Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/C86577FCBF1D11EDAE11F894F1222468.roa
File: C86577FCBF1D11EDAE11F894F1222468.roa (raw, json)
Hash identifier: BW0KR4y/UFfleSFjFTc/GIzuTmR4PuAKhFs/xbS2wmU=
Subject key identifier: 09:45:BE:A3:04:AA:8A:C7:1A:57:3A:D6:A1:72:86:E4:38:72:E0:9A
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 1D
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/C86577FCBF1D11EDAE11F894F1222468.roa
Signing time: Fri 10 Mar 2023 08:30:16 +0000
ROA not before: Fri 10 Mar 2023 08:30:12 +0000
ROA not after: Thu 10 Mar 2033 08:30:12 +0000
asID: 37182
IP address blocks: 41.93.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:30:12 2023 GMT
Not After : Mar 10 08:30:12 2033 GMT
Subject: CN=640aea98-16fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:db:97:54:0e:4f:59:75:0a:e7:1e:ac:92:
7e:a7:14:da:bb:ea:4c:9f:63:bb:4d:96:80:a7:b8:
d6:ab:62:e0:71:b0:8c:93:92:48:b4:63:3e:c8:9b:
16:82:57:2b:e1:40:d6:25:47:d0:17:d2:d8:da:b6:
56:40:85:cb:57:7d:e7:df:c5:2b:5e:13:8e:7a:ac:
f2:ed:fd:78:ad:2e:e5:63:10:94:6a:bb:83:03:f8:
21:3f:cd:61:96:3d:d8:77:af:f5:90:80:da:cb:6d:
01:78:ee:e4:a1:25:9d:e1:f5:e2:23:89:85:a3:f7:
08:b7:cf:6d:ce:96:e3:51:e4:ec:82:18:e4:e7:f2:
2e:0c:4a:66:a5:1b:2e:2c:b0:d4:b0:31:4c:3b:62:
24:35:11:70:f1:0f:0e:8d:88:9a:cb:09:a9:72:3f:
13:df:34:62:66:f4:82:75:e0:4b:fa:e0:7d:5c:17:
36:2d:28:b9:ec:a9:77:d8:81:54:34:32:48:21:fc:
da:3d:11:e2:e7:f8:f1:bd:80:70:a8:68:0c:6d:2d:
52:f4:ed:e3:96:7e:13:6b:12:89:02:99:ac:df:7e:
b7:2d:c3:1e:7f:5f:b0:4f:be:ce:3c:00:bd:bb:51:
c8:57:d5:ac:c0:00:d9:68:b8:50:ad:57:e8:c5:93:
30:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:45:BE:A3:04:AA:8A:C7:1A:57:3A:D6:A1:72:86:E4:38:72:E0:9A
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/C86577FCBF1D11EDAE11F894F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.42.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ff:f2:87:6c:f4:1e:db:b9:fd:ab:cd:f7:bc:e0:03:0b:7e:
f6:60:f5:2e:ac:d8:89:15:ea:3d:9b:24:03:e9:bf:91:ce:44:
5f:96:dc:ee:d0:f7:40:92:8c:44:01:ce:7f:31:4b:a0:f5:8c:
3d:fb:97:41:d4:8a:f9:74:f5:8c:6c:99:98:80:91:8f:ca:28:
f1:a4:90:39:3d:25:06:9b:6b:c8:4f:97:1c:06:fe:9f:56:a2:
f1:7a:67:55:88:c7:21:42:85:9b:2e:09:fd:79:0c:c4:41:b3:
3b:19:3a:36:13:9e:11:16:e5:e9:b6:fb:ec:89:27:cb:09:57:
ec:66:0e:b3:5a:1e:78:78:8e:60:1d:ed:4c:39:20:ae:44:f2:
e9:32:26:46:ef:ef:0c:11:66:d1:30:29:bc:e0:02:dd:5f:6a:
56:73:c3:4c:95:ac:e4:55:72:fe:6c:e7:a7:25:f1:d8:d5:e0:
e2:4a:89:1d:e6:0a:61:03:05:ec:0e:70:8e:30:69:d9:27:c1:
ab:7e:33:7a:60:1e:a4:0b:36:c0:a3:50:f5:f7:40:8e:cb:97:
58:d7:31:f3:7f:ad:32:ab:16:88:e7:24:28:e9:93:95:6b:1d:
36:5f:58:42:a7:36:fb:5f:6c:74:76:0f:45:2c:55:3a:4f:60:
78:d4:fe:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org