Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/B295FE0A03BA11EFA4CD3749017001B1.roa
File: B295FE0A03BA11EFA4CD3749017001B1.roa (raw, json)
Hash identifier: 0ThrAr6vm0bBEIQGeFKPBtwPlSPx+ZpJ9O+oSkRp4ng=
Subject key identifier: 51:F9:F8:49:0F:D6:62:F3:E1:6C:F8:D0:03:C5:EF:AC:6C:3B:9B:90
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0215
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/B295FE0A03BA11EFA4CD3749017001B1.roa
Signing time: Fri 26 Apr 2024 10:49:47 +0000
ROA not before: Fri 26 Apr 2024 10:49:43 +0000
ROA not after: Thu 30 Apr 2043 10:49:43 +0000
asID: 30988
IP address blocks: 41.73.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 533 (0x215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:49:43 2024 GMT
Not After : Apr 30 10:49:43 2043 GMT
Subject: CN=662b86cb-1cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:81:8b:9c:95:4b:3a:e4:97:34:bd:c6:dc:
1f:31:3a:44:ab:1f:90:16:c8:48:3d:8f:88:f8:e8:
09:63:ea:9f:27:a9:cb:f4:a2:8e:04:b0:52:94:26:
f8:2e:2b:3a:d2:72:5f:c9:0d:b1:8f:c7:aa:66:e9:
31:01:41:d4:c8:54:00:ad:54:14:86:c4:c4:7c:6a:
8e:2b:67:f9:2e:64:44:85:33:dd:c1:0f:38:ee:20:
aa:7d:f6:3b:3a:69:82:b3:d1:52:0d:bc:b2:1f:62:
02:1e:6a:95:50:36:ca:5b:96:46:00:79:f2:e6:7a:
46:49:99:72:9d:54:20:44:d9:5d:e4:e0:82:40:bb:
9b:d0:91:62:4b:1b:49:64:70:73:fc:aa:4e:8c:1e:
93:5a:63:b7:7a:03:49:3f:7b:29:ad:06:23:17:5a:
59:b1:13:49:82:7a:a7:78:e8:03:24:a1:b9:3d:52:
9e:11:58:88:b0:6f:9f:33:40:51:f4:53:ac:db:3c:
99:71:9f:c1:0f:a4:00:49:cc:93:a0:ca:9b:a8:f1:
d3:d9:e9:87:68:de:bd:c7:fb:3c:d0:f5:6b:d1:0e:
2d:84:11:05:77:16:29:8d:91:5c:f5:72:7d:20:b4:
1f:fc:01:57:fe:a4:e4:98:1e:89:3f:69:b4:cd:f7:
db:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:F8:49:0F:D6:62:F3:E1:6C:F8:D0:03:C5:EF:AC:6C:3B:9B:90
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/B295FE0A03BA11EFA4CD3749017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.157.0/24
Signature Algorithm: sha256WithRSAEncryption
46:37:2c:53:6d:62:0c:ee:81:4d:04:7f:c8:82:91:1a:95:42:
c1:32:de:f1:63:92:7d:61:5d:ed:90:15:67:91:04:fe:1f:2e:
a7:2a:1f:ae:4e:3b:a1:bc:2a:8b:cf:1a:95:df:23:0b:5f:4e:
6e:f1:9d:33:7b:f7:04:72:5c:a7:41:09:e2:94:e6:aa:51:f9:
dc:ee:f2:8c:7f:cc:bc:22:13:8e:54:5b:f9:12:f6:66:5c:28:
b1:99:91:e3:98:75:f3:da:b2:c1:e4:b8:a5:df:3a:02:a5:3f:
b2:cd:ad:3b:9b:0a:64:d3:93:06:49:09:05:85:10:83:85:55:
8a:24:6d:44:a1:94:33:66:3c:4c:53:4d:6b:15:9a:9a:1b:9b:
39:c4:99:3b:63:e7:67:99:ca:6d:e7:d4:36:48:c5:09:82:cd:
3b:85:03:4b:87:56:68:ac:85:a0:4c:1f:23:b3:8e:db:0e:30:
c1:23:cc:84:6d:6e:8c:34:f3:46:26:42:2f:90:a4:d8:b1:af:
cb:23:d9:10:da:06:3d:7b:f1:99:19:2d:2e:fe:fb:59:aa:e7:
ee:86:22:a8:fe:14:92:57:7c:d6:c6:6b:d7:29:e4:88:2d:32:
62:43:c2:ae:71:f5:90:05:29:56:f2:2d:83:bb:35:e9:51:d5:
5b:b7:b8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org