Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/519B660C03B611EF98D15426017001B1.roa
File: 519B660C03B611EF98D15426017001B1.roa (raw, json)
Hash identifier: av0draMIOKhBEZ3kOVBkA1YKrpj/hJoac9vz6NKCER0=
Subject key identifier: 94:96:BE:6B:BC:FC:71:B5:9D:F2:38:F2:E6:CA:9B:35:FC:5E:94:D7
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01E3
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/519B660C03B611EF98D15426017001B1.roa
Signing time: Fri 26 Apr 2024 10:18:26 +0000
ROA not before: Fri 26 Apr 2024 10:18:22 +0000
ROA not after: Thu 30 Apr 2043 10:18:22 +0000
asID: 30988
IP address blocks: 41.73.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 483 (0x1e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF
Validity
Not Before: Apr 26 10:18:22 2024 GMT
Not After : Apr 30 10:18:22 2043 GMT
Subject: CN=662b7f72-8871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d1:5f:fc:fb:ec:33:e2:27:df:7a:d6:07:78:
83:06:b9:52:1c:da:05:0d:56:7d:ba:14:12:c2:1b:
45:fe:67:7f:dc:8b:bd:37:19:c4:8d:3a:5d:8b:c1:
69:18:46:1c:d9:03:ca:7d:e5:bc:31:87:69:2c:88:
fd:15:c4:fe:b6:e0:48:bf:7c:c0:fc:6f:99:a4:59:
ba:df:d6:4c:32:bd:f2:d5:7a:29:a9:91:c7:f5:2e:
1d:5d:ff:d5:ab:e1:f3:31:94:95:bf:0c:6b:0e:55:
ed:36:5d:9a:94:7f:7e:5a:4a:e0:7a:59:49:76:e9:
89:d8:87:f2:f2:99:e1:a1:76:78:9d:a0:8b:2b:4a:
65:df:04:33:70:b9:76:29:60:74:5c:7b:97:37:f6:
af:bd:8f:e0:04:f5:5c:fb:8d:e3:81:d1:e1:ad:3e:
a6:13:22:46:de:70:93:2e:76:55:4f:f6:6b:7c:da:
ea:d2:10:6c:b6:a4:ba:ee:63:10:b0:28:14:9b:8c:
86:13:33:fe:7d:08:19:df:d1:30:4e:d6:22:a4:b7:
2d:11:50:b0:67:ef:d6:d3:07:2f:e0:c2:26:fc:d0:
85:33:d8:80:08:da:f1:6e:b3:14:be:03:ec:88:31:
7a:1d:be:71:ca:90:00:4f:cf:ef:66:18:de:d7:07:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:96:BE:6B:BC:FC:71:B5:9D:F2:38:F2:E6:CA:9B:35:FC:5E:94:D7
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/519B660C03B611EF98D15426017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
86:41:41:5b:16:66:42:ba:58:de:fd:f1:6d:7b:65:6e:01:f4:
50:50:7f:d1:13:3b:45:04:25:54:c7:00:03:3e:14:fe:db:1c:
92:c7:f6:58:92:b8:91:70:6c:d6:4d:1f:01:a9:10:d6:f2:e5:
c1:f5:bd:73:2a:4c:31:68:88:fb:f4:4a:c3:8e:c7:6e:c8:af:
b1:c5:89:03:f0:2d:43:98:6a:92:5d:f0:b2:f1:e3:50:ac:9b:
b4:8c:ee:43:32:d7:98:a4:15:9c:88:a8:c3:2b:e0:5c:51:e9:
b9:0a:7c:88:9a:45:45:a4:0e:2a:f5:fe:f6:30:1d:06:94:8b:
ae:07:63:66:d7:55:4f:bb:ac:db:03:c9:06:30:9d:66:af:33:
01:c2:a6:2e:fe:a0:43:99:17:06:69:c4:53:2a:d6:98:c5:b5:
17:a8:d8:fc:d1:af:a7:83:ca:a7:91:2b:9a:4f:de:40:1f:0c:
7a:a6:36:d8:59:81:f0:7e:31:73:50:34:f1:bd:ee:80:2b:04:
8d:4b:25:be:e9:fd:21:68:e2:e7:7b:0e:55:14:fb:16:6f:5a:
08:96:f5:26:bf:f7:b4:84:42:ea:7e:83:35:0f:9a:45:13:b9:
d0:1d:af:69:0d:e1:2c:71:4a:8c:f5:0e:04:6d:c7:d4:33:a9:
48:0a:4b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:39 2025 by rpki-client