Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/36940C12BF1D11EDBAD86A93F1222468.roa
File: 36940C12BF1D11EDBAD86A93F1222468.roa (raw, json)
Hash identifier: 3m5pMnD2AEu8QUnP07oarnJKF4kQvct8+U/V/Q1RcGA=
Subject key identifier: 60:D2:A8:1F:64:53:B7:CB:DD:C7:FA:A8:16:33:52:88:2B:AA:FC:72
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 1B
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/36940C12BF1D11EDBAD86A93F1222468.roa
Signing time: Fri 10 Mar 2023 08:26:11 +0000
ROA not before: Fri 10 Mar 2023 08:26:07 +0000
ROA not after: Thu 10 Mar 2033 08:26:07 +0000
asID: 37182
IP address blocks: 41.93.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:26:07 2023 GMT
Not After : Mar 10 08:26:07 2033 GMT
Subject: CN=640ae9a3-572a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:98:a1:f2:d1:bf:2a:e6:4c:ea:1f:80:26:cc:
54:62:0e:1d:2f:77:d9:3b:c7:83:ca:4c:78:76:a6:
83:bd:b8:f9:3d:2f:48:27:cc:5d:29:a3:14:c8:99:
7c:7f:a8:74:c9:eb:3c:53:44:55:05:64:e7:ec:84:
c0:95:92:1e:08:df:88:1b:e3:0d:08:36:aa:16:d1:
65:79:67:49:72:e1:99:93:d9:d0:b7:66:cf:f4:c9:
38:ec:48:54:1b:5c:62:36:a7:c3:94:12:31:d4:bf:
53:b7:fa:c1:55:76:d1:b8:2c:10:38:33:5f:08:b2:
09:00:32:e2:39:5c:ee:33:a3:ba:5e:43:2e:3d:2e:
1a:60:17:f7:18:e3:04:a1:e0:ff:97:f3:a7:c7:48:
19:bf:8d:b2:a2:85:61:db:6e:dd:50:f7:74:14:d2:
6a:01:09:be:08:ef:df:63:7a:79:9d:d2:81:b7:a6:
20:c3:89:c6:b4:30:86:a3:b7:c7:83:a4:06:ac:a6:
42:84:9d:b7:48:e3:66:04:a7:94:1c:8b:c4:c0:d6:
c0:d5:e4:e3:1c:e2:88:51:7e:33:24:08:05:7c:80:
cf:23:a2:33:74:05:ea:f4:f4:db:26:a0:d2:cd:63:
e0:0c:d5:39:ed:71:99:dd:fe:5e:79:2e:47:84:a8:
e6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D2:A8:1F:64:53:B7:CB:DD:C7:FA:A8:16:33:52:88:2B:AA:FC:72
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/36940C12BF1D11EDBAD86A93F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.40.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:69:8b:9f:32:26:c5:20:ec:75:c8:e0:2e:72:55:53:51:d1:
55:fb:a5:5b:4d:54:16:3b:c1:71:da:7c:39:44:e8:97:2e:d4:
a4:ca:3a:49:3f:16:cc:2c:2b:68:c7:f1:15:43:81:18:f7:f4:
e4:22:8c:0c:dd:c8:ac:31:e8:dd:f6:a4:2c:c7:7c:4c:ac:c3:
98:60:1c:0e:f4:5b:fa:90:27:fc:4e:b6:f6:8f:7a:21:b7:d8:
51:9c:87:e1:e5:cb:34:79:5d:89:ae:c3:ff:91:48:93:f9:24:
3c:a1:b6:87:34:e1:4e:f3:32:16:17:2d:a1:f3:21:44:6a:97:
c6:9c:9d:c7:70:7c:5f:13:84:1a:fc:cd:cf:49:5e:2f:f9:49:
0b:eb:aa:66:13:a1:be:a3:ad:e0:37:28:d8:ad:3e:94:7e:f1:
45:92:f0:c4:f0:b3:a3:b2:12:84:ba:aa:87:65:6f:d4:41:51:
87:8f:cb:c8:c6:e9:b6:af:92:4b:a8:4b:06:cf:c7:04:99:15:
57:a4:ba:61:b7:98:ec:6c:ad:fa:a5:59:5e:28:9b:ff:b7:fb:
1d:cb:90:f0:f3:2d:74:a1:e7:69:58:98:c6:c6:f6:f5:a6:3f:
69:b0:c0:09:93:d7:6e:c8:61:cc:65:99:b5:37:a7:fb:2a:01:
66:f1:6f:53
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBGzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
QjBDOUFGMTEwLwYDVQQFEyhBMjBFMjA2N0YwREI3ODNERTM3MjNFMjMxNTE3REM3
RTlGRTVCQUQzMB4XDTIzMDMxMDA4MjYwN1oXDTMzMDMxMDA4MjYwN1owGDEWMBQG
A1UEAwwNNjQwYWU5YTMtNTcyYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPeYofLRvyrmTOofgCbMVGIOHS932TvHg8pMeHamg724+T0vSCfMXSmjFMiZ
fH+odMnrPFNEVQVk5+yEwJWSHgjfiBvjDQg2qhbRZXlnSXLhmZPZ0Ldmz/TJOOxI
VBtcYjanw5QSMdS/U7f6wVV20bgsEDgzXwiyCQAy4jlc7jOjul5DLj0uGmAX9xjj
BKHg/5fzp8dIGb+NsqKFYdtu3VD3dBTSagEJvgjv32N6eZ3SgbemIMOJxrQwhqO3
x4OkBqymQoSdt0jjZgSnlByLxMDWwNXk4xziiFF+MyQIBXyAzyOiM3QF6vT02yag
0s1j4AzVOe1xmd3+XnkuR4So5ucCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRg0qgf
ZFO3y93H+qgWM1KIK6r8cjAfBgNVHSMEGDAWgBSiDiBn8Nt4PeNyPiMVF9x+n+W6
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEyMjI0Njgvb2c0Z1pf
RGJlRDNqY2o0akZSZmNmcF9sdXRNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvb2c0Z1pfRGJlRDNqY2o0akZSZmNmcF9sdXRNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEy
MjI0NjgvMzY5NDBDMTJCRjFEMTFFREJBRDg2QTkzRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACldKDANBgkqhkiG9w0BAQsF
AAOCAQEArGmLnzImxSDsdcjgLnJVU1HRVfulW01UFjvBcdp8OUToly7UpMo6ST8W
zCwraMfxFUOBGPf05CKMDN3IrDHo3fakLMd8TKzDmGAcDvRb+pAn/E629o96IbfY
UZyH4eXLNHldia7D/5FIk/kkPKG2hzThTvMyFhctofMhRGqXxpydx3B8XxOEGvzN
z0leL/lJC+uqZhOhvqOt4Dco2K0+lH7xRZLwxPCzo7IShLqqh2Vv1EFRh4/LyMbp
tq+SS6hLBs/HBJkVV6S6YbeY7Gyt+qVZXiib/7f7HcuQ8PMtdKHnaViYxsb29aY/
abDACZPXbshhzGWZtTen+yoBZvFvUw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org