Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/42F3617E03B911EFBF21F33C017001B1.roa
File: 42F3617E03B911EFBF21F33C017001B1.roa (raw, json)
Hash identifier: rGghr4IPbYUvGjnweFdDE8GuVv5Ia4WJ4E4L8gdF8rc=
Subject key identifier: 68:7B:44:A2:AD:85:9C:DB:56:57:F2:99:DD:7D:C7:C7:C3:3F:F8:F0
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0205
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/42F3617E03B911EFBF21F33C017001B1.roa
Signing time: Fri 26 Apr 2024 10:39:30 +0000
ROA not before: Fri 26 Apr 2024 10:39:26 +0000
ROA not after: Thu 30 Apr 2043 10:39:26 +0000
asID: 30988
IP address blocks: 41.73.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517 (0x205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:39:26 2024 GMT
Not After : Apr 30 10:39:26 2043 GMT
Subject: CN=662b8462-bada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0f:0e:0a:52:22:5b:5a:c2:44:39:4f:24:f0:
13:6c:7c:d4:77:3f:52:d6:80:06:9e:91:b1:f2:8d:
2e:59:92:41:0f:62:c7:c6:4b:1a:12:06:9d:a2:d5:
d7:6c:ec:ae:70:3c:0d:87:db:70:b1:a5:26:c6:26:
79:6f:82:18:a5:56:03:67:c7:ed:27:4e:a1:0b:f5:
31:c9:8c:79:98:2b:53:09:3f:1e:3f:86:17:63:a1:
cb:e0:e9:b3:b3:d4:c5:d0:4f:fd:46:18:fc:0e:14:
83:d3:4b:72:89:c2:0a:9b:f6:d5:e9:25:ae:f2:11:
c0:db:b4:13:41:37:e0:9e:11:b9:c4:3a:8b:3b:90:
d9:1d:b1:7a:7c:2c:32:fb:c8:22:ff:b1:55:f0:a7:
d0:06:3b:d5:d9:38:16:f9:55:d1:cb:f6:6f:5d:a4:
a1:93:24:bf:3e:96:31:ba:1c:6a:e8:3a:8a:50:29:
45:42:aa:00:5f:48:d5:d5:47:6c:ba:40:6f:6c:a7:
11:8d:89:18:21:68:55:3b:21:0a:f1:a1:7c:a1:5c:
06:28:b5:33:25:a4:bb:2f:a6:a1:74:7a:1d:f1:e1:
66:0a:72:22:b7:6e:33:9a:f8:22:a4:01:a8:40:cf:
8a:0b:c3:de:69:e2:0b:94:d6:a7:ae:35:ba:67:6f:
32:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7B:44:A2:AD:85:9C:DB:56:57:F2:99:DD:7D:C7:C7:C3:3F:F8:F0
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/42F3617E03B911EFBF21F33C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3e:12:ec:73:f7:15:27:74:a2:ec:a3:e7:8c:2d:87:60:a9:
63:39:63:a0:0e:bf:d1:40:ab:a9:24:01:b1:3f:8d:a9:6a:c9:
7e:37:03:61:54:1e:7b:46:da:ac:c9:9e:f2:c2:36:ec:aa:b0:
bf:39:94:6e:db:2f:d8:f7:4d:d8:27:58:4d:b4:99:93:37:b6:
38:a4:d2:c1:e0:9b:71:d5:9a:a4:fc:64:d8:25:32:60:25:23:
b6:00:b5:64:f4:35:46:35:c4:4f:8d:d5:a3:ef:cc:91:aa:44:
46:e2:93:31:ac:93:92:4f:13:51:c7:72:be:ba:ef:0e:a5:37:
d0:1d:68:a3:97:e5:69:05:b5:a4:b4:be:dc:7e:f5:d5:8e:8b:
af:13:bf:45:87:28:ad:d4:47:86:5c:2a:03:da:11:4d:34:62:
44:df:2d:57:ab:9e:f1:eb:47:77:ed:e6:6f:f1:aa:8e:59:31:
e2:ab:e0:6d:6a:87:aa:30:46:db:b8:e4:92:21:e5:6b:df:8f:
df:1d:be:1e:d2:3e:89:54:7f:76:0a:47:bd:f8:3d:21:d6:90:
d4:18:89:03:df:82:bf:d0:a7:85:1d:3e:9f:ab:51:2f:9b:e2:
e0:ad:d2:f7:64:ff:09:61:fa:55:a2:08:db:ce:7d:0e:44:c1:
3b:33:a2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org