Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/63043E22BF2011EDB537659CF1222468.roa
File: 63043E22BF2011EDB537659CF1222468.roa (raw, json)
Hash identifier: tHUrvC1aXwe0YjjnpLAMmwp5gTkJMWoHfeJsaIuaukI=
Subject key identifier: 0C:19:C0:5F:D6:D7:89:A9:D5:AE:DC:1A:EF:3F:6F:71:54:B3:02:F3
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 29
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/63043E22BF2011EDB537659CF1222468.roa
Signing time: Fri 10 Mar 2023 08:48:54 +0000
ROA not before: Fri 10 Mar 2023 08:48:50 +0000
ROA not after: Thu 10 Mar 2033 08:48:50 +0000
asID: 37182
IP address blocks: 41.93.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41 (0x29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:48:50 2023 GMT
Not After : Mar 10 08:48:50 2033 GMT
Subject: CN=640aeef6-c73f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fc:09:54:07:b5:0f:0f:7b:0f:53:fe:2f:31:
e9:55:88:47:19:9e:ae:1d:70:70:4a:98:6c:bd:f4:
70:18:44:fd:7c:4a:2b:01:cb:b2:26:5b:4a:a1:8a:
6f:8f:de:91:34:bf:15:a5:ef:f0:41:e2:2d:17:68:
47:32:ac:ac:6a:c3:81:7e:84:c4:ef:8f:ea:7e:f6:
cc:c0:8e:f1:db:92:99:08:d0:f6:d0:e6:f2:a9:f8:
33:7f:ae:2f:ab:8f:01:9f:af:e5:ce:a4:da:b4:e0:
47:c3:bc:65:fe:4c:82:f2:df:0b:45:92:2c:54:96:
46:a3:07:0e:5a:57:97:15:7f:2c:83:61:92:51:47:
2d:cc:9b:12:66:d0:71:6d:89:29:2e:c6:84:56:5a:
26:5f:21:97:25:b2:02:47:5a:6f:40:6b:cd:39:4d:
d3:8c:9f:ee:7c:f9:0e:aa:37:c9:73:98:2b:3a:2b:
f6:a1:b6:b6:70:ec:b3:20:cc:be:7f:07:a6:13:60:
b1:2b:14:9c:d6:2c:8a:93:ce:5f:60:a1:28:91:10:
40:98:3a:7b:55:33:44:e8:9c:ac:5d:91:f7:ed:bd:
64:16:75:ac:f0:f1:c6:45:40:8e:7d:d8:f6:68:9f:
a6:16:a7:01:35:be:9c:d7:9b:ea:c4:67:08:61:ff:
45:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:19:C0:5F:D6:D7:89:A9:D5:AE:DC:1A:EF:3F:6F:71:54:B3:02:F3
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/63043E22BF2011EDB537659CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.69.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e7:d3:1c:dd:fa:cc:86:55:a2:30:02:79:3e:ca:e8:37:22:
32:5e:aa:be:3b:3a:4e:e8:8d:93:1c:29:2b:57:ac:38:47:a4:
4a:fe:20:a2:cd:07:53:3d:aa:9c:76:b5:06:8c:11:30:0f:19:
ef:64:a7:d5:3a:76:7b:0d:24:81:24:02:46:09:e8:ef:93:85:
cc:f4:cb:e4:e7:5c:c6:53:2a:80:06:d4:13:9a:43:88:4e:f6:
c7:7a:f2:ab:76:5c:04:77:f7:82:56:89:c1:da:73:fa:b3:e0:
78:b7:a5:cb:65:82:89:fe:20:58:86:1b:40:c5:48:65:04:d8:
65:cd:fb:8c:99:d0:d4:32:a0:d5:07:d7:4e:64:d2:b1:88:64:
58:3a:f3:c1:92:8f:1b:45:ba:95:e5:db:dc:b3:e4:cb:4e:3e:
9a:2b:8b:3d:ce:81:e0:67:66:c7:eb:98:80:ff:fd:61:81:de:
32:fd:f2:b5:dc:88:a8:5b:1c:98:96:80:69:f3:f9:67:09:15:
a3:ab:d0:d1:f7:d0:c8:ac:03:8f:24:3d:93:eb:86:87:23:1e:
73:86:69:6a:79:95:7c:04:a7:37:a2:0f:8e:ac:8d:48:ec:31:
17:ba:7b:fc:25:0e:b4:35:42:40:fd:8c:f9:66:96:7f:d4:18:
16:2f:3c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org