Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/D95C7F0803B711EFA940CD31017001B1.roa
File: D95C7F0803B711EFA940CD31017001B1.roa (raw, json)
Hash identifier: YRvxTaW01N4ChieFj2ifQBeOMmeruhjQJDufE0+oCvU=
Subject key identifier: B3:45:35:17:86:23:65:5C:22:3C:93:74:79:9C:98:97:BA:33:85:07
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01F5
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/D95C7F0803B711EFA940CD31017001B1.roa
Signing time: Fri 26 Apr 2024 10:29:23 +0000
ROA not before: Fri 26 Apr 2024 10:29:20 +0000
ROA not after: Thu 30 Apr 2043 10:29:20 +0000
asID: 30988
IP address blocks: 41.73.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 501 (0x1f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:29:20 2024 GMT
Not After : Apr 30 10:29:20 2043 GMT
Subject: CN=662b8203-c5a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b8:e4:53:72:ae:de:bf:19:fc:67:7f:86:71:
65:74:51:e3:32:91:18:7d:ad:a9:5c:60:05:90:a3:
a9:f1:db:9a:3e:79:4e:dd:68:d9:58:26:46:1a:05:
90:87:d3:f1:8e:5f:c3:30:d6:f2:40:19:32:d6:53:
8f:bb:21:70:7f:35:c0:17:63:3a:5c:ba:1a:55:25:
6a:26:4e:03:a5:3c:a5:41:a2:a9:e2:f4:e7:9f:15:
94:64:aa:74:93:3a:a8:2a:e9:8a:26:f1:28:51:2a:
1c:d2:1d:cf:c4:3e:d5:d1:85:e7:4a:84:36:ea:07:
0c:76:50:26:a1:41:1f:5b:6a:b1:53:73:39:b6:2f:
a5:52:23:04:43:87:70:91:73:2f:c2:1c:63:25:7f:
96:13:67:04:ab:56:69:61:21:d0:bf:ab:3d:04:ca:
04:80:c4:de:b6:1c:30:95:45:2e:ed:59:b7:ae:d2:
a0:58:0c:af:5b:99:11:83:53:fd:7c:9a:9f:8b:52:
a4:4b:22:12:21:a5:51:f3:81:1a:a8:ed:d5:b2:9e:
be:e9:6c:25:14:6f:02:78:e9:e3:70:6a:b8:f4:8c:
22:1f:ec:4c:e1:c2:71:bb:b1:91:e0:ee:99:7c:76:
fc:33:2c:2b:30:d4:2d:bb:dd:cd:a6:b1:5b:99:60:
af:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:45:35:17:86:23:65:5C:22:3C:93:74:79:9C:98:97:BA:33:85:07
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/D95C7F0803B711EFA940CD31017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.141.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:6c:05:d3:c1:f3:d4:5a:3e:4d:4f:7e:5e:28:1c:7a:64:7d:
92:4c:1a:98:c0:6f:da:d9:48:20:4a:d5:1e:67:8f:a8:b6:79:
b0:ad:20:43:8c:03:3f:57:cb:4b:8a:37:0a:5f:f9:13:9e:39:
9f:99:56:40:51:a5:0c:58:b8:d5:1c:d8:a5:76:37:a5:1b:4a:
38:6b:d9:0c:3d:a6:b7:36:7d:0a:14:dd:3b:95:74:b9:8f:6b:
4d:6f:e5:88:ad:74:f2:f9:cd:7b:98:56:09:d8:be:a3:26:3c:
26:2f:36:d3:ca:cc:fc:ea:b9:82:05:98:44:83:9b:4d:e9:36:
55:77:50:48:11:8d:3e:30:34:3f:a6:e2:22:51:b9:2c:b2:39:
7f:72:ab:81:20:bf:59:0e:cd:72:83:33:0f:be:6e:14:70:88:
92:54:ee:78:4a:97:0b:ae:53:23:44:e7:59:d6:e0:8f:3e:5f:
f4:74:ce:4c:f8:17:ac:1d:ac:49:0f:b4:c2:6f:51:b4:04:43:
05:a3:b5:4f:b5:d4:68:6c:23:4a:fa:96:21:c4:10:d1:1c:16:
28:e8:1c:60:3c:74:fc:92:9a:d5:5d:b1:c7:47:d7:8c:09:00:
04:ad:c0:78:99:21:8b:8b:88:77:30:b9:0c:ed:4f:93:58:fb:
16:5e:44:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org