Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/ACDB91B0BF1811EDA0EF0686F1222468.roa
File: ACDB91B0BF1811EDA0EF0686F1222468.roa (raw, json)
Hash identifier: jKlpsox2SVXvyrTc9jRF0oztICJ0JNDgDBVkec19SqY=
Subject key identifier: 88:91:32:AB:2E:E3:14:A7:D2:B9:D7:02:71:B6:AD:B4:1B:3B:6F:4C
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 17
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/ACDB91B0BF1811EDA0EF0686F1222468.roa
Signing time: Fri 10 Mar 2023 07:53:42 +0000
ROA not before: Fri 10 Mar 2023 07:53:38 +0000
ROA not after: Thu 31 Mar 2033 07:53:38 +0000
asID: 37182
IP address blocks: 41.93.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 07:53:38 2023 GMT
Not After : Mar 31 07:53:38 2033 GMT
Subject: CN=640ae206-6961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:01:8f:ed:5a:3b:35:7d:a3:43:04:b9:b0:88:
61:a3:b4:81:b8:1a:d7:0d:51:66:d0:e1:41:5f:fc:
85:af:15:cc:f2:60:1f:5a:bd:5c:09:8e:0a:5d:3e:
01:ec:9f:3d:fe:28:1b:33:7c:ee:fa:d0:4c:81:0f:
fc:df:78:57:e2:7d:21:50:9b:b8:2f:ea:3f:c6:07:
29:6b:b7:63:3a:85:90:51:1a:ef:ae:82:07:4e:bd:
07:27:1e:50:8a:17:36:02:bf:79:a5:27:4f:e5:d4:
2f:7e:f7:50:f5:33:3d:85:b8:90:f2:c1:32:76:1e:
2e:d6:e1:6a:a1:b6:c2:ab:02:1f:dd:b7:48:b2:a8:
d2:dc:d4:2c:e5:30:97:54:0e:84:67:ef:d9:83:94:
f7:a8:cc:31:89:19:ad:31:df:6e:28:33:8b:13:d1:
28:b2:25:0a:d5:80:ad:02:d8:21:c8:e8:68:75:66:
af:a2:9e:3a:c0:25:f4:85:bd:d7:02:64:5f:0e:4e:
97:45:b9:bb:41:8c:f2:ae:59:ae:d7:a0:6c:08:65:
20:d3:5d:50:46:74:14:97:3f:42:d2:0b:e2:74:35:
8e:32:d7:c4:86:21:f0:42:d4:89:77:b1:ad:a4:a3:
9b:c0:18:79:e2:89:94:72:00:2e:23:92:a2:ea:d5:
fb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:91:32:AB:2E:E3:14:A7:D2:B9:D7:02:71:B6:AD:B4:1B:3B:6F:4C
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/ACDB91B0BF1811EDA0EF0686F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.41.0/24
Signature Algorithm: sha256WithRSAEncryption
96:53:03:be:f1:69:ba:b9:09:a9:87:81:fa:32:f3:e8:f5:0d:
9c:2e:7d:99:7b:13:ec:14:df:e7:c7:55:e2:f5:48:b9:b5:96:
87:82:33:c7:1f:a8:6f:e0:95:96:5a:ff:b3:56:24:48:1b:d9:
65:c6:bf:b2:b3:67:4d:6a:b3:a4:3f:4c:09:9f:bc:70:8a:94:
6d:a0:fa:9d:47:82:1d:42:06:01:83:92:d8:16:72:17:ae:a9:
e0:79:19:c8:49:58:b9:a5:2a:d5:55:84:c3:8b:25:d5:d4:68:
e9:fe:dc:63:8b:28:26:6a:98:d9:42:05:cf:45:0d:10:39:c1:
7d:1a:ac:06:f8:3d:bc:c5:2a:73:71:d5:0b:46:7e:6b:9c:64:
b5:b6:8b:b7:77:fe:cd:bd:3a:13:83:57:94:04:fa:52:b3:5f:
c7:fe:5c:54:d9:95:06:c6:f9:79:63:12:27:f8:6a:d4:88:be:
bf:6f:79:02:c4:28:5e:8b:51:11:d6:23:19:69:c2:65:1d:c1:
06:fe:9d:64:0a:c0:2c:4b:d1:f0:87:18:e9:a9:73:88:67:3b:
78:cb:39:4f:42:79:7a:3f:78:82:78:f3:6b:13:9e:96:a3:4a:
a1:6c:d9:c0:20:cd:9a:8b:25:de:dc:ad:54:ab:2a:79:83:55:
52:65:c5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org