Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B989A2C03BA11EFAA71D543017001B1.roa
File: 5B989A2C03BA11EFAA71D543017001B1.roa (raw, json)
Hash identifier: KbZuJr3ip0P+gvWdRwind0bDdrmcL70WDYjmp2NTnhE=
Subject key identifier: 37:C2:1F:5C:FC:00:A8:87:8C:3A:3E:6B:3E:C0:C7:6E:79:27:C4:09
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0211
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B989A2C03BA11EFAA71D543017001B1.roa
Signing time: Fri 26 Apr 2024 10:47:21 +0000
ROA not before: Fri 26 Apr 2024 10:47:17 +0000
ROA not after: Thu 30 Apr 2043 10:47:17 +0000
asID: 30988
IP address blocks: 41.73.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 529 (0x211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:47:17 2024 GMT
Not After : Apr 30 10:47:17 2043 GMT
Subject: CN=662b8639-dd73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:4b:8d:a6:4b:14:54:87:ac:ef:03:25:50:
03:bc:9c:64:19:8f:c5:13:f8:eb:27:8b:52:ab:1a:
4e:d4:c7:b4:9b:ee:9c:4e:f6:a2:fb:bc:4a:9f:e3:
5d:e9:20:9a:8c:06:c6:5c:7c:dd:09:41:fe:60:2f:
27:e6:e9:cb:72:3e:0e:e1:6d:2e:91:70:29:8a:6b:
25:c8:23:2f:3e:0c:c8:ca:de:47:96:a5:20:85:a5:
bd:59:3c:c0:98:2a:95:63:86:1d:1b:02:08:3f:5a:
17:f8:eb:25:d2:3f:e8:b6:57:45:a4:bf:df:80:83:
08:98:59:8f:03:38:a5:ee:a4:aa:a7:fc:48:ef:a0:
f0:ba:4b:e7:02:3e:e4:ca:d1:c8:d2:cd:10:bf:2d:
e7:f1:eb:a2:53:0c:6a:c7:c6:89:1f:05:f0:e2:62:
aa:fe:00:d5:14:ad:d1:4b:ba:b6:39:56:60:b7:f7:
3c:d4:61:a6:bb:9d:1b:aa:cd:36:88:d4:12:44:10:
f7:de:ed:b5:bb:70:97:71:0f:4d:84:9a:b8:97:12:
33:9c:d3:ab:62:34:6f:25:31:0b:61:75:8b:60:05:
f6:a2:03:6c:df:d1:89:21:60:d9:c8:67:a0:d6:20:
09:16:33:a9:d6:9e:e1:ec:c9:79:20:b8:e6:c3:eb:
b8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C2:1F:5C:FC:00:A8:87:8C:3A:3E:6B:3E:C0:C7:6E:79:27:C4:09
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B989A2C03BA11EFAA71D543017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.155.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a6:c3:9b:ae:44:03:23:26:35:ae:cb:31:23:5e:88:49:e0:
17:5b:92:bb:db:6e:e5:93:fb:9a:09:a2:f8:9b:10:7f:90:48:
8c:d0:79:2b:7d:20:85:df:c7:04:c4:ae:b9:1e:70:74:bb:96:
44:ce:4a:c1:ad:77:ca:04:24:75:1d:49:b6:96:96:2d:5a:e9:
66:a5:97:3e:21:20:21:f5:f8:d5:27:34:9b:e7:bf:33:c1:27:
6a:f3:ef:07:cb:b4:bb:7e:81:75:67:19:bb:08:04:c8:01:c2:
6f:ed:5d:e0:ad:ad:59:d3:4f:a2:32:a9:26:d9:7f:18:6c:77:
45:19:a8:a5:d3:75:a7:54:f4:c9:7d:a1:5f:f3:b2:d9:ad:ea:
34:ce:6f:54:af:31:ee:b8:e0:bf:ba:46:59:31:f6:74:ac:00:
4d:59:31:60:77:a4:1b:9f:02:a8:b8:9a:f6:42:db:89:c0:b7:
6c:33:57:2d:f7:30:67:e0:56:bd:ca:cc:5c:69:26:b7:b8:15:
66:91:b6:b0:43:5d:96:8f:c0:27:4a:cd:49:6b:67:d6:f2:47:
e8:c0:1f:6f:63:50:f6:2c:95:4c:9d:74:3c:83:91:36:af:2f:
7c:1f:49:fc:bf:30:50:15:ca:bf:80:43:35:45:81:6d:4d:ef:
1b:f6:47:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org