Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/1AE3C7AA03B911EF86A98F3C017001B1.roa
File: 1AE3C7AA03B911EF86A98F3C017001B1.roa (raw, json)
Hash identifier: gyS/aMybFEma33PxUMgpBfLTjikHDhVK6duizXP6PRI=
Subject key identifier: 57:12:2E:A6:70:A1:4B:CC:38:52:3C:63:B5:64:84:75:AB:B9:F4:2C
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0203
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/1AE3C7AA03B911EF86A98F3C017001B1.roa
Signing time: Fri 26 Apr 2024 10:38:23 +0000
ROA not before: Fri 26 Apr 2024 10:38:19 +0000
ROA not after: Thu 30 Apr 2043 10:38:19 +0000
asID: 30988
IP address blocks: 41.73.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 515 (0x203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:38:19 2024 GMT
Not After : Apr 30 10:38:19 2043 GMT
Subject: CN=662b841f-b241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:eb:55:0a:38:a8:38:8c:92:d3:2f:e2:88:0d:
6c:e5:ce:a1:46:c5:bd:17:27:ac:39:96:68:77:8f:
89:19:a7:d6:e7:1c:e7:98:1b:d9:5c:24:89:ea:75:
13:cc:ff:8a:89:3c:14:75:d0:a9:c0:35:92:90:9a:
3a:38:d5:05:6b:5f:87:1d:c2:7f:a6:7a:7c:db:8b:
4d:18:6c:fb:f3:8f:a3:df:46:6f:f1:d4:14:9f:35:
0a:32:88:10:4b:98:ad:64:58:98:0e:bf:e6:c2:7d:
d1:82:21:4c:51:a0:31:ab:2b:d8:1f:95:9b:f4:2b:
f2:2f:c6:18:f3:c7:c1:8b:50:e2:ed:5d:84:51:bb:
71:28:f3:1c:22:8b:b6:a8:55:ec:08:e0:65:4e:6f:
d0:f7:83:fb:59:2d:aa:41:ae:12:67:fe:0b:fe:80:
62:15:e0:46:08:f1:bc:4f:b1:86:ab:e1:3d:76:c6:
01:5e:a1:e9:c3:09:b9:61:86:71:f9:c2:94:5c:ea:
7c:ce:f4:e4:74:d8:00:d9:68:65:2c:51:0d:28:a8:
46:12:df:4e:4d:0e:2d:c4:57:e4:ec:9c:57:94:4c:
38:56:63:e2:62:45:7e:48:ee:10:de:f1:48:a6:1a:
48:f7:6c:e0:96:67:e7:0b:63:18:7c:9e:b2:3e:2c:
0c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:12:2E:A6:70:A1:4B:CC:38:52:3C:63:B5:64:84:75:AB:B9:F4:2C
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/1AE3C7AA03B911EF86A98F3C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ff:57:87:42:51:8a:44:5d:80:31:75:c6:86:a1:0e:26:c5:
f4:6e:c2:1b:e0:d9:26:fd:90:53:55:53:3d:21:55:bb:cc:b0:
05:54:60:a1:9f:30:eb:0a:86:1b:70:13:eb:be:47:a8:6e:b9:
f2:9b:28:81:61:7b:68:36:61:86:6d:ea:d5:6c:90:4b:ef:73:
1a:69:5a:ed:87:25:f3:25:67:c2:ba:17:41:50:6c:a6:34:c2:
d2:28:27:02:91:55:2e:46:a3:19:03:c3:e6:4e:89:8f:8d:5f:
71:8c:a6:a4:85:8d:99:88:4a:e8:2d:30:c7:e1:cf:d2:dc:8c:
bc:d0:0b:36:35:dd:76:a9:91:dd:b7:ac:cf:bf:38:84:6d:fc:
e3:20:ed:29:26:ce:e6:9e:21:6c:43:75:5b:d0:9c:54:3d:e2:
ec:b1:6e:57:51:b7:da:ad:ab:8e:90:d6:00:90:b9:58:dd:89:
20:3e:74:71:6b:42:96:e5:3f:b1:0f:13:40:8f:cf:11:0a:78:
85:6a:b8:32:52:e9:5d:7b:c4:95:d3:51:74:36:a2:b6:46:ac:
22:fe:ff:70:87:7d:ab:b3:d6:08:3c:48:fb:86:c7:64:f7:a4:
d0:b7:d3:29:e1:24:63:43:da:38:49:a2:13:99:0d:f8:2b:5b:
5f:c8:07:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:22 2024 by rpki-client on console-ams.rpki-client.org