Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EFFCED78BF2611ED9E82D5B0F1222468.roa
File: EFFCED78BF2611ED9E82D5B0F1222468.roa (raw, json)
Hash identifier: LqvdIkjKuV/vQtVsjVdyxW4UE0jzW7hiG7B0PA6U3UI=
Subject key identifier: AD:3A:97:1D:0B:6F:22:EF:CE:48:1F:F3:CE:3D:9F:5E:71:32:38:A5
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 4D
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EFFCED78BF2611ED9E82D5B0F1222468.roa
Signing time: Fri 10 Mar 2023 09:35:48 +0000
ROA not before: Fri 10 Mar 2023 09:35:44 +0000
ROA not after: Thu 24 Mar 2033 09:35:44 +0000
asID: 37182
IP address blocks: 41.93.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:35:44 2023 GMT
Not After : Mar 24 09:35:44 2033 GMT
Subject: CN=640af9f3-c061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:87:05:36:79:0b:79:c2:6e:5b:aa:60:c8:a5:
eb:05:aa:8d:8b:e9:10:9d:aa:03:5e:d0:23:61:64:
17:2f:46:b2:37:fe:02:ca:b2:b4:67:4c:0f:a6:78:
94:a1:60:5a:3a:45:7d:b6:c2:37:59:23:14:bb:ca:
3d:6b:18:e9:a8:52:43:3f:da:6e:40:6f:5c:81:09:
30:3b:a9:af:dc:70:48:27:1c:5f:76:f7:e2:14:1b:
91:e4:92:ac:19:c5:60:41:25:0a:f4:5a:e6:a5:7e:
30:6a:6c:ea:cf:f5:3e:43:77:fe:d6:e1:03:23:dd:
18:f3:c4:72:c7:22:f1:4a:e8:1a:45:8d:bc:22:8d:
15:63:2c:25:41:f0:7e:58:9d:e4:b0:ee:3a:41:72:
6a:23:b5:d9:3c:a7:63:30:c7:bf:6c:b1:09:7b:23:
6b:d9:d4:ae:e1:05:82:3c:b5:6d:35:52:93:b3:d8:
bc:96:6a:5b:80:be:3f:b9:07:e1:63:2e:6c:f8:60:
d6:2c:f6:d7:cf:fa:53:a9:bc:ab:97:d8:9e:07:7c:
2b:9e:5c:7b:d9:2d:5a:87:41:fb:11:b5:20:65:69:
0d:01:dd:5b:dd:46:78:66:59:12:78:c4:cc:87:b3:
9b:f9:1a:c6:83:37:ef:c2:5a:0c:58:80:42:b8:db:
c3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3A:97:1D:0B:6F:22:EF:CE:48:1F:F3:CE:3D:9F:5E:71:32:38:A5
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/EFFCED78BF2611ED9E82D5B0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.56.0/24
Signature Algorithm: sha256WithRSAEncryption
40:59:80:57:02:d7:e9:d5:bc:8a:21:c2:32:2a:7e:82:8e:c1:
de:af:a3:e5:ad:85:b2:aa:09:d6:61:7f:2e:a1:b8:a8:cb:69:
e1:f4:dd:60:c3:29:80:ed:ee:41:8f:8a:15:29:93:f2:b8:ed:
fa:cd:f4:0c:c8:0f:5c:4d:46:38:81:91:03:6f:76:5e:23:fe:
d6:66:d0:7b:1d:14:44:de:c1:d3:0d:f7:a9:ff:e2:5e:3f:b3:
d5:f4:b8:33:13:8c:46:06:3f:28:cd:67:ba:a1:ed:4d:30:8a:
e5:3d:38:51:07:21:a9:96:47:1d:d7:df:26:e0:25:e0:4c:56:
16:0a:a0:7f:58:7c:0d:00:d8:9b:41:22:df:24:94:d2:04:f6:
13:91:84:f5:16:83:00:b2:12:00:84:84:08:73:e9:f3:49:45:
ed:83:1f:c7:a1:13:9a:7f:25:5c:99:0d:ea:77:20:d9:48:c5:
b8:36:ca:f5:d8:9b:b4:3c:6a:34:9e:86:20:e6:9a:9f:5e:77:
ef:96:e1:82:79:2d:55:fb:68:ff:73:85:06:3b:50:9b:cf:49:
02:f6:fd:8f:14:70:1b:d1:e7:cc:5e:ca:83:61:ae:5a:6d:8c:
7a:3a:b5:00:2b:72:be:f4:5d:7f:b8:a3:1b:b6:1a:01:f9:11:
86:6f:be:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org