Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/F1719280BF2111EDB5A90EA1F1222468.roa
File: F1719280BF2111EDB5A90EA1F1222468.roa (raw, json)
Hash identifier: x1eMHSlki3jYOxekyK5OgMctr2Rl2Pgi1odZM4ZBJ5c=
Subject key identifier: 89:6A:A5:D1:67:8A:E3:A0:68:AB:3E:2E:D2:EE:32:26:62:6F:63:9F
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 2F
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/F1719280BF2111EDB5A90EA1F1222468.roa
Signing time: Fri 10 Mar 2023 09:00:02 +0000
ROA not before: Fri 10 Mar 2023 08:59:59 +0000
ROA not after: Thu 10 Mar 2033 08:59:59 +0000
asID: 37182
IP address blocks: 41.93.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 08:59:59 2023 GMT
Not After : Mar 10 08:59:59 2033 GMT
Subject: CN=640af192-cc33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:ee:24:df:98:04:3e:82:f3:f2:67:49:fb:
d2:ac:fa:ff:f3:ee:04:b8:12:ae:09:60:e2:bc:ff:
45:1f:a8:7a:e0:26:45:db:aa:35:05:56:7a:fe:66:
d6:7b:e6:b2:1a:16:de:8b:96:a0:83:07:dc:0a:87:
9a:ca:d0:53:4c:eb:67:7a:dc:26:67:75:5c:27:fa:
ae:91:97:78:8f:e5:d9:7d:f0:60:ef:3e:6b:6e:4e:
7a:01:3c:55:2f:85:5a:1a:85:8a:db:a5:a0:26:87:
5a:b2:ab:4c:99:e6:68:c7:8e:4d:a0:ed:7a:6c:99:
72:54:84:83:f8:35:66:03:03:2b:5d:e5:19:8a:6c:
3e:77:41:a6:31:fc:25:4e:86:72:4d:e9:3c:8b:30:
d0:2f:c0:88:98:86:78:13:51:ba:e3:fb:b5:05:ea:
80:63:4d:89:a4:8f:3a:68:1f:da:9d:43:29:f6:fd:
e9:e5:42:13:b9:c2:0b:4c:17:74:5f:6d:73:ef:c3:
aa:4a:47:db:0c:5e:ab:ba:e5:d3:75:e7:a4:f1:e5:
3c:12:1e:9f:e4:ec:95:7f:c7:a6:9a:22:1b:62:51:
9b:b2:90:28:6a:cb:43:61:6c:b2:cc:58:7e:5d:a2:
98:09:07:0b:01:a6:93:28:fb:bd:55:64:e5:fd:fb:
16:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6A:A5:D1:67:8A:E3:A0:68:AB:3E:2E:D2:EE:32:26:62:6F:63:9F
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/F1719280BF2111EDB5A90EA1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.71.0/24
Signature Algorithm: sha256WithRSAEncryption
73:dd:93:67:11:ca:b0:c7:46:bf:aa:30:76:5d:cf:23:6f:f7:
78:ed:21:a2:a0:0f:83:b8:d3:34:75:3b:3b:f3:99:da:10:6b:
27:b9:10:9c:a3:5f:d6:a5:f8:36:d5:c7:81:6c:0f:48:fd:bf:
b8:fa:5c:15:93:53:ae:eb:86:63:86:49:58:37:1c:fa:78:a3:
70:f5:df:0b:f3:33:0a:49:f1:c7:2c:8b:ea:2f:67:bd:79:99:
90:39:bb:57:05:4f:64:76:f9:7e:71:ef:11:52:fc:68:9f:54:
da:87:ca:77:c5:43:b0:61:fd:27:61:e7:e7:6f:15:18:03:e5:
bc:c7:e4:06:94:6d:f5:30:18:7c:5e:52:91:3f:c4:d5:3c:7e:
be:9e:93:70:27:52:5b:88:30:de:8f:90:33:6b:ed:ad:b4:f8:
e1:e7:65:24:cb:37:69:4c:cc:af:64:73:f6:5d:df:e2:35:17:
da:14:d5:6b:a0:55:0d:d0:26:e5:ae:fa:6e:ef:93:ca:21:55:
80:bb:75:bf:6e:21:a7:9f:67:ed:da:f1:81:72:85:f7:97:ab:
76:f3:08:75:d6:ec:26:75:eb:b7:be:e6:e5:bb:2e:02:ab:e9:
72:0b:5a:7b:99:44:6a:82:26:c1:c4:31:f1:cc:e9:1b:6b:b6:
9f:bf:3d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org