Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/9058590C03B811EFB2BC6037017001B1.roa
File: 9058590C03B811EFB2BC6037017001B1.roa (raw, json)
Hash identifier: KbTrV9/1QdeVyGjJXMf67sHpdC5TxLAEU7d3+fl+nbE=
Subject key identifier: 22:CA:E3:93:04:4C:E1:F8:8E:B4:63:E7:AF:68:9F:7F:89:48:3E:97
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01FD
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/9058590C03B811EFB2BC6037017001B1.roa
Signing time: Fri 26 Apr 2024 10:34:30 +0000
ROA not before: Fri 26 Apr 2024 10:34:27 +0000
ROA not after: Thu 30 Apr 2043 10:34:27 +0000
asID: 30988
IP address blocks: 41.73.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 509 (0x1fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:34:27 2024 GMT
Not After : Apr 30 10:34:27 2043 GMT
Subject: CN=662b8336-a70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3c:cc:d1:d4:1e:ad:cb:46:b7:65:cd:d7:b7:
2f:dc:96:93:02:e7:23:ac:e9:a3:73:9f:eb:77:08:
94:61:2f:98:be:18:65:4a:2f:e4:a2:ba:45:c7:a6:
0d:31:59:b8:79:d2:a4:46:fc:75:43:5f:29:e4:a6:
81:54:64:8f:4d:f5:40:1e:f1:d2:91:9d:de:23:94:
fa:13:c1:f6:7d:fe:39:68:89:7f:21:4f:e9:56:a9:
4a:af:c4:9d:fe:21:79:20:1c:f4:fb:46:c1:1b:73:
b4:2c:39:9a:38:20:bc:5f:9b:34:d2:3c:dd:76:84:
83:50:a5:35:07:62:df:d9:84:33:db:92:d9:7d:25:
f5:a3:d7:e1:3b:b8:39:e7:0c:41:ae:90:01:e2:cb:
65:75:9b:49:2e:d6:2e:b5:f1:58:e1:b9:e0:af:ee:
50:81:d1:80:2b:9b:fb:96:06:4b:f8:c0:35:d2:c2:
a6:8d:66:e6:44:c4:99:c9:c1:a2:73:f7:d8:bb:7e:
fe:e8:6e:53:3a:02:2a:99:12:7b:30:af:7b:cd:e0:
11:af:3f:20:89:d1:a8:24:8a:8b:2c:50:2b:85:13:
b8:14:b3:10:1a:b9:c0:93:f9:5c:19:26:aa:0d:6f:
c1:af:ba:a7:c5:d9:24:8f:e2:57:5e:cd:94:72:7f:
ef:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CA:E3:93:04:4C:E1:F8:8E:B4:63:E7:AF:68:9F:7F:89:48:3E:97
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/9058590C03B811EFB2BC6037017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.145.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:c6:44:c1:55:26:e7:87:90:45:d0:7c:fd:ce:3a:de:f7:69:
6c:2a:50:24:52:44:1b:34:7c:03:57:e2:7d:33:4e:96:0f:8b:
6a:47:41:ba:f3:55:d5:a5:de:3a:a3:f8:6c:f6:3e:bb:49:68:
dd:db:17:27:41:ae:c7:03:c7:2d:09:c7:12:9a:6c:a5:af:18:
99:e6:ca:0e:82:96:8d:e3:6f:ec:1a:21:d6:d3:06:b9:81:0c:
30:25:84:ba:02:d8:b4:2f:7f:3e:49:7c:06:de:ec:ee:c6:2e:
57:5f:ea:3e:d0:70:ca:d9:9e:df:c0:dc:13:5a:57:74:d3:5a:
3c:b4:3c:78:84:c5:94:2f:6a:21:11:ea:85:00:5c:db:0a:77:
62:be:78:64:de:e9:d5:c3:8e:e1:e7:2e:10:cc:e7:d1:9b:3e:
2a:03:d4:c6:7b:8a:56:c6:66:fa:7d:ec:51:98:ab:b9:72:15:
6f:01:11:92:21:db:c1:1f:0e:69:da:bf:67:b5:39:78:c3:e9:
ec:fe:48:63:79:bb:5e:6c:af:ed:65:ca:a0:8b:29:ec:e3:21:
ef:de:73:8f:49:2f:11:e0:4f:ff:2d:c1:46:19:61:97:3b:f9:
38:ab:d7:7c:c3:a8:67:55:65:0a:e3:db:95:ae:3c:3f:98:cf:
96:a4:61:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org