Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/1CE346EEBF2611ED834345AEF1222468.roa
File: 1CE346EEBF2611ED834345AEF1222468.roa (raw, json)
Hash identifier: 9YlfQPakD4SeAbu5HvhSJZl614ewP/boKAqdcTmyTWU=
Subject key identifier: 7D:2A:E3:04:F5:31:9E:C0:F2:F1:F4:56:B4:14:4A:AD:54:C8:D3:22
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 45
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/1CE346EEBF2611ED834345AEF1222468.roa
Signing time: Fri 10 Mar 2023 09:29:53 +0000
ROA not before: Fri 10 Mar 2023 09:29:48 +0000
ROA not after: Thu 31 Mar 2033 09:29:48 +0000
asID: 37182
IP address blocks: 41.93.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:29:48 2023 GMT
Not After : Mar 31 09:29:48 2033 GMT
Subject: CN=640af891-cb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a2:3a:dc:d1:5a:50:30:ef:b8:e1:9c:38:3a:
dc:39:68:25:13:cb:99:d7:f4:13:45:07:31:fb:1a:
4a:66:ed:bc:62:14:e6:64:c6:f3:a8:e0:6b:af:3a:
8b:3a:de:78:a3:e9:7f:ec:85:fd:02:e2:bd:ac:e3:
4d:fc:8b:ce:78:04:1f:84:37:de:79:d5:6d:93:a8:
a0:f0:7b:de:7a:ab:d4:69:3c:f3:32:98:cc:22:f7:
4f:e9:a8:ee:f3:d2:76:bf:72:51:ca:fb:2b:01:9d:
a3:95:03:c7:c0:a4:e6:db:41:ed:9a:c7:56:b4:50:
e0:83:ee:b1:07:14:11:ce:60:43:db:39:0a:96:dc:
ea:d0:2c:df:5c:7c:6d:e3:f7:f6:54:9e:bc:af:1d:
e6:f9:bc:99:d7:b3:db:c9:81:14:07:fa:fa:5a:c6:
0a:94:e7:01:dc:ab:4b:b7:60:bb:9e:86:50:33:16:
32:47:59:fc:bc:05:fe:43:cb:62:55:0e:f4:f6:d1:
c3:51:68:ed:a1:e7:33:33:4f:11:3f:6d:f1:f3:5f:
29:b7:74:93:9d:c6:43:6e:83:5b:18:7a:c0:61:a2:
03:e5:a4:6f:85:dd:f4:17:63:24:48:dc:a7:c2:99:
58:92:49:83:8f:63:ac:cd:b1:09:c3:eb:a3:9b:60:
69:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2A:E3:04:F5:31:9E:C0:F2:F1:F4:56:B4:14:4A:AD:54:C8:D3:22
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/1CE346EEBF2611ED834345AEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.61.0/24
Signature Algorithm: sha256WithRSAEncryption
96:db:00:8b:3c:3c:e7:36:8a:7f:47:7b:cc:53:4f:50:2c:89:
59:51:2a:9e:57:50:3a:65:68:5f:bb:da:3f:e4:f3:b9:02:ad:
ee:f2:53:cb:a9:e7:8a:65:6f:59:ba:34:1e:01:23:48:f2:d2:
07:ce:82:64:39:d5:3a:db:ae:08:ff:c2:d3:0a:8a:e2:21:91:
b7:14:3d:0c:04:ed:27:56:7e:00:2e:3e:96:96:ad:d1:4c:9f:
36:5f:c0:f9:d9:4a:42:df:f6:43:6c:d5:1b:45:66:bf:60:82:
7f:f4:9a:78:fd:79:6f:e0:10:bf:15:d9:fa:b6:39:68:57:e5:
c9:57:6b:1c:ef:37:63:57:bb:4f:e1:91:72:44:65:9f:61:f2:
59:c0:9a:f8:74:a8:2b:60:d3:d5:6e:b4:43:d5:7f:f9:5a:f3:
2c:02:ff:97:25:25:e8:4d:68:40:06:70:35:0d:57:56:49:90:
7a:38:48:25:02:dd:a6:a8:24:2a:95:71:4c:26:f2:86:36:de:
2e:d1:f3:8a:35:51:40:29:31:1c:72:04:0e:cf:88:30:6e:5a:
77:9a:50:21:cb:f3:ff:1c:61:bc:c0:62:6b:7d:89:7a:dc:4e:
cc:b7:f6:ae:43:86:bd:d6:fe:67:d9:9d:a3:ce:5e:ec:81:14:
e3:cc:7f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org