Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F30D683A03B811EFB841B038017001B1.roa
File: F30D683A03B811EFB841B038017001B1.roa (raw, json)
Hash identifier: /fG66SOeJwlKhY/vnT1XmeFZ84fISRpkxoqX3tuqW1g=
Subject key identifier: FD:A8:64:67:57:4C:E7:03:5F:71:4F:10:44:C1:2E:C8:14:BB:19:61
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0201
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F30D683A03B811EFB841B038017001B1.roa
Signing time: Fri 26 Apr 2024 10:37:16 +0000
ROA not before: Fri 26 Apr 2024 10:37:12 +0000
ROA not after: Thu 30 Apr 2043 10:37:12 +0000
asID: 30988
IP address blocks: 41.73.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Apr 2025 03:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 513 (0x201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF, serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:37:12 2024 GMT
Not After : Apr 30 10:37:12 2043 GMT
Subject: CN=662b83dc-2ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c7:6d:6b:10:4f:d0:1c:04:d4:9f:79:fb:05:
5b:8e:a5:9d:17:50:09:40:7c:b1:09:48:bc:c7:f9:
06:8b:cf:02:f0:54:4d:44:3f:ef:b3:ec:07:e4:44:
7c:6c:f0:50:10:76:be:45:71:4c:bd:eb:d2:f4:56:
b4:a0:70:a1:86:02:62:54:14:df:bc:2a:df:d7:5a:
00:81:22:1f:55:4e:94:ad:db:9b:d2:8e:02:18:b9:
29:6f:38:d4:d0:8c:7e:f9:d2:7a:13:a1:2e:ee:3d:
06:9b:ff:f1:5b:1c:86:d1:4b:59:63:04:66:2e:4e:
d3:28:41:26:2c:d9:43:04:c1:16:b9:fc:af:21:bf:
a9:cc:83:3a:2b:78:69:f1:7d:41:5b:75:c8:a2:e8:
13:37:1f:83:11:38:29:ba:c9:89:d6:9f:c2:49:62:
6f:56:25:31:af:15:1a:9a:ff:8b:b4:a0:70:aa:49:
99:70:ed:38:b9:cc:19:39:4d:cb:2b:d8:b0:3c:b5:
9f:6f:31:83:0c:4d:de:63:85:5c:e2:26:82:53:4a:
54:f6:bb:dd:38:72:96:6b:e5:1a:85:2b:96:1f:4a:
77:62:cd:ab:cd:3a:be:0e:60:f6:30:57:3b:e1:47:
0d:1f:f3:e0:9a:ba:1c:5f:48:45:ca:da:d0:8b:50:
1a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A8:64:67:57:4C:E7:03:5F:71:4F:10:44:C1:2E:C8:14:BB:19:61
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/F30D683A03B811EFB841B038017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.147.0/24
Signature Algorithm: sha256WithRSAEncryption
73:61:39:54:d8:e2:d9:83:55:fd:d9:f4:17:27:b9:1c:a6:c1:
81:9e:36:a3:f4:d4:4f:00:97:6a:63:62:5e:cf:5d:8a:c7:86:
53:17:48:3d:cd:19:6c:a3:74:8f:ae:e3:59:2c:b3:ef:f4:34:
5e:f4:3e:be:a0:9d:57:5c:0b:8f:c4:5d:89:c0:36:13:02:4a:
75:05:2e:59:0c:80:29:5d:74:e2:f6:c8:f2:44:51:66:3f:9a:
0e:2d:9b:5f:2e:44:0d:36:7a:fc:c1:77:eb:63:4f:fc:58:5b:
63:79:8b:d0:ef:c1:bb:03:de:e4:c4:b7:13:fa:59:62:1a:e0:
6b:3c:a0:62:38:3e:51:d9:b2:7d:5a:a1:cf:20:d0:67:5b:2a:
9c:bf:58:d0:62:87:b6:27:9a:94:85:2c:a8:a3:74:f9:53:ef:
79:75:d7:79:91:43:c7:06:8e:90:3c:10:b9:d4:c8:f3:e9:43:
7b:7e:04:c8:b4:94:3b:b1:38:b2:ac:a9:73:06:60:56:0f:8a:
9a:ae:ea:dd:cf:3a:7e:8c:09:68:2f:87:5a:b3:de:5e:c4:3b:
82:65:14:b3:0b:a8:79:72:f3:70:a1:c0:ba:1d:7b:09:66:1b:
df:f9:e1:41:24:82:a3:66:73:05:c8:35:10:0f:b7:1e:ed:73:
5c:a2:b4:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:48:08 2025 by rpki-client