Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/58F9B92203B511EFB9AAA61C017001B1.roa
File: 58F9B92203B511EFB9AAA61C017001B1.roa (raw, json)
Hash identifier: wfruQ932JSdbaIg9RVb9zVvENhjkQ6ADpWh/ZpApbXY=
Subject key identifier: 4B:9E:8E:A0:0D:4D:A5:E2:3C:A1:1E:8A:E2:99:CC:93:15:E6:6D:1D
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01DB
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/58F9B92203B511EFB9AAA61C017001B1.roa
Signing time: Fri 26 Apr 2024 10:11:29 +0000
ROA not before: Fri 26 Apr 2024 10:11:25 +0000
ROA not after: Thu 30 Apr 2043 10:11:25 +0000
asID: 30988
IP address blocks: 41.73.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475 (0x1db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF
Validity
Not Before: Apr 26 10:11:25 2024 GMT
Not After : Apr 30 10:11:25 2043 GMT
Subject: CN=662b7dd1-ea11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:6b:14:db:f2:7e:5c:e4:0a:6f:ce:f3:e4:
18:a7:8c:16:bd:83:8d:a6:db:48:e9:07:51:2f:07:
a6:d3:fb:9a:8d:cc:3a:13:6f:51:f5:89:4d:fe:13:
7c:d1:25:90:ad:7e:c6:fb:d8:44:7a:35:b8:37:69:
f5:70:d9:92:45:f8:9c:e4:b2:1a:4d:bd:f7:44:6b:
32:ce:38:b1:be:ca:0b:37:8c:32:a9:9f:ff:0e:ae:
06:e6:4b:91:f7:dc:1c:0b:07:30:d3:6a:8f:22:75:
89:13:f0:6a:c6:f2:99:d9:a3:4f:9f:67:fd:c4:01:
07:fd:ab:86:a5:61:5d:20:e9:33:63:47:a7:a1:4f:
ab:02:e5:8f:35:b0:52:a4:92:46:04:43:2c:d2:8c:
29:3d:9b:3d:a1:b8:f3:5b:26:1f:ea:f0:47:21:16:
f9:51:00:3b:9e:37:82:a5:74:12:bd:80:b9:41:d2:
86:65:f1:1b:35:d4:aa:a4:54:85:ec:4b:60:ea:d4:
79:31:49:2e:32:c9:68:8e:ad:32:c4:1d:9d:88:61:
ca:10:39:0d:a9:41:05:14:38:be:35:e9:cb:b4:b1:
e8:54:0e:de:77:fe:90:05:6b:8c:66:c9:ed:1e:8c:
e5:36:4c:0c:b5:67:8c:ad:82:39:f4:f7:f6:03:fa:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9E:8E:A0:0D:4D:A5:E2:3C:A1:1E:8A:E2:99:CC:93:15:E6:6D:1D
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/58F9B92203B511EFB9AAA61C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.128.0/24
Signature Algorithm: sha256WithRSAEncryption
54:bc:14:6e:ca:71:05:be:c3:da:d4:6b:d8:7e:db:1f:b3:d5:
81:9e:01:d7:ff:ba:b0:0c:55:54:29:fe:7d:47:77:73:12:5d:
a5:32:55:37:ab:4f:7b:b3:a5:5c:07:d7:ea:78:de:76:ff:c1:
85:1c:6a:69:2c:f5:7d:44:3a:6e:97:2d:b6:99:3c:72:42:da:
87:86:e8:47:e5:67:3a:82:d0:eb:7c:ad:c0:d9:63:af:34:20:
82:a3:6c:bb:34:3b:61:ff:d7:60:5e:08:c2:3f:5c:60:eb:78:
cf:0f:a7:19:31:bb:aa:47:72:59:b9:3b:26:b7:ef:f7:aa:e9:
38:c8:9c:26:02:06:93:73:d6:07:d7:66:19:64:70:e7:c7:cd:
1f:b6:f4:ef:39:f8:47:e5:27:ec:2c:5e:8b:99:75:c1:c5:04:
61:d2:b0:bb:f4:31:8d:08:86:7a:a9:3e:a2:01:2f:88:25:1e:
f4:11:b7:61:a3:52:22:07:bf:36:22:7b:b1:15:33:e5:95:da:
84:0c:d8:a1:1f:9e:31:0e:17:cd:6e:dd:ec:f4:26:96:bb:26:
01:5a:f9:2e:99:6c:3b:0f:68:29:29:e5:50:b2:2a:6e:67:da:
a2:33:e2:92:67:06:f7:d1:c8:ff:d3:88:82:b5:e7:c4:91:47:
03:1e:c4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:06 2025 by rpki-client