Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/353A09FCBF2211ED9273EBA1F1222468.roa
File: 353A09FCBF2211ED9273EBA1F1222468.roa (raw, json)
Hash identifier: pTHQajzq9RNIuv6BUJjRJilJPgxNphBZuMqfoHT8cqI=
Subject key identifier: B8:7E:44:65:18:0F:5D:94:E1:9B:9A:BC:CC:89:2A:41:D4:AF:26:2B
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 33
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/353A09FCBF2211ED9273EBA1F1222468.roa
Signing time: Fri 10 Mar 2023 09:01:56 +0000
ROA not before: Fri 10 Mar 2023 09:01:52 +0000
ROA not after: Thu 10 Mar 2033 09:01:52 +0000
asID: 37182
IP address blocks: 41.93.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51 (0x33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:01:52 2023 GMT
Not After : Mar 10 09:01:52 2033 GMT
Subject: CN=640af204-50a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ba:40:89:40:a2:06:8d:81:34:22:0a:29:f8:
15:81:6d:09:5d:39:5e:73:0b:49:01:9b:d6:96:5c:
dc:d4:76:ed:80:7a:63:ae:68:28:9b:13:94:da:6c:
88:da:8c:2a:4d:59:1f:bd:67:5c:25:69:0d:fe:74:
df:81:70:08:9c:51:7b:6b:02:2e:10:a9:31:e1:10:
78:62:03:85:1d:f8:52:4f:be:9b:0e:90:c4:60:e1:
f7:ac:be:f9:6b:22:62:58:49:c7:0c:7f:1c:80:b7:
38:64:56:82:82:3b:1e:6f:19:30:06:e8:e1:ad:8f:
19:ec:2a:bb:9f:18:73:9f:dd:2a:6e:b6:bc:30:94:
0e:81:f6:38:78:e6:6b:4f:ab:74:f9:82:9a:54:4a:
08:7a:b1:71:93:d8:15:2c:21:64:b2:3f:97:34:b8:
b3:4a:4a:00:e3:be:2f:13:0e:be:30:b0:8b:2b:7c:
d8:61:b7:78:66:da:4c:3f:8b:fd:4d:27:4a:b5:3f:
89:18:40:45:90:ac:7b:38:ac:85:7e:d0:17:f7:9a:
9f:6d:e4:00:c9:57:6c:87:36:a5:7b:2b:80:44:82:
99:fc:fa:b7:7d:61:1a:d0:09:46:7a:a8:35:1d:54:
bd:24:00:cf:78:92:4c:67:ca:17:cb:a0:a3:a0:b0:
9e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7E:44:65:18:0F:5D:94:E1:9B:9A:BC:CC:89:2A:41:D4:AF:26:2B
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/353A09FCBF2211ED9273EBA1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.73.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:eb:92:4c:5e:bb:9c:91:2d:5a:84:21:8e:07:49:60:de:b8:
74:dc:45:bc:d8:8c:8c:06:e6:4a:35:46:45:fb:dc:f2:f5:de:
f5:76:7f:aa:14:bd:35:61:3f:20:0e:c2:2f:60:24:39:6f:f7:
c2:61:ea:7d:ca:75:a2:96:08:9f:95:e3:3a:63:c8:1c:db:a0:
ce:b1:de:35:bd:b7:18:d6:7c:f5:cc:7f:d0:ff:44:c6:41:b8:
48:f1:58:5e:64:dd:b6:80:a2:0f:57:13:1a:76:ca:7f:59:ca:
24:49:6c:30:83:7b:14:fe:c0:9c:9d:f2:dc:8a:86:f6:51:c7:
46:0a:18:96:41:4a:ca:b3:0d:85:32:cb:83:92:d4:f3:cf:02:
4e:50:65:9b:2e:70:7a:04:7f:3f:57:a1:20:3e:44:83:07:b2:
50:36:de:5a:7f:f1:02:25:39:35:11:c4:48:a5:8b:57:e2:58:
b5:a5:b1:a3:e7:9c:3d:5f:dc:85:5a:72:9e:c2:fa:fb:78:7b:
05:9e:fe:ce:32:6a:4f:8e:21:79:65:f5:3a:81:99:21:c5:8f:
d4:fa:b5:93:7e:35:d6:4e:f3:15:e0:1f:57:a2:6d:66:ad:53:
f4:7f:54:f6:99:4c:08:72:8f:c1:eb:b9:bf:32:75:d3:48:66:
91:22:05:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org