Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/942C286EBF2711EDA5D5C2B2F1222468.roa
File: 942C286EBF2711EDA5D5C2B2F1222468.roa (raw, json)
Hash identifier: +ylbJP69KP79w/XnSiaiZB0WqM9jOd2z+flU9Oph6AQ=
Subject key identifier: 52:3B:D4:74:35:03:92:D1:15:FC:FE:9C:14:34:29:A9:FA:21:87:56
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 55
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/942C286EBF2711EDA5D5C2B2F1222468.roa
Signing time: Fri 10 Mar 2023 09:40:23 +0000
ROA not before: Fri 10 Mar 2023 09:40:19 +0000
ROA not after: Thu 31 Mar 2033 09:40:19 +0000
asID: 37182
IP address blocks: 41.93.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85 (0x55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:40:19 2023 GMT
Not After : Mar 31 09:40:19 2033 GMT
Subject: CN=640afb07-465a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fd:74:bb:b1:c5:eb:e9:f3:d1:18:c6:31:a7:
46:b0:f7:93:ea:f6:42:69:5f:ed:03:f5:7d:a7:03:
dd:69:4e:79:fe:91:2f:9e:26:80:3f:1f:20:d7:1a:
bd:46:b4:bf:4e:1b:3a:31:df:f5:78:71:86:7b:27:
79:de:60:79:d7:75:10:c7:22:b0:87:d1:2e:c4:e3:
eb:59:64:a6:f8:ed:41:a9:e0:fe:f6:41:32:ba:57:
52:83:12:ac:42:39:16:e5:ee:0f:70:17:6e:bc:fa:
50:d1:7a:01:d0:33:f2:95:92:a7:db:76:7b:69:a9:
06:61:5a:ae:94:c1:e5:11:11:51:e9:c9:49:7e:87:
50:50:93:54:25:cf:83:26:7f:1f:1b:5a:a9:0a:d0:
e4:81:72:d3:69:86:78:e8:5d:14:77:15:e4:14:42:
25:27:a3:9f:2f:6b:ba:9f:0a:06:8c:b2:a1:d0:45:
9a:86:32:c6:8f:2f:2c:95:a4:1f:2f:b1:57:0f:62:
e8:43:cf:3b:4b:df:62:7d:03:82:89:6e:00:2a:ac:
58:24:b0:19:29:de:3c:ad:66:4b:f1:db:c5:b0:7e:
a9:29:97:fe:14:df:21:43:c6:ee:46:1a:f2:45:de:
73:fc:29:a2:29:74:af:bc:99:9c:bd:8b:1e:aa:77:
2a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3B:D4:74:35:03:92:D1:15:FC:FE:9C:14:34:29:A9:FA:21:87:56
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/942C286EBF2711EDA5D5C2B2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.60.0/24
Signature Algorithm: sha256WithRSAEncryption
24:cd:d7:82:b5:02:5b:25:d8:5d:f3:c3:18:d5:1d:4d:f0:55:
6f:31:e3:76:89:d2:d4:69:42:d2:f4:b9:b0:7e:6e:3a:f3:de:
1c:37:d6:4c:1f:12:7e:d0:b0:4d:a1:47:43:7c:a1:95:4c:76:
0f:69:f9:f2:0c:3a:6e:00:fa:15:40:c0:71:eb:79:8b:94:a6:
bf:ed:92:a2:90:7c:ce:da:b7:19:df:c8:57:3d:2a:9e:f4:45:
af:a7:71:4f:40:02:7d:29:5c:16:d5:ab:90:63:60:b4:af:aa:
ff:f0:39:a6:21:46:76:a2:5a:e5:ad:b5:97:1b:83:a9:ec:0b:
a0:21:52:2f:65:3e:3c:9c:eb:f3:1e:59:f6:25:71:c3:97:69:
ce:64:ff:64:30:98:81:9c:64:42:ba:cf:7e:78:ab:82:24:21:
eb:ac:d7:71:f2:d8:fb:e9:a8:7d:66:7c:dd:db:2f:7b:d6:20:
42:de:c6:95:bb:9b:2a:f5:fe:ae:d0:6d:9d:fe:18:0e:b4:3a:
63:d3:dd:aa:c0:88:f2:a3:79:5c:6c:4e:5c:66:87:50:c3:50:
99:65:8a:09:44:f5:99:a7:8a:8c:28:8e:37:06:bc:7c:e3:45:
8a:21:75:30:c4:d3:a0:34:56:d5:74:53:0e:76:eb:7d:b5:f0:
11:68:58:26
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBVTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
QjBDOUFGMTEwLwYDVQQFEyhBMjBFMjA2N0YwREI3ODNERTM3MjNFMjMxNTE3REM3
RTlGRTVCQUQzMB4XDTIzMDMxMDA5NDAxOVoXDTMzMDMzMTA5NDAxOVowGDEWMBQG
A1UEAwwNNjQwYWZiMDctNDY1YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMf9dLuxxevp89EYxjGnRrD3k+r2Qmlf7QP1facD3WlOef6RL54mgD8fINca
vUa0v04bOjHf9Xhxhnsned5gedd1EMcisIfRLsTj61lkpvjtQang/vZBMrpXUoMS
rEI5FuXuD3AXbrz6UNF6AdAz8pWSp9t2e2mpBmFarpTB5RERUenJSX6HUFCTVCXP
gyZ/HxtaqQrQ5IFy02mGeOhdFHcV5BRCJSejny9rup8KBoyyodBFmoYyxo8vLJWk
Hy+xVw9i6EPPO0vfYn0DgoluACqsWCSwGSnePK1mS/HbxbB+qSmX/hTfIUPG7kYa
8kXec/wpoil0r7yZnL2LHqp3KnsCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRSO9R0
NQOS0RX8/pwUNCmp+iGHVjAfBgNVHSMEGDAWgBSiDiBn8Nt4PeNyPiMVF9x+n+W6
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEyMjI0Njgvb2c0Z1pf
RGJlRDNqY2o0akZSZmNmcF9sdXRNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvb2c0Z1pfRGJlRDNqY2o0akZSZmNmcF9sdXRNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEy
MjI0NjgvOTQyQzI4NkVCRjI3MTFFREE1RDVDMkIyRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACldPDANBgkqhkiG9w0BAQsF
AAOCAQEAJM3XgrUCWyXYXfPDGNUdTfBVbzHjdonS1GlC0vS5sH5uOvPeHDfWTB8S
ftCwTaFHQ3yhlUx2D2n58gw6bgD6FUDAcet5i5Smv+2SopB8ztq3Gd/IVz0qnvRF
r6dxT0ACfSlcFtWrkGNgtK+q//A5piFGdqJa5a21lxuDqewLoCFSL2U+PJzr8x5Z
9iVxw5dpzmT/ZDCYgZxkQrrPfnirgiQh66zXcfLY++mofWZ83dsve9YgQt7Glbub
KvX+rtBtnf4YDrQ6Y9PdqsCI8qN5XGxOXGaHUMNQmWWKCUT1maeKjCiONwa8fONF
iiF1MMTToDRW1XRTDnbrfbXwEWhYJg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org