Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/CF23848E03B511EF80994521017001B1.roa
File: CF23848E03B511EF80994521017001B1.roa (raw, json)
Hash identifier: aMLwz+ZKh6Oz4CoRMY0xHb1x7qr39vpl6gfnLqRS/qQ=
Subject key identifier: 7A:AA:E8:3A:3B:07:41:14:DF:AC:B4:96:51:ED:0D:C0:99:EF:A1:1C
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01E1
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/CF23848E03B511EF80994521017001B1.roa
Signing time: Fri 26 Apr 2024 10:14:47 +0000
ROA not before: Fri 26 Apr 2024 10:14:43 +0000
ROA not after: Thu 30 Apr 2043 10:14:43 +0000
asID: 30988
IP address blocks: 41.73.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:14:43 2024 GMT
Not After : Apr 30 10:14:43 2043 GMT
Subject: CN=662b7e97-2339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:99:af:84:b4:96:c1:00:6d:ba:e0:7d:e0:f6:
94:e2:5f:c9:34:56:84:44:e7:8f:3c:69:63:db:0a:
9f:d4:10:d1:19:b3:a6:11:f4:f4:30:ba:53:98:f7:
45:c8:97:93:7a:c8:f1:2d:2f:d5:90:85:7b:d1:16:
34:bf:97:c4:9f:22:09:a9:2f:77:6e:40:8d:89:cf:
9b:08:ce:a8:07:0a:5f:03:99:cd:16:9b:87:ad:9f:
01:dc:4c:93:40:3c:6c:6c:65:c9:2e:cb:49:a3:b2:
57:8c:b3:57:31:4f:87:5f:8c:e7:17:64:75:d5:91:
28:d2:04:6b:a6:88:f2:db:fd:db:c0:de:29:a0:2e:
7a:a8:22:28:93:26:92:4e:4a:13:3e:2a:14:d0:c7:
c6:1e:6f:30:42:c7:f1:cc:dd:5e:60:9c:cf:d9:9b:
01:9e:31:43:76:11:da:40:86:8c:0c:85:25:49:c1:
84:16:a1:0f:ef:87:ea:9f:35:de:a5:d6:0e:e2:5f:
81:1e:d2:63:16:9a:3c:fa:b8:7c:6a:4a:3e:83:e4:
ac:7b:46:4a:e7:5b:5b:a8:65:ac:c3:39:ee:77:69:
be:7a:65:12:1e:64:95:81:a3:01:4d:f4:33:d5:f3:
74:31:63:c6:63:ca:5a:c5:41:1a:a6:c7:d7:28:0d:
e8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AA:E8:3A:3B:07:41:14:DF:AC:B4:96:51:ED:0D:C0:99:EF:A1:1C
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/CF23848E03B511EF80994521017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.131.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d9:f2:50:8c:55:e3:ec:cc:ef:07:67:1f:0b:d9:c9:27:fb:
8b:96:54:64:14:87:0d:a2:1f:72:06:27:1a:ea:af:af:5e:10:
93:71:aa:42:07:93:47:b0:e3:5e:e4:b9:1e:49:5b:fb:4e:83:
f2:18:41:f3:85:7d:e4:2e:e0:60:12:73:78:2a:b1:46:58:f1:
63:17:fc:15:5f:f0:d9:62:7f:70:86:aa:bc:b6:fa:69:31:a6:
25:b3:7b:fe:a0:dd:e8:a1:ce:6b:35:32:b5:94:7d:9f:a7:12:
a0:3a:ff:af:d6:db:be:0f:b9:00:e3:76:fc:0f:9f:39:0b:c3:
ee:c1:c5:eb:8f:65:bd:0d:69:91:a6:d6:6d:f3:3c:7a:ef:1e:
8f:a2:1a:9b:5a:1b:03:7f:66:31:19:bf:81:97:9d:70:d1:63:
e0:c0:aa:40:c4:74:47:c7:61:ab:78:2e:22:68:66:af:ec:b7:
98:79:80:6d:e6:33:fa:7f:90:94:52:58:6c:e5:24:09:e8:46:
97:65:35:94:d6:fb:f1:c6:8e:3b:7a:57:10:52:15:60:70:9d:
0d:e8:76:c6:4e:55:3b:c5:a0:e9:71:e8:e6:62:8d:71:b3:ef:
cb:bb:d6:79:fe:05:1b:a0:ed:b5:e9:bb:33:9d:41:93:32:98:
ac:0f:73:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:23 2024 by rpki-client on console-ams.rpki-client.org