Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/B74AAB50BF2611EDAC6510B0F1222468.roa
File: B74AAB50BF2611EDAC6510B0F1222468.roa (raw, json)
Hash identifier: CcVjASGPlCF912SRH2gaAi/7SvfQAzbga461HEH3eSU=
Subject key identifier: 0D:20:9E:5D:74:2F:3C:4A:C6:9A:B4:0C:01:4D:A5:4C:ED:C3:90:91
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 4B
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/B74AAB50BF2611EDAC6510B0F1222468.roa
Signing time: Fri 10 Mar 2023 09:34:12 +0000
ROA not before: Fri 10 Mar 2023 09:34:09 +0000
ROA not after: Thu 31 Mar 2033 09:34:09 +0000
asID: 37182
IP address blocks: 41.93.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75 (0x4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:34:09 2023 GMT
Not After : Mar 31 09:34:09 2033 GMT
Subject: CN=640af994-d4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e5:34:b5:65:ff:be:a7:8e:cc:66:84:24:44:
c2:e4:58:fc:60:ce:6d:0f:ac:fc:b9:b8:fe:ae:d1:
3a:8e:78:6f:4d:e3:6d:f4:f8:7f:e5:87:d9:fe:b2:
f1:db:71:a6:b3:19:7d:30:c5:22:73:e5:18:17:02:
36:ef:72:d3:77:f9:8f:bf:17:db:2d:03:32:93:74:
6b:be:3f:99:ae:52:c0:53:cf:f4:a4:a1:70:0c:67:
b6:c1:6c:df:9c:f9:ff:d8:13:55:50:db:68:50:5e:
f3:be:5b:5c:3e:92:e6:bb:78:12:9f:05:3d:d3:24:
5d:c9:11:d2:fc:0c:38:11:bf:0f:a3:99:1b:a8:1f:
f5:c5:6e:aa:b7:ad:33:2a:5d:11:22:62:ed:16:e5:
86:dc:a4:3e:2e:1b:92:a1:43:6d:b3:59:c5:3b:ba:
76:23:5f:b1:1d:8a:66:9c:c7:1b:cc:0d:db:ec:f5:
a6:a3:46:dc:b2:e6:f1:92:41:1e:eb:0b:0d:95:7b:
08:ae:32:7c:1e:21:ce:d6:09:5a:6f:8f:3f:17:88:
21:95:d4:07:e1:b7:55:b3:0c:f7:11:93:7d:40:3b:
44:3a:9a:17:29:f9:8a:8f:08:35:3e:99:d7:40:98:
77:31:27:8f:30:ed:3e:3a:c8:63:2c:ba:46:ef:e2:
52:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:20:9E:5D:74:2F:3C:4A:C6:9A:B4:0C:01:4D:A5:4C:ED:C3:90:91
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/B74AAB50BF2611EDAC6510B0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.51.0/24
Signature Algorithm: sha256WithRSAEncryption
18:d1:fb:d8:92:ca:04:d4:b5:4c:f5:a5:22:a7:b6:88:42:17:
24:af:23:9b:48:8a:37:d7:18:98:87:16:b2:60:fb:73:49:6d:
6a:57:dc:16:a0:a2:11:e4:b2:0f:e3:f5:a1:57:94:af:75:a6:
5b:f1:a2:62:77:f2:09:d6:8f:b7:7c:39:f8:5f:62:c0:38:50:
6d:bc:9a:cf:5e:97:b3:6b:f3:03:3b:b6:f0:46:19:75:1d:01:
47:5b:51:d5:78:8e:4c:58:f4:4d:80:ce:43:2b:11:c9:a9:6d:
da:aa:2a:84:87:02:25:e6:5d:4c:60:d9:8a:48:7e:de:2f:4a:
c9:82:14:a4:f3:93:0b:8c:d0:94:c8:44:f5:a9:20:8b:43:9e:
45:b7:44:ab:21:f8:fa:7a:27:bd:02:96:ba:1a:2b:02:7f:b8:
b5:cc:f7:f5:25:2e:d3:b1:68:0f:24:27:cb:f2:f1:2d:7e:73:
14:44:da:7b:a6:f6:90:7b:6e:a2:1f:5a:87:10:84:18:00:bb:
d4:9c:5d:bd:69:29:ed:58:81:1b:ff:3a:e5:fe:95:18:e6:78:
94:a9:8b:e1:00:db:f2:9b:ab:14:a3:99:c8:45:35:6c:e8:0a:
3e:f4:06:b9:03:c1:0f:9b:2f:2b:71:ca:37:8b:68:ad:94:ba:
3e:fa:e4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org