Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/2F73D3B2BF2311ED9B37B4A4F1222468.roa
File: 2F73D3B2BF2311ED9B37B4A4F1222468.roa (raw, json)
Hash identifier: Ny0wYY+q0lTI7onN8F7GZEVebUBYeRNJXPz1ufXEDUM=
Subject key identifier: 0E:E2:BB:6B:DD:81:B2:F0:53:1F:06:AB:8F:1F:3E:7A:E0:DA:DE:8E
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 3D
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/2F73D3B2BF2311ED9B37B4A4F1222468.roa
Signing time: Fri 10 Mar 2023 09:08:56 +0000
ROA not before: Fri 10 Mar 2023 09:08:52 +0000
ROA not after: Thu 31 Mar 2033 09:08:52 +0000
asID: 37182
IP address blocks: 41.93.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 May 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:08:52 2023 GMT
Not After : Mar 31 09:08:52 2033 GMT
Subject: CN=640af3a8-bf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6b:90:d8:66:59:df:b6:86:68:8c:ee:64:00:
73:a9:42:0d:84:6b:f3:ef:60:49:b4:58:1c:d9:db:
67:27:b5:a9:95:47:16:3c:ce:12:4b:bd:9f:0f:0e:
ee:d3:55:b4:f8:9e:14:40:d8:c5:77:45:40:34:aa:
ff:40:02:8d:ad:e8:0e:bd:98:56:77:62:bc:dc:09:
9c:ee:9c:00:2f:3e:bb:22:4b:4d:71:99:03:fc:79:
b0:13:f8:c1:d4:7d:3b:f9:82:c9:15:f2:e9:c8:ac:
c2:f4:d8:4e:c0:c5:dd:4a:f5:75:5c:b2:12:91:06:
a5:b2:65:23:3e:85:64:da:33:33:a5:a7:2a:cb:c2:
c1:24:90:4f:f9:81:2a:cc:4f:3b:1e:7b:16:9d:c0:
53:89:d7:d1:8f:c1:6f:d2:3d:9f:07:c7:12:6b:64:
0f:e4:70:35:7a:6a:01:2e:ab:ac:d9:36:c1:86:81:
4a:5c:f3:28:3b:03:cf:97:fd:e3:9f:b8:69:24:ab:
89:18:04:8b:c6:e9:ef:27:0b:c2:b6:91:2f:ef:d8:
45:87:e0:e6:9a:cb:f8:7a:40:f4:28:c2:f2:35:d8:
11:92:29:f6:88:41:0d:f9:ae:de:94:54:a8:f4:aa:
6a:f5:86:a6:fb:b2:b4:4f:7f:13:ab:2f:b3:d7:77:
46:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E2:BB:6B:DD:81:B2:F0:53:1F:06:AB:8F:1F:3E:7A:E0:DA:DE:8E
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/2F73D3B2BF2311ED9B37B4A4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.82.0/24
Signature Algorithm: sha256WithRSAEncryption
15:35:68:06:6a:8b:38:0c:b7:88:87:e9:21:0d:ac:f6:cc:26:
0c:4f:a2:00:8e:43:46:b0:64:7f:30:1a:1c:73:6a:a5:6e:d4:
33:0a:23:ed:db:79:93:6a:4f:af:1d:87:cf:44:61:81:fe:ba:
0b:dd:37:86:7a:8e:26:08:f2:4b:bc:82:94:75:21:0e:f2:e6:
e5:42:3b:6b:3e:60:06:4b:69:e9:26:95:89:dc:03:8e:03:b2:
ac:1b:ec:0b:c5:b7:ac:e8:53:ff:3d:b6:c1:20:3d:17:71:54:
f3:de:19:17:d3:e3:26:3b:0e:b6:69:3e:62:b5:4a:1c:55:08:
51:67:45:e6:ad:9e:ed:16:df:d9:d9:fd:2e:4e:f7:53:20:04:
bc:92:8f:a5:1b:02:e3:1e:f6:46:6c:51:41:ff:d3:b9:ad:42:
58:6a:74:81:71:74:0c:36:4b:c4:63:77:f6:ad:c4:60:c4:b6:
bb:5a:60:75:13:5a:24:c6:02:6a:3e:e3:77:f5:0d:77:3b:d5:
68:ee:0d:00:33:a5:b7:03:cd:3a:90:66:7d:db:ae:40:43:af:
20:b2:1b:2b:26:55:20:f9:ba:00:31:76:99:9a:8c:7c:fa:b2:
1d:b9:7a:3e:09:9e:fc:31:c5:36:24:b9:4f:cc:32:d0:70:39:
78:f9:c9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:51:16 2024 by rpki-client on console-fra.rpki-client.org