05:36:39 2033 GMT
Subject: CN=640eb66c-9e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:a6:01:0f:ad:25:22:46:1c:c5:65:d6:f2:
de:92:46:57:f1:4f:ec:de:34:89:13:f4:ff:61:87:
5d:6f:7c:4b:b7:7f:74:c3:63:27:76:b1:c9:5b:13:
01:a6:c1:d6:aa:71:68:97:a4:ec:d9:00:19:87:23:
84:b8:af:37:d4:3a:57:e8:8b:3e:0d:88:92:10:64:
8a:01:c7:95:14:b9:3d:2c:9e:95:2b:4f:b0:9c:9b:
2a:4b:3c:e9:d9:b2:94:60:3c:67:fb:69:bf:71:d9:
b6:aa:ce:d2:90:ee:94:93:67:6a:dc:78:60:2f:b4:
7d:41:31:4a:29:aa:8a:ed:73:7b:d1:d0:4d:8f:fc:
ef:00:ad:80:00:7d:ed:31:e7:c5:a4:d9:91:47:34:
fb:4e:a2:0b:5d:fc:e6:58:aa:fe:5c:d9:2f:af:4c:
2d:8d:05:6c:a1:00:50:31:60:48:46:32:d4:a3:f2:
e5:b5:69:0a:e9:48:46:4c:c8:ca:0f:a6:e1:4d:d9:
94:de:50:4f:1c:49:40:5f:64:71:dd:0f:b2:d8:4f:
dc:48:b0:aa:e0:e0:fa:ba:b9:0b:c8:55:4a:e1:01:
bf:ff:95:f9:2c:48:ef:27:c0:68:f7:97:49:bf:ee:
91:1c:32:54:46:33:cf:97:fd:fd:97:1a:e7:f5:12:
b4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1D:12:28:0B:F9:4E:11:F0:3F:E2:29:F2:8A:95:D1:A1:44:7E:5C
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0A03DE48C16111EDAB12C0EAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.55.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:4c:f8:ca:22:1c:00:44:9d:c8:e5:94:bf:38:07:ee:52:7f:
a7:8e:e5:5d:0e:c5:74:c3:3f:c8:37:fa:5a:38:11:d0:78:ae:
1c:1d:d6:ac:b6:14:36:96:8b:c6:15:22:0b:dd:5b:8e:0b:90:
15:60:aa:1d:b7:cf:4c:36:d8:8a:9c:89:c7:15:91:b6:72:06:
97:25:05:eb:93:15:3c:df:c0:db:f5:dc:0f:fb:53:e8:fa:5b:
f4:00:4a:9e:b1:3e:3e:5b:11:b7:61:80:b2:1c:5b:f4:25:82:
ed:c0:11:30:cf:0d:7f:ba:4d:37:ce:cd:23:26:62:1c:6f:21:
20:83:63:aa:b9:08:21:c7:17:5d:1a:5f:56:71:21:4c:ab:af:
7e:1e:52:69:c5:d0:2b:aa:a6:15:ee:cf:8c:d9:c0:1b:fa:13:
bd:2e:f4:18:f3:07:c1:22:9c:19:cd:e4:de:2b:c2:21:f8:fc:
4f:c2:4a:83:cc:e0:f2:79:e7:c8:bc:3d:d0:ad:5b:db:f1:6c:
63:fc:67:11:65:76:0e:b6:fc:13:12:8a:9a:9a:bc:85:c1:ba:
4a:ed:f2:2a:bd:5d:a0:49:37:bf:cf:9f:9b:52:2d:69:31:5c:
e6:c1:8a:99:e6:8c:22:05:84:76:1a:b1:80:10:8b:0d:3c:56:
25:7c:71:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org