Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CC2EA620BF2111EDB21A7FA0F1222468.roa
File: CC2EA620BF2111EDB21A7FA0F1222468.roa (raw, json)
Hash identifier: 2X7oZB/6+vGUhirdGYFLL3Ji0AHWABbZXzvDJYwNfC0=
Subject key identifier: 18:E3:56:DE:6B:BE:B8:C0:85:41:72:ED:D0:E9:CA:51:EA:39:8D:F1
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 2D
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CC2EA620BF2111EDB21A7FA0F1222468.roa
Signing time: Fri 10 Mar 2023 08:59:00 +0000
ROA not before: Fri 10 Mar 2023 08:58:56 +0000
ROA not after: Thu 10 Mar 2033 08:58:56 +0000
asID: 37182
IP address blocks: 41.93.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:58:56 2023 GMT
Not After : Mar 10 08:58:56 2033 GMT
Subject: CN=640af154-4b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:47:4a:ad:c1:dd:66:ea:29:65:b1:7c:be:f0:
d0:a6:20:45:2a:d7:fa:9d:27:cc:cf:31:72:07:5a:
51:12:23:98:f1:c3:04:14:a1:86:8d:d1:94:95:2f:
a2:04:d2:2b:58:ee:25:0b:88:4e:27:e8:12:df:32:
ba:3f:c1:a9:04:44:8b:89:9e:98:39:1c:58:2c:e0:
06:64:15:a9:d5:52:75:b6:58:90:dc:b5:d7:86:fd:
62:37:bb:8f:1c:48:c4:4f:8d:a7:5b:60:95:66:f2:
c3:52:11:e6:6b:4d:f4:d3:5b:0b:f7:a3:1d:a0:82:
70:66:ca:5b:14:03:de:2f:76:6e:1b:f3:fa:e2:6e:
75:38:72:87:bb:ce:69:5c:fa:b8:7a:8f:9d:b3:83:
a6:2a:fe:94:78:3e:8e:97:6f:3a:f8:fa:d3:66:40:
dd:1f:ef:a9:43:ae:2e:22:e0:af:24:f9:39:b8:3b:
f1:ee:7b:7e:81:63:ba:52:ac:52:f5:12:dc:7d:7e:
16:5c:0c:9f:ea:bc:cc:ff:76:37:91:46:c2:0b:fb:
5b:ad:1b:80:75:6f:ee:5c:35:e6:07:f3:4c:8f:d7:
a2:2f:8c:2c:c2:ea:11:9c:f6:06:3b:d5:cb:df:d4:
f3:86:c6:de:b7:52:7d:65:1f:37:1f:83:48:99:4b:
f7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E3:56:DE:6B:BE:B8:C0:85:41:72:ED:D0:E9:CA:51:EA:39:8D:F1
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CC2EA620BF2111EDB21A7FA0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.49.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:9e:35:e1:8f:77:e2:f9:6a:6e:92:8d:03:4c:b7:8c:67:0f:
c2:3a:0a:3b:2a:4f:62:f1:24:11:ef:3e:cd:78:94:08:f5:f3:
21:36:4c:51:6b:7c:e4:92:78:d3:69:e7:4f:83:53:b4:24:33:
0a:40:14:89:b7:6f:13:99:a6:bb:b5:28:25:25:9d:93:aa:80:
87:db:77:1a:34:b6:92:a4:50:00:2f:42:98:0d:cd:bd:65:95:
ed:72:5f:2b:00:d8:6c:74:3b:01:52:a8:f1:77:96:02:f0:96:
74:08:46:d6:f8:c6:69:a2:e6:65:40:8b:45:9c:ee:a7:97:a3:
2c:cf:35:22:74:fd:5e:86:9b:7a:7f:0b:46:7b:94:aa:5f:3e:
3c:b8:9f:e9:aa:e0:33:6f:95:b6:80:98:cc:87:d7:aa:af:4b:
f5:97:a6:78:15:0d:e2:95:e7:fc:f0:2d:89:78:51:97:8c:cc:
97:56:bc:2e:5e:81:f3:13:89:37:e2:08:0d:36:e1:97:b6:82:
51:22:97:38:c0:f1:14:96:47:a2:d2:14:c9:84:59:e2:b7:35:
77:d0:b6:19:ca:70:cd:4e:ec:81:32:1d:71:1c:85:e2:a4:9c:
23:a5:e2:64:c0:35:f5:b4:3b:0a:a1:49:df:20:95:d4:07:81:
6c:d5:d1:c3
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
QjBDOUFGMTEwLwYDVQQFEyhBMjBFMjA2N0YwREI3ODNERTM3MjNFMjMxNTE3REM3
RTlGRTVCQUQzMB4XDTIzMDMxMDA4NTg1NloXDTMzMDMxMDA4NTg1NlowGDEWMBQG
A1UEAwwNNjQwYWYxNTQtNGI5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANhHSq3B3WbqKWWxfL7w0KYgRSrX+p0nzM8xcgdaURIjmPHDBBShho3RlJUv
ogTSK1juJQuITifoEt8yuj/BqQREi4memDkcWCzgBmQVqdVSdbZYkNy114b9Yje7
jxxIxE+Np1tglWbyw1IR5mtN9NNbC/ejHaCCcGbKWxQD3i92bhvz+uJudThyh7vO
aVz6uHqPnbODpir+lHg+jpdvOvj602ZA3R/vqUOuLiLgryT5Obg78e57foFjulKs
UvUS3H1+FlwMn+q8zP92N5FGwgv7W60bgHVv7lw15gfzTI/Xoi+MLMLqEZz2BjvV
y9/U84bG3rdSfWUfNx+DSJlL9+MCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQY41be
a764wIVBcu3Q6cpR6jmN8TAfBgNVHSMEGDAWgBSiDiBn8Nt4PeNyPiMVF9x+n+W6
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEyMjI0Njgvb2c0Z1pf
RGJlRDNqY2o0akZSZmNmcF9sdXRNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvb2c0Z1pfRGJlRDNqY2o0akZSZmNmcF9sdXRNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEy
MjI0NjgvQ0MyRUE2MjBCRjIxMTFFREIyMUE3RkEwRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACldMTANBgkqhkiG9w0BAQsF
AAOCAQEAvZ414Y934vlqbpKNA0y3jGcPwjoKOypPYvEkEe8+zXiUCPXzITZMUWt8
5JJ402nnT4NTtCQzCkAUibdvE5mmu7UoJSWdk6qAh9t3GjS2kqRQAC9CmA3NvWWV
7XJfKwDYbHQ7AVKo8XeWAvCWdAhG1vjGaaLmZUCLRZzup5ejLM81InT9Xoaben8L
RnuUql8+PLif6argM2+VtoCYzIfXqq9L9ZemeBUN4pXn/PAtiXhRl4zMl1a8Ll6B
8xOJN+IIDTbhl7aCUSKXOMDxFJZHotIUyYRZ4rc1d9C2GcpwzU7sgTIdcRyF4qSc
I6XiZMA19bQ7CqFJ3yCV1AeBbNXRww==
-----END CERTIFICATE-----
Generated at Sun May 12 03:24:46 2024 by rpki-client on console-fra.rpki-client.org