Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9964ACFCBF2211EDB076FCA2F1222468.roa
File: 9964ACFCBF2211EDB076FCA2F1222468.roa (raw, json)
Hash identifier: MxmpenanurNvsAdKHu/hlafX3AaMXzF6ZxI3hD5SfOY=
Subject key identifier: 8B:07:0A:5E:D5:DF:30:28:87:60:2E:B4:30:0B:30:CE:D9:66:03:32
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 37
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9964ACFCBF2211EDB076FCA2F1222468.roa
Signing time: Fri 10 Mar 2023 09:04:44 +0000
ROA not before: Fri 10 Mar 2023 09:04:40 +0000
ROA not after: Thu 31 Mar 2033 09:04:40 +0000
asID: 37182
IP address blocks: 41.93.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 May 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:04:40 2023 GMT
Not After : Mar 31 09:04:40 2033 GMT
Subject: CN=640af2ac-7e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e2:37:e1:b6:3c:ae:44:9c:a7:35:83:12:d0:
e1:af:4c:ef:31:e3:78:14:6f:b3:8b:c4:ce:b4:59:
9a:56:c2:03:9b:87:20:62:eb:fa:15:b6:03:e9:44:
42:81:21:04:15:aa:a1:10:93:62:90:c4:6b:8f:1f:
89:99:12:f7:67:c6:25:cb:ae:48:30:9b:b2:10:dd:
50:b0:f5:1e:11:04:d1:0b:45:e2:4f:53:05:48:de:
aa:92:40:eb:fa:ec:9b:c5:fd:77:52:3c:d8:61:44:
9b:87:fc:01:5b:b1:73:ec:96:34:e6:4a:7c:68:d3:
38:aa:11:b7:95:12:e4:be:5a:d9:67:ff:b8:35:83:
3b:e3:49:b9:43:11:b1:c3:a6:43:7d:32:54:10:e6:
da:ed:48:62:25:db:ba:86:e3:52:94:13:33:f1:2d:
d9:12:d4:49:7e:b9:c9:9e:10:cf:a5:c8:e3:54:3f:
fd:99:6f:46:d1:bb:9d:c8:43:1f:75:a7:75:57:6e:
eb:e4:d6:0b:ad:4f:02:4d:29:06:51:ca:44:d8:f0:
c6:c9:f7:81:49:57:f7:a1:ca:99:96:30:22:02:7a:
1a:23:dc:99:56:96:56:ae:05:24:f6:9e:5d:3c:58:
7b:6f:1e:19:bb:9d:7b:7c:84:76:f8:37:35:d6:93:
05:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:07:0A:5E:D5:DF:30:28:87:60:2E:B4:30:0B:30:CE:D9:66:03:32
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/9964ACFCBF2211EDB076FCA2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.81.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:0c:e9:bc:ea:55:bf:7a:35:d9:68:6b:07:54:79:34:6a:1e:
e9:df:a2:45:cf:d6:74:cb:a8:06:43:9a:53:4c:d5:34:9b:dc:
c3:46:71:89:96:6e:4a:14:44:8c:73:f0:5f:6b:f9:68:90:4b:
aa:85:45:cb:53:4c:c3:c0:ad:57:5e:bf:81:95:96:4d:2e:ef:
b7:bb:f9:95:ad:33:d6:e1:c5:67:cb:43:06:f3:75:ad:ff:4e:
39:8b:11:4b:67:9a:47:75:24:1e:65:0f:e5:08:0c:0c:29:10:
1a:83:fb:fc:8e:1a:6c:ee:8b:34:0e:d0:e5:0c:1b:8d:24:45:
96:e5:35:00:93:50:20:c6:d8:c6:96:21:86:a5:14:72:9e:2f:
db:e6:64:51:e8:49:46:aa:a9:37:1e:90:3e:0e:45:7a:4a:fa:
b2:b7:be:66:f7:d5:de:6d:53:d3:47:df:74:78:28:a9:87:b7:
3e:66:67:d2:90:07:52:3f:7b:2e:39:90:7f:51:0b:d7:34:fd:
bc:aa:f9:8d:63:d3:55:55:ef:26:7e:a7:87:6e:e3:6e:0b:d4:
73:da:cb:3c:60:a7:7c:04:d8:0d:a0:12:16:4d:d7:e0:66:15:
2d:b2:77:0b:54:ef:37:41:d8:85:1c:12:40:19:3a:46:49:9e:
d7:05:e2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:51:16 2024 by rpki-client on console-fra.rpki-client.org