Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7C256E3603B611EFAF25C126017001B1.roa
File: 7C256E3603B611EFAF25C126017001B1.roa (raw, json)
Hash identifier: HvW2XolqN7iVLLfu4e4/42VqmnpjFO4MOEZUl8OZjX4=
Subject key identifier: 57:CA:80:16:C6:E3:92:58:CD:4A:27:34:C6:AC:1C:86:C0:14:7F:0D
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01E5
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7C256E3603B611EFAF25C126017001B1.roa
Signing time: Fri 26 Apr 2024 10:19:38 +0000
ROA not before: Fri 26 Apr 2024 10:19:34 +0000
ROA not after: Thu 30 Apr 2043 10:19:34 +0000
asID: 30988
IP address blocks: 41.73.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF
Validity
Not Before: Apr 26 10:19:34 2024 GMT
Not After : Apr 30 10:19:34 2043 GMT
Subject: CN=662b7fba-7528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ca:17:1d:56:78:65:a1:bc:d9:cd:83:86:cf:
29:04:e4:89:f1:c1:9c:b9:e4:fd:c8:a8:cd:93:69:
fb:9c:a8:b5:7b:af:02:86:d4:e1:8d:26:2b:74:0c:
a0:f6:65:20:dc:02:05:09:e7:4c:36:fc:ef:c5:1b:
5a:14:0e:d1:57:6d:74:01:1a:9b:69:cc:f1:1f:e0:
4a:80:f3:ca:e5:35:21:33:2a:30:e1:92:d8:b6:49:
9b:79:08:d8:35:e1:ae:6d:14:03:2e:87:47:41:e7:
34:90:08:c7:45:2a:77:95:cb:bd:ba:b3:e6:38:ef:
9c:dc:75:ec:ca:d7:be:6a:ec:01:4e:20:70:14:1e:
0a:9e:15:f4:bd:d4:bd:85:91:9f:af:9a:f9:53:8d:
04:bd:b8:bc:55:19:06:fe:a7:17:49:9d:0d:76:d9:
8d:be:42:1e:d6:db:20:4d:92:3a:a4:d7:45:e8:c2:
9b:be:a0:18:e3:b2:3c:aa:4c:8c:4a:11:f6:80:66:
fd:81:d1:4e:7e:d9:35:24:84:67:f6:d7:65:c7:14:
d6:a5:af:79:81:c1:ba:67:f4:1f:5b:68:25:c1:c3:
96:d8:f6:db:4e:b8:0b:c0:86:52:eb:2f:34:d9:7f:
45:b7:02:89:c5:c9:ce:ca:e2:fa:d2:e6:79:61:86:
8b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CA:80:16:C6:E3:92:58:CD:4A:27:34:C6:AC:1C:86:C0:14:7F:0D
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7C256E3603B611EFAF25C126017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.133.0/24
Signature Algorithm: sha256WithRSAEncryption
78:9e:d0:03:15:8c:b6:2b:6c:24:b7:47:17:e4:b0:98:df:3b:
8e:6d:6c:ca:59:42:6c:b8:45:87:7e:29:10:dd:ea:60:44:1f:
b8:95:f6:ac:78:1a:52:32:33:bc:85:76:e7:67:0b:f0:bb:c8:
95:cc:24:5a:45:96:66:48:fb:24:e8:c7:28:49:88:2b:ef:df:
e9:fc:d9:23:cb:73:bf:45:01:09:5d:82:e9:bc:cc:f3:3d:26:
50:4f:72:9f:c4:77:69:10:f1:19:52:9a:0e:89:f7:37:29:3a:
54:05:39:9a:5f:7c:15:6b:48:6f:72:bc:de:3d:c3:16:5d:c1:
8d:b5:95:92:82:70:85:e9:a5:00:fe:5b:00:17:61:ff:ad:9b:
5f:ff:61:07:85:92:70:64:58:cc:c1:16:a1:f5:cf:b3:b5:55:
4e:15:71:69:c6:8b:fd:6f:05:1c:24:e5:b1:dd:3d:f8:7b:8a:
06:5e:d3:b6:a3:22:94:7e:74:44:52:a6:02:ab:12:d4:32:96:
24:ab:08:cf:ff:64:a0:3f:44:ca:90:93:e2:06:0a:4b:07:d8:
63:6b:91:7a:bd:7c:97:07:db:ee:94:5f:bc:e7:47:c6:8b:1b:
61:b7:9f:1a:59:45:64:2f:85:f1:64:c4:57:89:1b:61:a8:58:
d2:73:48:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:36:15 2025 by rpki-client