Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0C3193D0BF1E11EDB876C095F1222468.roa
File: 0C3193D0BF1E11EDB876C095F1222468.roa (raw, json)
Hash identifier: Q+OnoNoPzMjD1hY+ReyTCMqiM8GA1CqWHulyyKsryPQ=
Subject key identifier: 24:02:EA:FC:AB:2B:8B:86:5C:B9:30:DD:34:8D:F0:48:6F:E8:18:42
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 1F
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0C3193D0BF1E11EDB876C095F1222468.roa
Signing time: Fri 10 Mar 2023 08:32:09 +0000
ROA not before: Fri 10 Mar 2023 08:32:06 +0000
ROA not after: Thu 10 Mar 2033 08:32:06 +0000
asID: 37182
IP address blocks: 41.93.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31 (0x1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:32:06 2023 GMT
Not After : Mar 10 08:32:06 2033 GMT
Subject: CN=640aeb09-3296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8d:35:d9:dc:8b:23:89:32:ec:28:da:ff:77:
1a:96:f5:3e:52:fc:52:09:3b:b7:13:81:d4:7d:9b:
5c:57:a5:d3:8a:83:d5:d3:d2:12:1a:67:5f:e1:ff:
be:50:57:1d:4d:67:b7:07:a4:67:2e:2f:09:a5:ef:
b0:c2:79:ae:7d:ff:2c:7a:3c:a3:45:de:c1:57:1e:
c0:8e:67:ae:1a:e6:1c:4d:d3:14:da:d2:75:ca:d9:
0b:83:57:30:61:a0:75:6e:58:23:d7:56:75:dd:e6:
20:20:37:30:dd:8f:8f:f8:e1:07:77:03:0d:de:ac:
e1:1f:80:3b:a6:42:d6:4b:0b:7a:65:40:43:8b:c0:
25:7c:f6:56:ca:0a:0e:07:0c:5c:ef:24:29:66:c0:
d0:5c:95:79:5c:0c:13:a6:06:20:71:0b:60:aa:1c:
98:29:94:0e:fb:b6:60:f3:c2:29:26:cd:af:38:c4:
0b:7f:99:ac:d7:84:6c:22:08:e2:27:86:2b:97:84:
95:1d:b7:6b:2f:e5:03:60:fb:8a:9a:eb:a7:57:5f:
b8:ec:3a:4f:91:67:27:7d:c2:4b:35:e8:4c:37:92:
12:4d:9f:44:fb:15:27:72:0d:26:d5:17:68:1a:09:
73:12:f9:43:3c:e4:76:1a:47:e6:56:67:b9:f4:1a:
23:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:02:EA:FC:AB:2B:8B:86:5C:B9:30:DD:34:8D:F0:48:6F:E8:18:42
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0C3193D0BF1E11EDB876C095F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.43.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f4:a3:6b:02:e4:a1:6a:37:cf:f8:b3:10:41:53:c1:86:ec:
75:e0:6e:5a:0e:1d:78:39:fc:8e:e9:5b:3a:8b:50:0a:33:1d:
f3:17:ee:a4:b1:83:ea:d0:c8:7c:9a:74:b9:67:8d:b2:0b:34:
db:4f:ac:23:5e:26:78:91:3c:34:ca:25:d0:d2:68:48:86:f2:
75:9c:a7:ad:9b:3b:56:81:b2:fc:de:a2:6c:f2:07:d7:97:1c:
16:fb:57:d8:06:6a:23:6e:48:a2:46:d5:dc:18:11:4e:6d:fe:
d9:fc:18:02:1e:7d:d9:bc:36:5f:d9:9e:b9:4e:fc:a2:d6:4b:
5d:3f:60:14:66:cc:e3:26:c2:57:0a:44:78:ba:2f:a4:30:48:
49:f0:64:cf:cf:64:c3:6c:23:74:48:53:0f:7e:ea:04:4d:08:
66:58:76:74:b1:51:d6:29:08:91:d9:82:99:c3:90:4e:e8:1e:
36:2c:2b:9b:6b:d0:eb:be:d2:f9:87:79:4f:ed:5d:7e:09:68:
d7:43:f9:6a:36:ad:7b:5a:e1:ae:72:ca:38:4a:ee:d3:20:6d:
0f:e9:b3:32:8c:40:86:7b:cd:c9:ac:54:94:b0:b0:59:f0:19:
cd:58:5b:50:0a:46:76:22:cf:d7:32:72:04:1d:d1:b1:13:08:
c2:6e:4b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org