Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/178885DCBF2711ED9F903FB1F1222468.roa
File: 178885DCBF2711ED9F903FB1F1222468.roa (raw, json)
Hash identifier: XnciINVGxNytr3HkZUD9DwlG3u5UiY/j2VECyYOEqdk=
Subject key identifier: 93:1F:D7:0E:FE:A4:68:E0:D6:07:EC:EF:1C:89:96:EC:FD:BC:C3:E2
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 4F
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/178885DCBF2711ED9F903FB1F1222468.roa
Signing time: Fri 10 Mar 2023 09:36:54 +0000
ROA not before: Fri 10 Mar 2023 09:36:49 +0000
ROA not after: Sat 30 Apr 2033 09:36:49 +0000
asID: 37182
IP address blocks: 41.93.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79 (0x4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:36:49 2023 GMT
Not After : Apr 30 09:36:49 2033 GMT
Subject: CN=640afa36-2bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:53:ae:34:45:3b:ff:ed:4a:36:f8:85:b1:
ba:c4:c0:00:c7:b5:d9:d3:48:b5:5e:60:fc:df:19:
b4:a1:7f:9a:db:16:5f:0e:4b:29:78:40:d9:f6:46:
59:0c:42:df:30:8a:9a:88:21:5d:24:44:16:ae:98:
c8:df:0d:b8:4e:7e:48:28:32:ed:19:f3:2c:65:c8:
e5:69:a7:5e:69:76:a9:8b:08:a4:ee:15:6b:99:d2:
27:0b:d9:bb:f2:d3:86:58:65:4b:b4:31:25:ec:9e:
9a:fa:8f:57:98:8e:5b:7d:1e:dc:fe:4a:92:09:e8:
26:fe:a9:c1:f6:72:66:a8:41:3e:c5:5f:76:d6:2c:
6f:0c:27:26:46:49:03:c0:70:32:72:86:80:29:5d:
8f:be:eb:af:32:f0:8f:a1:90:1c:3e:9a:e2:29:51:
d4:a7:f4:be:d7:89:3f:f9:80:6c:96:3c:67:de:59:
6a:fc:f4:0a:a8:43:9f:13:fa:62:d9:41:f2:bc:ce:
fe:7e:6e:cf:f7:3f:bc:1b:dd:3e:58:7e:27:98:27:
93:b5:f3:d4:88:10:af:03:a4:94:31:56:db:92:d9:
24:f1:b8:01:5e:d7:e4:0a:a1:84:83:2a:90:b6:ad:
b2:b2:14:cf:e3:d4:87:5d:94:44:2f:df:72:63:19:
44:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1F:D7:0E:FE:A4:68:E0:D6:07:EC:EF:1C:89:96:EC:FD:BC:C3:E2
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/178885DCBF2711ED9F903FB1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.57.0/24
Signature Algorithm: sha256WithRSAEncryption
06:55:71:5d:29:b5:d3:23:5b:5c:b9:a4:40:9c:51:88:a1:b8:
5d:53:dc:62:d7:15:d2:78:c6:c0:df:26:9f:c5:61:50:b4:d3:
06:6a:ef:19:46:06:8b:f6:6d:f2:d3:cc:56:dc:b2:ea:5e:2a:
2f:e2:b7:95:3e:c7:3d:77:1e:2f:36:83:c3:3c:26:6e:a9:4d:
1c:0f:ca:24:a2:3e:24:7b:3d:42:76:40:cb:0a:cf:1f:dc:a7:
97:34:d6:14:33:73:8a:6d:45:87:56:0d:62:c0:13:8f:3b:29:
aa:ce:32:92:73:a0:9d:2b:1c:60:96:e2:13:15:b9:49:ad:bd:
8a:d3:90:4e:8c:37:17:88:01:54:1a:e9:ec:19:f8:f6:82:09:
15:78:78:34:74:54:3a:1f:3f:a6:2b:1a:76:ed:cf:f6:fb:ce:
e7:95:cf:ab:5f:f2:57:5c:61:97:24:ed:0d:47:2d:39:e8:f1:
8c:12:19:5d:8d:9e:ae:e0:63:eb:34:09:b3:6e:5c:42:c6:0d:
f8:ec:22:d5:33:76:69:3a:7d:4f:74:1b:f7:e6:f8:cc:6e:c9:
56:c4:33:35:be:4f:8b:e5:1c:22:84:f6:d6:5a:2b:6a:1d:53:
ee:b5:36:ad:3f:fc:98:35:b3:ad:a9:11:0b:ab:bd:a8:7c:0f:
8e:97:5f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org