Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0EB3DF82BF2311EDB3345FA4F1222468.roa
File: 0EB3DF82BF2311EDB3345FA4F1222468.roa (raw, json)
Hash identifier: hOrfIWY0+lWdi9otOZ5dejkI6ywVoQDMX1Fdy/zMj4s=
Subject key identifier: 02:04:A4:C8:62:E0:7F:A5:49:84:A8:5D:11:E8:82:8D:AC:CF:3D:04
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 3B
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0EB3DF82BF2311EDB3345FA4F1222468.roa
Signing time: Fri 10 Mar 2023 09:08:01 +0000
ROA not before: Fri 10 Mar 2023 09:07:57 +0000
ROA not after: Thu 31 Mar 2033 09:07:57 +0000
asID: 37182
IP address blocks: 41.93.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:07:57 2023 GMT
Not After : Mar 31 09:07:57 2033 GMT
Subject: CN=640af371-bf26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ed:bc:77:6a:0d:5a:b5:18:07:ae:f6:0f:54:
f9:4f:3e:c0:d9:cf:bd:81:a8:21:22:f5:9f:8c:03:
9c:d9:11:e5:83:d8:71:ab:5e:37:cc:c8:b4:69:27:
14:52:11:3a:64:77:4f:82:5a:70:f5:9d:45:b5:93:
df:f4:23:bc:f3:1c:4d:53:3c:98:5a:35:d2:41:2f:
5a:ea:55:b3:5c:39:3d:19:f1:7c:05:86:59:da:f9:
fe:84:f1:63:65:26:55:8c:03:75:5f:fc:39:40:a9:
b0:1a:2d:0a:55:d2:b6:07:56:d7:e0:e2:17:fb:a1:
78:e9:36:19:c1:61:76:bc:5b:f2:e3:61:23:e2:9e:
52:fe:71:48:e9:ca:80:ea:00:07:90:0b:01:df:8b:
e5:cf:66:de:b4:4d:b3:07:48:62:76:74:2c:59:7f:
16:8d:f9:60:16:7a:98:4e:20:3e:d7:f8:23:5f:1b:
cb:f7:25:9c:ef:c6:64:39:46:b0:f1:b5:a8:b1:f1:
76:18:80:23:a0:10:e5:4f:ce:4f:38:81:68:e0:7f:
28:c0:65:69:d7:c7:48:7f:83:47:d1:c2:71:68:98:
cf:10:77:83:27:24:02:5b:f4:e2:70:a4:85:5c:d9:
03:55:59:e2:6a:34:60:6f:42:54:52:83:c6:40:fd:
ff:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:04:A4:C8:62:E0:7F:A5:49:84:A8:5D:11:E8:82:8D:AC:CF:3D:04
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/0EB3DF82BF2311EDB3345FA4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.85.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:34:06:eb:16:d6:fa:a7:8d:54:3d:69:88:fd:81:c1:28:e3:
bc:95:a3:4b:cc:5c:c6:bd:89:a3:fd:c7:0f:41:23:76:65:dc:
f8:50:7d:f5:5c:79:43:bf:c3:15:4c:8c:65:55:e0:cc:2b:8c:
18:2a:9b:94:23:81:b2:65:de:79:60:53:7d:48:24:e2:72:54:
16:60:d4:af:0e:2f:35:b5:d9:71:2e:13:54:de:47:3c:8b:0d:
ba:23:88:a1:1a:65:13:34:b3:2a:32:b1:20:9c:08:e7:21:90:
08:d0:2b:32:1b:eb:b4:59:30:d5:cb:ac:8a:a1:f9:1b:0b:60:
08:b7:fc:83:c3:ac:53:28:a0:1b:6a:c8:c6:a5:ff:95:af:13:
3b:93:23:7b:e9:77:0c:16:ac:2b:ee:95:3a:77:83:a4:70:0e:
81:96:11:f8:e3:ff:ae:48:ed:f5:c8:42:a3:b1:9d:c1:14:1b:
81:c9:97:45:83:4e:ca:f9:9d:dd:86:5d:69:6f:3f:03:0c:07:
43:a1:0f:0f:50:25:95:27:01:a3:87:39:88:e1:1d:8d:f4:5e:
f2:40:43:a5:f5:c7:13:4a:79:f6:de:68:dd:ff:68:6d:8a:c9:
45:2a:3a:e6:26:88:06:f8:12:4e:63:f9:da:cc:26:ec:b3:a8:
a1:25:f8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 03:29:11 2024 by rpki-client on console-ams.rpki-client.org