Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/249BD64CBC4411EDAA1D9CE5F1222468.roa
File: 249BD64CBC4411EDAA1D9CE5F1222468.roa (raw, json)
Hash identifier: Ytf1hC/XvY+Y2furjlGL+4dwSf66yrTuHd5UuCz0wQs=
Subject key identifier: B7:C1:A2:70:F3:CD:79:48:35:C2:91:A8:37:E5:21:80:36:7E:B2:B2
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 06
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/249BD64CBC4411EDAA1D9CE5F1222468.roa
Signing time: Mon 06 Mar 2023 17:27:18 +0000
ROA not before: Mon 06 Mar 2023 17:27:14 +0000
ROA not after: Thu 31 Mar 2033 17:27:14 +0000
asID: 37182
IP address blocks: 41.93.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 May 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 6 17:27:14 2023 GMT
Not After : Mar 31 17:27:14 2033 GMT
Subject: CN=64062276-1469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:93:73:0a:22:a4:e5:d1:a2:34:ec:77:e7:
52:85:59:69:40:bf:b7:0b:48:42:83:00:d0:fe:92:
89:18:24:d9:1d:a4:42:79:9c:25:16:d0:0b:48:e2:
0e:1f:69:04:9f:63:ba:75:92:0d:74:0a:d4:1f:b5:
be:a6:67:45:c9:7b:08:75:9e:5e:14:fc:46:33:fb:
d9:be:6d:46:1c:c8:ba:96:10:42:e9:aa:d2:4d:57:
80:83:35:79:80:92:42:2f:9f:41:5f:f6:cf:75:a5:
fd:4c:40:48:2f:49:cb:80:d2:15:a2:be:8b:a1:9e:
e7:26:f6:ba:5b:5f:b6:b8:08:8b:89:1a:14:be:44:
95:a5:f4:f5:4c:22:44:e9:b8:69:13:32:bd:64:a3:
4b:d1:fd:0b:a0:20:ba:89:3c:d3:59:d7:b6:b6:74:
cf:41:d4:67:da:ed:7a:7b:f0:cf:be:48:4f:5b:a9:
38:23:3a:36:90:35:1f:9e:09:df:b5:6f:44:95:43:
c5:1a:8b:49:43:50:8f:8b:e0:b8:f6:c5:9e:43:40:
cc:69:1d:1e:92:85:65:27:38:28:cf:4c:f2:68:07:
fd:82:1f:5b:d0:0a:e3:f0:35:2b:b5:96:e2:18:ed:
10:c6:a7:10:52:59:23:32:09:8a:e5:84:e6:81:b8:
b3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C1:A2:70:F3:CD:79:48:35:C2:91:A8:37:E5:21:80:36:7E:B2:B2
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/249BD64CBC4411EDAA1D9CE5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.28.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:f2:c7:61:16:0e:a9:34:bc:b8:53:4e:c8:93:e6:a9:36:9a:
d6:bd:86:5c:d5:32:2b:d6:03:b2:da:76:f7:22:fe:87:e3:ee:
eb:4c:ca:27:74:00:e7:cf:45:83:ed:aa:4b:33:3b:b6:f4:0c:
28:39:64:d8:ff:f8:ae:33:3f:43:d9:ed:f2:dd:75:96:8c:7d:
23:70:2e:d9:d0:89:56:7a:d4:b2:59:af:18:f4:9f:64:eb:90:
bf:c3:a5:8c:77:a7:58:82:2f:2a:11:7d:eb:7c:60:91:5b:ec:
1c:25:cc:47:82:98:e7:42:53:f2:f5:c0:2b:cb:45:3a:8b:dd:
4f:84:86:8c:6a:44:9e:b8:34:78:4b:5d:03:8e:07:6f:cf:41:
cf:68:22:b1:80:6b:6b:93:54:eb:b9:72:a5:da:4c:41:7b:30:
46:78:5e:1e:f4:1a:b9:e9:a2:14:c6:5a:f1:1c:18:af:47:55:
0a:58:97:d3:f8:0c:e3:bb:23:40:07:43:c8:da:e2:e8:e9:5a:
f1:79:38:2b:78:ba:98:c6:6c:e7:1d:7f:33:4d:08:c6:18:cb:
da:da:6d:fc:5f:66:6d:03:b4:34:fe:d9:1d:d7:3b:d9:f5:0f:
77:0e:54:d2:2a:a8:c9:4d:35:f5:c7:77:98:e9:ac:c7:c6:c7:
ab:26:e6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:51:16 2024 by rpki-client on console-fra.rpki-client.org