Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/D9861554BF2311EDB5A3B3A6F1222468.roa
File: D9861554BF2311EDB5A3B3A6F1222468.roa (raw, json)
Hash identifier: OJluIP26xOp0ALoukjRf3LQShXKEkxEh8hUqhRYAZRo=
Subject key identifier: E5:B6:E7:54:79:87:D9:38:91:06:F3:C4:7B:E1:60:00:22:D5:7B:77
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 43
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/D9861554BF2311EDB5A3B3A6F1222468.roa
Signing time: Fri 10 Mar 2023 09:13:41 +0000
ROA not before: Fri 10 Mar 2023 09:13:38 +0000
ROA not after: Thu 31 Mar 2033 09:13:38 +0000
asID: 37182
IP address blocks: 41.93.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 15 May 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:13:38 2023 GMT
Not After : Mar 31 09:13:38 2033 GMT
Subject: CN=640af4c5-8832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:60:4f:ba:5d:2b:33:28:c7:d2:ae:63:dd:89:
3b:f4:b6:44:f4:bb:84:05:6a:66:47:dd:5c:51:75:
d7:82:18:ff:c8:ae:5a:3e:47:54:6d:c5:fb:bc:9d:
bf:a6:9c:d2:7e:65:f2:1e:10:e8:aa:c1:13:e7:80:
0c:70:e6:6d:5b:db:78:45:43:49:ec:31:b6:7d:f8:
a6:e7:3a:11:86:2e:ef:9e:12:84:9b:e8:48:f3:73:
09:4a:f1:66:af:e9:cc:b8:2d:75:23:16:85:ec:10:
26:69:48:f0:2c:71:6a:1d:54:f4:f2:95:bc:c2:1a:
14:02:19:03:0b:be:d1:8f:9d:41:ca:b8:77:e5:52:
31:e9:20:d2:e4:a0:dd:0e:1d:2d:89:bd:5b:00:b6:
a5:0d:7c:77:1a:e0:9d:97:75:ae:09:bc:74:37:29:
70:a0:0d:d3:43:6e:66:60:f6:8f:b6:10:2b:d8:6f:
ff:30:ca:be:3b:8a:35:28:52:6c:70:f8:36:a0:e1:
ce:05:2c:2b:20:11:ef:d2:57:20:bd:22:e6:30:74:
63:4e:7a:0f:1f:50:da:85:d4:a7:3f:36:24:92:4a:
cf:37:5a:fe:5d:49:d0:d2:69:a7:b1:c5:6a:9d:4e:
d1:08:4b:61:b7:69:e2:3e:57:27:e1:94:9a:1d:4e:
00:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B6:E7:54:79:87:D9:38:91:06:F3:C4:7B:E1:60:00:22:D5:7B:77
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/D9861554BF2311EDB5A3B3A6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.88.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:83:c5:b5:71:13:3c:1d:e7:55:f5:bf:e2:bc:e2:c7:d6:9c:
3f:43:e6:eb:29:d3:a2:04:05:a3:9a:86:ae:70:0e:2c:5b:f7:
18:82:a2:78:ac:15:ff:98:e1:0b:eb:0d:78:1b:e7:83:31:23:
7a:40:09:22:22:05:70:c7:1e:b9:78:77:94:ae:df:a7:43:12:
7f:cb:63:ba:31:19:44:b8:40:74:e9:60:64:61:b9:4b:e5:76:
bc:3d:27:98:44:a5:47:9e:b4:85:ed:86:9e:09:d5:64:a5:21:
5b:ba:f6:a6:e6:83:03:6f:ea:9f:01:a0:5c:c1:17:65:47:ce:
6b:a4:cc:c9:48:ea:96:a1:6a:6f:29:75:72:58:21:06:3c:e6:
c3:b9:63:0b:95:8d:51:78:74:1d:32:3f:ee:3a:ef:9f:cc:1a:
e8:50:ec:9f:da:5b:9d:ed:76:95:79:33:59:57:23:8c:ce:f0:
ed:42:ef:e0:cc:c9:76:d2:c6:d8:a3:34:bf:fc:16:7b:e2:90:
5c:02:1a:76:f4:65:cd:16:f8:c2:3e:6a:a7:4f:30:f0:0d:20:
75:0c:24:52:ef:5c:7c:50:9f:19:b4:b3:2e:da:23:98:b1:aa:
ab:18:88:0e:d1:ab:b1:bf:bc:9c:5b:6c:ea:94:a4:8c:67:0a:
96:76:90:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:51:16 2024 by rpki-client on console-fra.rpki-client.org