Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EE0F7078BF1F11ED8DBA309BF1222468.roa
File: EE0F7078BF1F11ED8DBA309BF1222468.roa (raw, json)
Hash identifier: BlB2nMrJrdBGoWaNd1LsaCXKt3NqOFx6jhEQWEZRRl0=
Subject key identifier: 59:5E:7E:5E:9F:4A:1D:F7:71:46:D9:BB:81:60:E5:E2:47:75:5C:01
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 25
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EE0F7078BF1F11ED8DBA309BF1222468.roa
Signing time: Fri 10 Mar 2023 08:45:38 +0000
ROA not before: Fri 10 Mar 2023 08:45:34 +0000
ROA not after: Thu 10 Mar 2033 08:45:34 +0000
asID: 37182
IP address blocks: 41.93.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:45:34 2023 GMT
Not After : Mar 10 08:45:34 2033 GMT
Subject: CN=640aee32-d304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6b:0f:62:7c:86:a5:2a:54:45:ba:81:a9:45:
fb:4e:92:19:83:0b:ec:5e:4f:87:2e:cf:1d:a6:dd:
a3:57:3a:32:a2:30:8c:38:17:d9:de:5c:59:be:b4:
d2:96:b9:09:71:e1:31:f0:3b:36:fa:a3:28:d9:51:
f4:15:e7:d7:85:16:5b:84:86:bd:fc:23:a3:ae:ad:
53:d0:2b:2d:28:05:27:6a:8a:b1:64:25:c5:5a:93:
63:55:1f:37:14:c4:7f:21:41:f5:3e:cb:b0:8e:ab:
51:b2:8e:ef:95:49:c2:b0:52:7d:5e:9b:39:74:d1:
71:15:f0:1c:8e:d4:58:26:ba:b7:57:42:c2:68:98:
54:be:0c:32:1d:ef:97:3a:83:30:70:5d:c4:b0:b2:
ad:bf:88:d1:14:4e:14:1b:7b:66:da:be:5a:a0:2d:
e0:6a:12:1c:1c:d7:81:13:90:5e:54:39:f1:e0:a2:
81:b9:5f:2c:5f:7f:b2:16:6a:c6:66:a4:61:1d:f3:
31:b8:3f:90:40:30:97:74:ac:bf:4d:d2:a0:ee:88:
d3:14:2d:b3:e0:e5:1b:db:e0:d4:32:3f:99:de:c0:
81:78:70:69:3f:a7:14:df:e5:e9:1f:fa:15:9f:98:
b0:28:02:df:cc:a7:62:bb:f0:b9:7a:f0:84:09:4a:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5E:7E:5E:9F:4A:1D:F7:71:46:D9:BB:81:60:E5:E2:47:75:5C:01
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EE0F7078BF1F11ED8DBA309BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.67.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:8b:c9:91:44:6e:2f:02:77:5b:00:c8:58:c6:10:67:b2:28:
be:f2:33:57:b5:83:a7:92:ae:47:ef:d6:31:67:ca:98:7d:2d:
6b:11:f1:c9:58:b0:fa:99:66:a9:7d:71:9b:1f:8b:23:c3:ac:
04:ba:14:ce:8d:4f:41:4e:ca:c9:7b:2b:cb:19:d7:07:25:37:
43:83:9d:c9:95:92:65:44:21:03:8e:d4:87:81:69:8e:5b:cd:
23:bd:a1:45:2e:fe:6f:92:18:2e:8c:ac:c8:8c:78:54:3e:2d:
22:9c:1a:82:5c:e3:69:51:39:db:94:aa:95:db:03:e4:af:fa:
07:bb:d0:50:72:91:b0:4e:1a:40:7b:b6:1b:95:7f:c7:f3:d1:
65:d5:c1:b5:d2:60:37:1b:3f:a3:37:60:98:d7:86:32:6a:3d:
31:4b:2e:4d:bc:cc:99:bd:68:5e:9a:45:e1:fe:28:07:9a:ae:
77:c3:28:2d:f7:23:88:49:05:6f:90:ac:65:15:7b:db:8f:9f:
38:cc:75:cb:48:41:b7:1b:4a:bf:07:2c:ac:e5:e5:ca:1e:d5:
84:66:6d:9a:9a:61:64:8a:c2:c7:e4:36:09:81:98:2c:41:0b:
b6:63:ad:be:29:79:ed:f4:ca:6b:08:8d:9d:d6:e0:20:17:36:
78:b1:07:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org