Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/E432C49203B611EFBEEC1128017001B1.roa
File: E432C49203B611EFBEEC1128017001B1.roa (raw, json)
Hash identifier: eCtOJ1D+HQduSTMxCfcTJUfC/lccpBhF5JE1AQ+kubk=
Subject key identifier: 72:67:66:88:0B:36:36:97:2D:E6:0D:6C:02:9E:15:0E:EF:DB:2B:9C
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01E9
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/E432C49203B611EFBEEC1128017001B1.roa
Signing time: Fri 26 Apr 2024 10:22:32 +0000
ROA not before: Fri 26 Apr 2024 10:22:28 +0000
ROA not after: Thu 30 Apr 2043 10:22:28 +0000
asID: 30988
IP address blocks: 41.73.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489 (0x1e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:22:28 2024 GMT
Not After : Apr 30 10:22:28 2043 GMT
Subject: CN=662b8068-36ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:41:70:11:6e:d6:ed:57:e5:a9:3c:40:49:
a9:9c:58:0c:81:11:62:b0:35:b0:65:33:7a:c8:e1:
46:bd:35:70:36:be:40:cb:7c:31:a5:e7:1f:81:19:
ce:4a:68:e6:4e:33:92:49:28:51:e8:e7:d2:a2:99:
bb:50:0c:d8:cb:d2:02:cf:cb:8f:37:6a:b2:5c:19:
69:cb:a8:e6:9f:d5:07:c1:63:d8:a0:90:67:5e:da:
a9:a5:5a:b3:74:8b:ac:df:aa:54:16:2a:6c:22:a1:
7d:13:db:d5:a8:15:ed:71:f4:85:c6:6c:6e:e4:65:
be:3e:3b:53:81:08:9e:de:d3:5b:55:a7:e7:71:ad:
23:33:10:85:dd:5c:cb:33:1e:5d:ff:b3:81:36:c6:
01:e0:d6:a8:ca:a1:14:45:da:49:7e:75:7c:03:c4:
8a:f1:7d:8f:b5:91:d4:1e:6f:ef:08:77:8c:79:f6:
6a:d7:d1:d9:55:78:c8:f5:c4:d8:2e:37:2f:fb:62:
63:68:47:1e:08:fd:66:79:67:2f:03:83:18:c3:c4:
0c:ff:4d:c1:e9:a3:a6:78:0a:ef:32:4f:bb:db:be:
21:b3:a6:7a:7f:c1:b3:8b:6e:59:27:e6:84:c9:2a:
27:1c:1b:a1:08:ad:f7:13:c4:28:73:66:63:a6:cb:
19:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:67:66:88:0B:36:36:97:2D:E6:0D:6C:02:9E:15:0E:EF:DB:2B:9C
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/E432C49203B611EFBEEC1128017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.135.0/24
Signature Algorithm: sha256WithRSAEncryption
73:7e:7c:19:7a:5e:3b:74:9e:d2:2b:61:03:ce:0e:44:e1:20:
48:a1:3a:f7:d6:f1:b4:11:1e:18:a4:02:a8:01:bd:4e:b7:13:
08:77:3d:ca:b8:77:36:80:c0:ea:d9:3c:f7:60:79:f9:86:e1:
21:52:dc:bf:4b:e0:3f:7e:28:a3:1c:4a:02:77:c1:8e:77:52:
de:d2:9a:8c:97:86:27:fc:a8:29:c3:c8:7f:e7:54:a2:c8:d1:
8c:04:40:97:30:f6:2d:1f:26:92:1b:2f:ac:b5:96:b1:be:3a:
18:ee:03:7a:ca:fd:6d:59:1b:32:16:e9:75:1f:ec:de:43:00:
2b:35:2e:55:35:7a:86:51:9c:45:e3:12:c4:3a:b9:8b:55:fc:
0d:5b:ce:df:3b:ad:0c:15:dc:6a:2a:3a:d9:14:fa:5e:aa:28:
be:b2:17:46:9a:ab:ec:54:68:20:15:54:ce:5f:9e:c0:fa:a2:
40:0e:f2:05:ce:ae:21:5e:30:db:e1:84:4a:ff:b0:83:3d:c2:
e9:6d:b4:26:59:17:16:1f:46:42:5d:b7:b7:c9:17:5e:af:65:
4d:78:76:2b:20:b2:45:85:99:ac:73:80:86:92:78:59:88:91:
19:14:e9:aa:76:60:5d:11:38:3c:ff:56:81:d7:9d:07:96:80:
35:ff:df:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org