Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/A600932AC1B811ED9C27C3EBF1222468.roa
File: A600932AC1B811ED9C27C3EBF1222468.roa (raw, json)
Hash identifier: vWodClmW1r1DKHtOoJCbVHnF+nGVn2j3PFqIlYyVetk=
Subject key identifier: 54:85:7E:DA:B3:DC:5E:4E:8E:7D:63:21:18:D5:B9:B4:DD:2C:DD:19
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 5F
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/A600932AC1B811ED9C27C3EBF1222468.roa
Signing time: Mon 13 Mar 2023 16:03:52 +0000
ROA not before: Mon 13 Mar 2023 16:03:46 +0000
ROA not after: Thu 31 Mar 2033 16:03:46 +0000
asID: 37182
IP address blocks: 41.93.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95 (0x5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 13 16:03:46 2023 GMT
Not After : Mar 31 16:03:46 2033 GMT
Subject: CN=640f4968-102d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d2:f3:1b:c0:4f:b0:41:d7:1b:3f:06:97:23:
08:5d:de:77:3a:a3:17:92:c7:e0:12:0c:4e:fb:6d:
56:0e:1f:b8:fe:69:12:72:ee:54:07:38:1a:8f:fb:
90:30:ad:ca:19:c9:32:dd:fe:c5:67:96:33:e9:af:
62:ac:0d:90:3b:0d:85:57:29:2b:0f:86:17:ad:49:
47:8b:58:48:e0:e0:37:80:b5:8d:4c:ab:18:d7:74:
08:2e:55:2c:3f:71:0f:5a:b1:3e:8d:0a:bc:2b:1b:
18:4c:a5:6c:38:8c:dd:76:60:b8:9b:7b:fc:ac:4c:
d6:0c:d5:39:b2:4e:fa:f4:cc:e6:95:ee:59:d9:f2:
20:a7:b6:1e:21:4b:da:d1:81:db:c7:c3:b3:d5:48:
21:58:f6:ea:f1:02:7e:da:ee:00:8a:a9:d7:98:e2:
c5:93:04:ab:fe:1a:15:df:48:d4:2a:57:82:b3:52:
e1:6a:0a:4f:28:87:01:2e:b8:0c:79:ce:bb:0e:db:
90:93:33:e2:00:b4:e0:79:60:cf:8f:f9:c4:53:54:
78:8b:1b:03:02:15:81:1a:e8:31:d3:03:f0:95:23:
07:f5:91:9b:8c:d8:bc:ec:49:43:80:85:89:3d:8e:
49:f9:0a:a1:a6:b7:7e:8f:54:88:9f:32:b7:53:1f:
50:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:85:7E:DA:B3:DC:5E:4E:8E:7D:63:21:18:D5:B9:B4:DD:2C:DD:19
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/A600932AC1B811ED9C27C3EBF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.90.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:04:31:a2:b8:c4:6a:d9:5d:ef:d7:8b:d6:ce:0b:c5:8b:c7:
29:6f:d5:b4:3c:ee:93:c2:1a:05:ac:a3:25:44:27:0a:04:99:
4d:6e:df:01:d5:2d:71:97:fe:c1:90:5c:be:44:f3:53:a8:ac:
f5:17:27:b2:21:cd:0c:d2:8a:a7:a3:c2:2c:c0:4d:89:93:06:
1e:58:59:fa:d8:97:88:84:d8:a6:3e:b5:2e:e1:7a:b5:fb:bc:
c4:30:66:c8:f8:21:ba:28:6e:15:4e:b3:e4:e9:34:b5:f1:91:
29:c0:9f:38:09:82:a5:9e:54:21:bb:09:ea:d4:a5:62:65:8f:
bc:da:c2:7e:f3:72:9c:b1:7d:13:b7:da:39:a0:14:75:ca:21:
ee:64:d8:00:6e:38:43:b3:f3:7c:80:87:8e:4c:11:13:29:b1:
ad:6f:bd:e4:27:c3:e9:32:02:83:70:df:bd:95:a2:9a:2c:c8:
1f:1b:e1:82:a9:b2:62:8f:1d:38:16:0b:0c:6e:8a:91:8e:4d:
c8:37:cb:d9:9c:13:0d:98:32:b0:59:6c:d3:42:5b:3c:ef:f7:
27:b4:df:ad:b4:8a:ab:40:c4:d8:89:21:47:a5:6a:01:30:fe:
66:8c:c8:37:fd:aa:48:79:c8:41:15:11:68:9a:8f:b4:2f:09:
b4:6f:ed:16
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBXzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
QjBDOUFGMTEwLwYDVQQFEyhBMjBFMjA2N0YwREI3ODNERTM3MjNFMjMxNTE3REM3
RTlGRTVCQUQzMB4XDTIzMDMxMzE2MDM0NloXDTMzMDMzMTE2MDM0NlowGDEWMBQG
A1UEAwwNNjQwZjQ5NjgtMTAyZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMTS8xvAT7BB1xs/BpcjCF3edzqjF5LH4BIMTvttVg4fuP5pEnLuVAc4Go/7
kDCtyhnJMt3+xWeWM+mvYqwNkDsNhVcpKw+GF61JR4tYSODgN4C1jUyrGNd0CC5V
LD9xD1qxPo0KvCsbGEylbDiM3XZguJt7/KxM1gzVObJO+vTM5pXuWdnyIKe2HiFL
2tGB28fDs9VIIVj26vECftruAIqp15jixZMEq/4aFd9I1CpXgrNS4WoKTyiHAS64
DHnOuw7bkJMz4gC04Hlgz4/5xFNUeIsbAwIVgRroMdMD8JUjB/WRm4zYvOxJQ4CF
iT2OSfkKoaa3fo9UiJ8yt1MfUDkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRUhX7a
s9xeTo59YyEY1bm03SzdGTAfBgNVHSMEGDAWgBSiDiBn8Nt4PeNyPiMVF9x+n+W6
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEyMjI0Njgvb2c0Z1pf
RGJlRDNqY2o0akZSZmNmcF9sdXRNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvb2c0Z1pfRGJlRDNqY2o0akZSZmNmcF9sdXRNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEy
MjI0NjgvQTYwMDkzMkFDMUI4MTFFRDlDMjdDM0VCRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACldWjANBgkqhkiG9w0BAQsF
AAOCAQEAHgQxorjEatld79eL1s4LxYvHKW/VtDzuk8IaBayjJUQnCgSZTW7fAdUt
cZf+wZBcvkTzU6is9RcnsiHNDNKKp6PCLMBNiZMGHlhZ+tiXiITYpj61LuF6tfu8
xDBmyPghuihuFU6z5Ok0tfGRKcCfOAmCpZ5UIbsJ6tSlYmWPvNrCfvNynLF9E7fa
OaAUdcoh7mTYAG44Q7PzfICHjkwREymxrW+95CfD6TICg3DfvZWimizIHxvhgqmy
Yo8dOBYLDG6KkY5NyDfL2ZwTDZgysFls00JbPO/3J7TfrbSKq0DE2IkhR6VqATD+
ZozIN/2qSHnIQRURaJqPtC8JtG/tFg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org