Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/BF97846C03B911EFB079EA41017001B1.roa
File: BF97846C03B911EFB079EA41017001B1.roa (raw, json)
Hash identifier: wNII1uoSvScpdOlwHz4BDM1DBqJs/03DHX7oHGkZtJk=
Subject key identifier: DF:B0:E1:20:AD:15:26:68:CE:DA:E7:07:02:E3:54:1A:A7:D1:D4:C3
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 020B
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/BF97846C03B911EFB079EA41017001B1.roa
Signing time: Fri 26 Apr 2024 10:42:59 +0000
ROA not before: Fri 26 Apr 2024 10:42:56 +0000
ROA not after: Thu 30 Apr 2043 10:42:56 +0000
asID: 30988
IP address blocks: 41.73.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523 (0x20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:42:56 2024 GMT
Not After : Apr 30 10:42:56 2043 GMT
Subject: CN=662b8533-a547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:53:a9:c6:5c:20:8c:6e:99:89:92:30:1d:0f:
ef:d6:fe:ff:21:41:9e:23:28:eb:cf:41:df:bf:29:
e0:57:70:ce:25:28:42:a1:75:61:5e:7a:27:3c:7c:
eb:7c:0c:04:8d:a2:1a:fc:52:06:37:95:76:ec:e3:
8d:f7:5f:27:3c:0c:6d:97:e8:32:47:17:36:39:82:
bf:14:b9:26:ec:9d:4e:29:bc:26:3f:e1:b5:0e:71:
6c:6e:39:d2:42:f2:1f:be:4f:91:85:05:39:9e:89:
d1:6b:3d:ef:bc:05:76:66:cc:f4:38:01:2b:2e:9a:
17:66:5a:be:e8:6a:a5:64:54:99:f3:d6:d4:03:9b:
ae:fd:e8:04:5c:d7:6b:b3:f1:92:e2:0d:c5:a4:46:
dc:f9:a1:7b:ee:6c:93:a6:d2:f3:90:52:0c:13:bf:
76:b7:5d:9a:59:a4:79:e7:f7:3a:d9:c2:23:e3:58:
bb:40:cd:64:03:37:c6:59:ce:67:1d:bb:6c:e6:46:
67:3c:b1:2f:e1:2e:91:4b:87:28:cd:46:12:67:ea:
8f:f3:f9:1b:f3:7f:3e:80:e4:1b:97:f1:b8:aa:e7:
98:15:81:e4:00:9b:14:dd:cb:40:1a:78:86:7a:5c:
c8:a2:d5:e2:b7:31:ed:da:88:e4:12:94:15:b2:fe:
60:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B0:E1:20:AD:15:26:68:CE:DA:E7:07:02:E3:54:1A:A7:D1:D4:C3
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/BF97846C03B911EFB079EA41017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.152.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2e:f9:07:df:9a:16:20:0f:83:1c:12:89:a3:f7:0b:87:b7:
53:d0:4a:57:f9:f2:04:d6:7e:c3:86:5d:c5:52:bf:51:6d:97:
1c:22:9f:c2:b5:70:60:f3:ac:a7:29:b8:15:c5:b1:3a:8a:8a:
a6:1c:c5:5d:61:d2:8a:ff:bd:6b:67:ba:fe:a1:31:74:2e:85:
e9:af:9e:f8:d9:62:0c:b7:0c:bb:75:ce:23:f1:af:57:08:57:
30:9e:df:40:2c:0c:d2:cb:40:df:5f:2a:9c:11:c7:bb:d6:c3:
d0:18:b1:1b:45:a1:9b:ee:a5:aa:d0:ca:04:79:87:6a:f6:e7:
9d:f5:26:ac:5e:17:13:63:0e:80:b4:fe:be:8a:f3:80:b3:de:
c7:6c:0a:de:7f:22:45:34:86:8f:a2:e8:02:0e:34:bf:1c:e0:
4f:a7:2c:d3:b2:fb:4f:86:1c:a7:fc:79:9c:71:9c:cd:f9:61:
ba:e0:f5:2f:e2:0c:c2:56:8d:1d:00:5d:7e:8f:1a:3e:8c:df:
06:cb:11:e5:43:91:8a:82:4c:27:8a:6e:fc:1c:3f:c1:e6:d9:
3a:43:4a:16:06:1a:1d:80:b9:d5:9a:8f:e1:bf:b9:97:b3:d8:
4c:27:b2:ae:13:9d:b3:be:e6:08:8a:bf:00:bd:04:08:24:0f:
69:a3:b7:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:23 2024 by rpki-client on console-ams.rpki-client.org