Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E5B8A960BF3011EDB83489CDF1222468.roa
File: E5B8A960BF3011EDB83489CDF1222468.roa (raw, json)
Hash identifier: wviQ+zSpvOs4S+UDkAPkftoGGyAqBH+rqiWl0vgEmGU=
Subject key identifier: 4A:F0:1F:09:57:02:5D:70:03:73:3F:0E:E7:B5:E7:62:43:24:C6:A1
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 58
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E5B8A960BF3011EDB83489CDF1222468.roa
Signing time: Fri 10 Mar 2023 10:47:05 +0000
ROA not before: Fri 10 Mar 2023 10:47:00 +0000
ROA not after: Thu 31 Mar 2033 10:47:00 +0000
asID: 37182
IP address blocks: 41.93.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88 (0x58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 10:47:00 2023 GMT
Not After : Mar 31 10:47:00 2033 GMT
Subject: CN=640b0aa9-2523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:2c:52:59:d6:64:f5:42:a6:c1:8d:97:38:
be:73:3e:27:8a:95:5e:b6:9e:b6:38:a9:ee:e3:1d:
5f:d2:d8:cf:a6:89:86:40:79:f9:bd:98:65:60:ae:
c8:ba:5f:c7:c6:cc:70:5c:a1:49:99:c9:92:c7:d9:
c7:ce:63:5d:02:95:1a:bd:47:0d:1d:0c:ce:a8:b3:
8f:85:f0:da:10:6a:27:54:cf:83:40:26:e0:b8:5c:
bd:38:62:57:f8:47:cd:eb:63:1c:59:55:a8:8a:07:
f7:3a:f6:4a:c2:73:63:a3:79:3b:5f:50:dc:9f:df:
bf:88:06:db:5a:57:2c:22:88:34:ec:70:ff:e1:18:
12:d0:3b:cb:39:96:ce:19:3c:44:57:f5:e7:c4:e7:
68:6b:0a:af:2d:5b:0d:ec:d4:c7:be:28:62:8e:68:
3f:20:50:f4:52:18:8b:20:37:1a:5e:17:4e:78:fe:
8e:6e:9a:ea:aa:ae:92:1b:b8:cf:0c:c2:14:c4:3d:
a7:b5:41:4b:06:f5:f0:01:8f:c1:3d:41:dc:22:19:
7f:2b:1a:2d:41:07:ad:24:81:8d:36:0e:46:c4:a8:
89:98:16:83:2e:2a:9a:86:87:1f:ea:cd:65:31:ab:
c3:85:7f:03:4f:63:c6:15:31:10:17:d7:2d:27:78:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F0:1F:09:57:02:5D:70:03:73:3F:0E:E7:B5:E7:62:43:24:C6:A1
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E5B8A960BF3011EDB83489CDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.40.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:c0:b8:d5:7d:6e:c3:23:6a:8e:fe:e5:93:85:77:6e:7d:fe:
20:58:f3:60:d3:83:cc:fb:63:5d:b6:15:85:bc:1a:f4:a0:e0:
0a:b8:8b:40:a5:ab:96:d8:b6:5d:d3:25:96:f3:f8:42:23:bf:
31:61:27:b6:92:0e:34:da:97:db:f4:b9:b1:ca:5f:24:1d:63:
a5:17:0d:21:75:18:a4:0b:8b:c2:fa:66:19:78:f2:fd:0d:17:
39:91:4f:c4:03:6f:86:f1:f7:de:d1:a2:50:f1:79:b0:7a:ae:
3f:18:2a:5e:80:fa:15:40:58:de:a5:27:42:4d:68:87:54:86:
01:3c:15:8f:f0:f1:e5:92:80:54:c6:bb:da:1a:4d:da:c5:83:
2f:d6:7b:ec:6d:a6:7f:d2:8f:48:18:4a:b5:ad:f3:18:6f:a8:
33:89:0f:46:4f:d8:8f:f6:84:03:04:cb:be:9c:ca:60:de:5d:
1e:a9:44:81:99:95:ac:26:66:30:4b:f0:dd:71:11:0f:cc:f5:
8f:fe:2f:53:87:d2:88:f7:25:6f:3e:ef:67:ab:68:37:1b:98:
2b:a4:04:9e:9d:5b:22:90:bc:3c:79:57:71:63:14:9b:f6:16:
b3:57:6c:8f:a0:c9:08:d5:4e:cf:5f:4b:cb:1f:0f:16:43:fa:
e3:04:e3:e1
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBWDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
QjBDOUFGMTEwLwYDVQQFEyhBMjBFMjA2N0YwREI3ODNERTM3MjNFMjMxNTE3REM3
RTlGRTVCQUQzMB4XDTIzMDMxMDEwNDcwMFoXDTMzMDMzMTEwNDcwMFowGDEWMBQG
A1UEAwwNNjQwYjBhYTktMjUyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM8eLFJZ1mT1QqbBjZc4vnM+J4qVXraetjip7uMdX9LYz6aJhkB5+b2YZWCu
yLpfx8bMcFyhSZnJksfZx85jXQKVGr1HDR0Mzqizj4Xw2hBqJ1TPg0Am4LhcvThi
V/hHzetjHFlVqIoH9zr2SsJzY6N5O19Q3J/fv4gG21pXLCKINOxw/+EYEtA7yzmW
zhk8RFf158TnaGsKry1bDezUx74oYo5oPyBQ9FIYiyA3Gl4XTnj+jm6a6qqukhu4
zwzCFMQ9p7VBSwb18AGPwT1B3CIZfysaLUEHrSSBjTYORsSoiZgWgy4qmoaHH+rN
ZTGrw4V/A09jxhUxEBfXLSd4zJ0CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRK8B8J
VwJdcANzPw7ntediQyTGoTAfBgNVHSMEGDAWgBSiDiBn8Nt4PeNyPiMVF9x+n+W6
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEyMjI0Njgvb2c0Z1pf
RGJlRDNqY2o0akZSZmNmcF9sdXRNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvb2c0Z1pfRGJlRDNqY2o0akZSZmNmcF9sdXRNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkIwQzkvRjEyNjUxOENCQzQwMTFFREFCNTk0RURDRjEy
MjI0NjgvRTVCOEE5NjBCRjMwMTFFREI4MzQ4OUNERjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAyldKDANBgkqhkiG9w0BAQsF
AAOCAQEAKsC41X1uwyNqjv7lk4V3bn3+IFjzYNODzPtjXbYVhbwa9KDgCriLQKWr
lti2XdMllvP4QiO/MWEntpIONNqX2/S5scpfJB1jpRcNIXUYpAuLwvpmGXjy/Q0X
OZFPxANvhvH33tGiUPF5sHquPxgqXoD6FUBY3qUnQk1oh1SGATwVj/Dx5ZKAVMa7
2hpN2sWDL9Z77G2mf9KPSBhKta3zGG+oM4kPRk/Yj/aEAwTLvpzKYN5dHqlEgZmV
rCZmMEvw3XERD8z1j/4vU4fSiPclbz7vZ6toNxuYK6QEnp1bIpC8PHlXcWMUm/YW
s1dsj6DJCNVOz19Lyx8PFkP64wTj4Q==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org