Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/A66EC216ECDA11EE9EC08472775412E6.roa
File: A66EC216ECDA11EE9EC08472775412E6.roa (raw, json)
Hash identifier: f71Fay/DESTXOMYTj0DRv2PY2902rnleTuR/D0d4cTA=
Subject key identifier: 94:63:F1:2D:74:02:47:9B:A9:A2:01:9F:24:4D:BD:72:C0:CC:17:40
Certificate issuer: /CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Certificate serial: 02
Authority key identifier: 4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/A66EC216ECDA11EE9EC08472775412E6.roa
Signing time: Thu 28 Mar 2024 08:10:34 +0000
ROA not before: Thu 28 Mar 2024 08:10:30 +0000
ROA not after: Tue 28 Mar 2034 08:10:30 +0000
asID: 29286
IP address blocks: 41.92.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.mft
rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Validity
Not Before: Mar 28 08:10:30 2024 GMT
Not After : Mar 28 08:10:30 2034 GMT
Subject: CN=660525fa-aa48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bc:86:47:f2:64:e2:ea:45:56:e7:98:82:2a:
b2:a7:9f:fb:b6:03:3d:c9:71:d2:8e:7e:6c:51:9a:
14:f8:dd:93:10:c4:58:b9:7a:35:10:f7:a5:e0:82:
65:df:56:23:1a:c2:19:38:84:ec:d9:a4:d1:22:f1:
6b:67:4d:ef:47:02:70:55:66:e0:94:77:ee:c8:4e:
48:b0:15:8f:61:4e:aa:6b:cc:4e:e3:5c:2a:ad:47:
fc:28:23:9f:37:e6:18:69:2c:ed:82:28:98:39:54:
94:63:77:fe:39:61:a1:c3:8f:51:fd:f9:12:07:97:
67:f4:e8:84:95:b4:f5:82:e2:4a:b8:1b:38:73:f0:
65:76:7c:d4:04:44:cd:d0:fd:1f:32:a2:08:0f:13:
3d:a7:15:e5:26:ed:ba:d2:0f:db:ae:05:c7:6e:1f:
5d:8e:64:63:cc:c3:9f:2a:bd:ed:6c:22:e3:54:4a:
11:7d:78:cb:e6:5f:3a:59:76:1f:f7:fb:67:8d:e5:
19:b4:5e:12:b8:c3:c5:93:6e:40:d4:b0:11:16:9d:
58:ea:a8:31:6b:d6:99:78:35:24:04:c5:da:9a:ef:
15:a6:c3:2d:b9:d9:56:3e:63:19:1c:e9:e1:c3:bb:
51:64:40:da:d2:2a:6e:15:bb:25:9f:5f:1f:0e:12:
ab:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:63:F1:2D:74:02:47:9B:A9:A2:01:9F:24:4D:BD:72:C0:CC:17:40
X509v3 Authority Key Identifier:
keyid:4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/A66EC216ECDA11EE9EC08472775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.92.249.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:cd:a0:06:bb:8f:87:bc:88:9c:f1:09:34:45:6b:c3:06:95:
a3:b0:0c:ec:f6:e8:5b:4e:c0:67:07:ee:9d:4d:37:fc:4d:b6:
e7:1b:61:89:ea:a3:bc:5c:83:aa:0b:22:57:ea:bd:a4:aa:73:
ea:41:73:34:bf:39:f3:9b:f8:fc:c0:f7:c1:a4:28:79:2f:2f:
10:3d:55:51:71:6f:33:ec:7f:3f:a9:ea:b8:24:9a:38:82:1a:
b3:c0:b4:97:e5:21:f4:bb:69:e7:38:0c:51:73:b7:e8:19:cb:
1a:d5:d6:ae:7b:75:76:fc:f7:10:d3:7d:5e:c9:3a:5d:e7:1a:
0c:46:71:d2:b8:72:5d:47:79:6d:ec:50:d0:b9:26:1d:4e:48:
74:13:d7:45:a8:1f:d8:10:19:c9:86:66:c7:7e:01:f6:53:67:
2f:54:28:b2:21:39:2a:23:d7:4b:c8:13:7f:c9:fe:37:04:bc:
1c:c8:5a:c4:46:3c:33:52:57:24:29:e8:ef:94:cf:b7:7b:71:
0a:05:4c:7d:b0:76:2b:8e:f4:e3:ad:fe:10:09:8d:3b:ea:f3:
4c:97:9b:70:3c:a7:cf:e1:06:b0:04:a9:3b:92:3d:3b:34:eb:
e2:9c:18:ec:54:62:28:ac:68:9a:f3:d7:a2:58:c8:24:67:e4:
94:f5:df:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org