Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9929B1D2BF2311EDAB690AA6F1222468.roa
File: 9929B1D2BF2311EDAB690AA6F1222468.roa (raw, json)
Hash identifier: xJzbDJ7R2x2Yz3+i+1DLGKUmS1ecr3a72wAacASvQZE=
Subject key identifier: D1:F1:CD:C6:73:31:B2:83:D2:99:19:5B:8A:22:02:F0:4F:90:52:CF
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 41
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9929B1D2BF2311EDAB690AA6F1222468.roa
Signing time: Fri 10 Mar 2023 09:11:53 +0000
ROA not before: Fri 10 Mar 2023 09:11:50 +0000
ROA not after: Thu 31 Mar 2033 09:11:50 +0000
asID: 37182
IP address blocks: 41.93.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65 (0x41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:11:50 2023 GMT
Not After : Mar 31 09:11:50 2033 GMT
Subject: CN=640af459-fa87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:b5:cb:f3:1d:ac:09:3e:5c:da:a2:ee:16:
38:08:3c:3d:43:9a:dc:6a:12:95:a3:f8:e4:42:ff:
12:e6:a5:7c:48:ab:22:d2:c0:8a:8b:b5:77:4c:0c:
a1:a3:2e:1e:12:40:50:cc:93:1e:d4:03:73:d8:31:
45:24:91:57:47:30:5b:f0:61:54:24:0a:14:f1:6e:
df:41:1a:43:d1:8e:e1:d1:3e:72:84:57:31:28:ef:
fd:a7:fd:82:e4:42:5f:82:e8:12:21:93:d6:d8:5f:
59:35:aa:13:90:0f:ea:c3:4d:9d:04:45:99:2c:7e:
5b:24:65:62:a2:08:7d:22:02:91:ca:12:41:3f:cc:
17:40:fe:0d:75:bf:25:60:1a:21:d4:b1:cc:c5:4c:
22:04:97:57:68:d3:62:85:77:9e:ef:ba:a7:fb:f1:
61:a6:d5:72:1d:0c:fd:97:2a:61:5f:06:17:77:43:
90:6d:d7:4c:33:0d:f3:44:ef:e3:bb:8a:a2:5d:7c:
89:5e:0f:e0:c1:ee:29:7d:f2:b1:0e:75:fe:a9:64:
61:ac:75:44:74:c0:c4:3a:11:04:77:71:a3:f4:30:
3f:72:13:e6:68:87:d4:d2:52:42:36:e2:99:51:b9:
c9:8d:38:2e:bf:cb:f7:64:1f:f7:7f:ca:57:2a:c9:
79:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F1:CD:C6:73:31:B2:83:D2:99:19:5B:8A:22:02:F0:4F:90:52:CF
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9929B1D2BF2311EDAB690AA6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.86.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:31:ad:fa:5c:78:e3:e3:db:b4:ed:e8:2a:08:67:e2:db:7f:
65:ea:93:12:83:b8:8d:9e:25:e2:63:47:ff:12:b3:86:12:f6:
2b:2d:9c:76:5c:b0:49:19:64:e3:87:4c:e8:0e:dc:1b:26:dd:
df:64:56:39:1a:b4:29:59:d7:df:de:55:0e:18:69:1a:cb:ae:
61:c8:67:5a:70:3a:41:78:25:0c:7b:1e:96:d1:e4:73:c4:a2:
91:bd:ef:ff:cf:9e:06:ee:3f:e9:8e:b5:7d:11:53:10:19:af:
60:cd:05:e2:96:57:51:fd:92:dd:12:2a:9e:4f:b1:bf:66:fe:
35:a6:95:3b:95:8b:59:04:3a:6a:02:a4:fa:d0:e0:33:5a:4c:
f6:b0:c5:e7:9b:21:77:01:f4:bb:29:ce:ea:a6:1e:9a:f9:4d:
d1:20:55:13:bf:27:60:86:31:98:f5:b4:82:ad:ce:13:eb:27:
d4:31:c7:bc:b5:11:a0:6a:ec:b1:21:8b:89:1e:a6:7f:c2:7c:
bc:57:ec:26:4f:c7:ef:15:7f:0b:21:fd:fb:78:44:d6:89:09:
ef:d6:07:a7:28:9a:21:5f:0c:f3:ef:61:72:41:f5:5b:be:6d:
38:c8:5c:e1:32:35:19:da:f0:33:2f:88:23:e2:a7:8a:10:12:
42:a0:bd:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org