Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CCBC3898C1B811EDBBFE39ECF1222468.roa
File: CCBC3898C1B811EDBBFE39ECF1222468.roa (raw, json)
Hash identifier: f1fRt5fUI7uTZp5ElEyeFKA+od8tddRppoYLtZPlPt8=
Subject key identifier: 37:96:26:D1:C2:8F:07:5E:6C:87:D7:C5:29:2D:37:F3:53:61:37:BD
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 61
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CCBC3898C1B811EDBBFE39ECF1222468.roa
Signing time: Mon 13 Mar 2023 16:04:57 +0000
ROA not before: Mon 13 Mar 2023 16:04:53 +0000
ROA not after: Thu 31 Mar 2033 16:04:53 +0000
asID: 37182
IP address blocks: 41.93.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97 (0x61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 13 16:04:53 2023 GMT
Not After : Mar 31 16:04:53 2033 GMT
Subject: CN=640f49a9-645a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b6:86:40:c3:d6:2e:6d:fe:0c:32:bd:8a:fa:
52:51:b3:49:b7:90:0d:09:97:7a:f4:09:c6:51:1d:
ef:ed:43:fb:98:d6:39:f6:05:e6:fe:de:f2:95:5d:
82:d3:97:ea:91:54:76:20:08:f8:95:37:45:29:52:
ca:ec:8f:bc:50:2e:af:04:9e:ed:8f:18:91:80:ae:
f1:0d:d0:93:52:4c:bd:34:df:de:d0:3d:c9:5b:e8:
bb:55:05:e3:80:f5:26:15:e5:51:11:33:dd:1f:dc:
88:a3:7e:a0:63:ee:94:05:be:fa:d4:93:63:a8:1f:
8b:79:2c:4d:47:b5:80:e3:7d:1b:51:1a:cd:ee:2d:
a9:18:2e:fd:f1:d9:07:ba:54:78:bc:c9:9e:c3:43:
b0:89:0f:bd:da:9a:fc:f6:4c:14:50:ab:60:1f:88:
98:ae:25:96:e3:fb:28:23:c7:73:37:32:21:84:d0:
82:78:53:47:ed:4c:9d:55:b2:2b:54:b7:ba:a1:34:
8b:64:ce:97:bd:57:0c:f8:58:6a:94:a0:14:16:5c:
49:3e:b0:27:87:bf:00:9d:b9:55:43:b4:7a:70:a6:
69:14:cb:d0:74:fa:98:08:bd:68:77:85:91:05:4e:
9d:ae:fc:0d:e3:43:12:64:07:5d:58:fb:35:4c:c1:
ac:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:96:26:D1:C2:8F:07:5E:6C:87:D7:C5:29:2D:37:F3:53:61:37:BD
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/CCBC3898C1B811EDBBFE39ECF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.91.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:42:2d:ee:7e:97:84:e9:8e:a0:2b:c3:3c:aa:b1:b1:07:d0:
c9:64:8a:2a:4d:35:da:36:ba:3a:91:7e:8d:a6:dc:72:6a:5c:
43:d3:cc:f9:16:bd:af:0d:74:12:2e:4a:21:a0:18:89:0f:d2:
5b:0d:ba:ff:a1:f6:c2:e9:b0:77:a0:32:11:0b:79:2f:7c:68:
20:1d:7b:09:09:14:96:c3:ae:0e:d3:b3:9b:f1:58:3e:7f:84:
9c:c2:ff:32:9a:12:3a:16:c4:1f:49:e0:31:d5:2b:cb:c0:b1:
96:6d:20:b2:a3:98:fb:99:64:29:8a:42:f1:d4:9d:29:39:ac:
a8:1d:56:41:2e:0f:c3:13:d7:3c:fb:55:50:0c:19:de:f8:e0:
59:ec:46:3d:fd:80:9d:32:28:b2:f2:04:6c:46:fa:39:28:cd:
85:e3:0a:52:ff:10:32:4f:0a:58:85:69:bc:de:56:84:58:ce:
de:19:9a:16:26:7d:b0:e1:e2:34:0d:d5:75:5a:67:18:8a:35:
8e:40:30:0e:68:74:c2:b3:82:1e:c7:8d:89:b0:1d:3a:06:b7:
ef:d6:11:33:51:9d:b1:cd:27:e2:cf:15:de:ed:f5:6c:35:48:
39:20:93:c5:9c:a4:dd:1e:7f:33:4d:b5:66:c4:dd:d5:1e:91:
cd:3f:8b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 03:29:11 2024 by rpki-client on console-ams.rpki-client.org