Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/AC38DF32BF1E11ED97FE8F97F1222468.roa
File: AC38DF32BF1E11ED97FE8F97F1222468.roa (raw, json)
Hash identifier: SRroOB7JeQyeH3kyS00cYAPLWy4skPt+vcya9DxOOPM=
Subject key identifier: 04:D9:A5:A8:87:17:78:56:B7:E5:34:84:01:46:75:B1:34:44:73:61
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 23
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/AC38DF32BF1E11ED97FE8F97F1222468.roa
Signing time: Fri 10 Mar 2023 08:36:38 +0000
ROA not before: Fri 10 Mar 2023 08:36:33 +0000
ROA not after: Thu 10 Mar 2033 08:36:33 +0000
asID: 37182
IP address blocks: 41.93.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:36:33 2023 GMT
Not After : Mar 10 08:36:33 2033 GMT
Subject: CN=640aec16-3488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:8d:2b:c4:eb:3b:db:d4:32:ed:00:f0:9e:
eb:26:bd:b2:08:c6:89:55:07:fb:e3:be:de:af:75:
4e:23:f8:32:0d:27:f7:a0:07:8c:ba:a2:06:3b:f2:
9d:72:33:9e:2a:71:58:0d:ed:a8:c2:a1:b4:f2:77:
5b:69:3f:41:e8:4b:4d:a5:21:f6:6f:fd:29:e1:7e:
f1:88:d9:ff:85:c9:3b:f1:17:c4:40:ef:1f:ba:66:
2b:34:26:c1:ab:68:e1:17:77:60:ee:7c:6f:99:0d:
6d:5d:2f:cc:93:e8:28:ad:cd:fb:94:39:86:7c:13:
30:80:55:d1:7c:6c:41:c6:63:41:4e:63:1b:dd:87:
43:e5:6d:1c:71:40:f5:87:35:8c:2e:c4:e5:fc:d4:
11:65:b5:56:d7:30:2e:93:e6:3b:16:47:8c:ac:95:
d6:b1:a7:69:c3:c1:5d:f7:9b:60:49:d9:e3:d3:52:
4c:27:ab:56:17:17:0c:b1:15:36:20:0f:9b:ad:fb:
26:77:86:e1:7a:04:4f:f0:07:87:a7:e7:b1:0a:e5:
7b:ed:59:98:ed:2a:70:7b:48:eb:b2:e3:90:77:15:
3b:45:fb:75:6e:b2:bf:c0:53:24:65:94:e0:5f:5f:
98:5d:f7:32:3f:d4:65:40:b4:11:7b:d5:12:cd:51:
cf:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D9:A5:A8:87:17:78:56:B7:E5:34:84:01:46:75:B1:34:44:73:61
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/AC38DF32BF1E11ED97FE8F97F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.46.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:11:05:95:20:0c:39:b1:da:53:08:5e:da:dd:33:55:b7:57:
05:00:25:d7:e9:1c:bc:a5:cc:e8:0f:ef:3d:0a:91:1a:80:22:
e3:68:53:d0:bb:bd:1d:7d:04:1e:35:5f:d6:01:7f:85:60:79:
00:23:d4:08:15:37:fe:e4:e6:ba:c8:83:88:24:49:29:16:ec:
f3:42:67:49:a5:4a:be:07:27:84:c6:8f:23:fe:ac:dd:8f:f9:
81:2d:da:fe:f7:1d:3f:4e:e6:6d:17:d7:a6:13:32:d2:21:f2:
0c:78:08:01:6c:5c:5d:6d:96:77:f1:be:d8:0b:db:97:44:a2:
cd:7f:a2:17:9f:f2:2a:dc:63:b2:18:b3:de:b9:c8:23:70:81:
b2:a9:03:53:15:20:f1:df:79:36:52:38:92:83:42:c8:fd:71:
00:f5:1e:71:c6:64:8c:15:ac:3e:c6:2b:34:be:3f:03:96:db:
e2:d0:0f:13:e2:2f:63:d5:ae:f0:b0:96:13:9e:19:65:dc:a1:
3b:bf:f3:20:00:13:c8:fe:7f:78:24:1e:e2:15:f6:8f:6f:de:
9d:a8:56:8f:53:cd:59:62:10:c7:43:52:09:31:85:de:dc:9d:
79:e1:63:81:28:63:aa:cc:47:ae:cf:73:ab:27:77:45:51:c3:
ef:f8:ef:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org