Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/68952C38BF2611EDA08F35AFF1222468.roa
File: 68952C38BF2611EDA08F35AFF1222468.roa (raw, json)
Hash identifier: jhrZSogwFVFQBwFKoM3JpT7RyoAqb8xjThs4queMKEU=
Subject key identifier: 16:45:50:A7:F3:C0:C8:BE:29:FC:56:79:2E:50:4D:EA:5C:08:F5:75
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 49
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/68952C38BF2611EDA08F35AFF1222468.roa
Signing time: Fri 10 Mar 2023 09:32:00 +0000
ROA not before: Fri 10 Mar 2023 09:31:57 +0000
ROA not after: Thu 24 Mar 2033 09:31:57 +0000
asID: 37182
IP address blocks: 41.93.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73 (0x49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:31:57 2023 GMT
Not After : Mar 24 09:31:57 2033 GMT
Subject: CN=640af910-5c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:51:01:82:a3:37:8c:e3:1d:63:3d:7b:54:
33:52:5c:80:5a:f8:14:46:f3:fe:57:a1:70:54:14:
61:41:45:e7:bb:f6:12:49:59:a4:5b:6e:b6:2b:0d:
75:83:3e:dc:74:30:d2:f3:cd:0b:fe:98:da:a1:37:
f5:ca:0c:6c:7e:c6:0c:99:10:61:55:cf:ed:55:15:
4a:a8:4b:53:43:e2:c7:0d:07:91:82:b2:bd:8b:6b:
94:94:27:c9:14:61:98:03:58:17:47:9f:c5:14:5d:
33:2b:75:8d:bb:68:74:bb:0a:25:c8:e6:2e:c2:8d:
a6:2a:7d:be:f9:19:c2:66:f3:1e:8c:d3:0b:9e:24:
96:85:2e:64:8e:31:ee:7d:4a:17:2b:4d:3c:53:f2:
93:60:8b:f4:e0:c5:af:b8:38:ca:41:4e:59:c8:cf:
28:f7:2a:46:18:60:4a:eb:cb:0e:00:e0:4f:11:e4:
10:62:a2:91:9e:6c:dc:7b:57:d8:45:77:ac:62:11:
67:4a:fd:1c:cd:01:94:2c:03:95:16:bb:9d:44:f0:
46:b2:07:d4:04:ca:5c:d1:7b:15:16:f7:5c:cc:08:
40:cb:6e:87:24:45:33:dd:ab:af:2c:23:cb:12:ad:
ae:7d:23:bf:67:e9:75:01:33:3a:03:78:9b:8a:fe:
57:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:45:50:A7:F3:C0:C8:BE:29:FC:56:79:2E:50:4D:EA:5C:08:F5:75
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/68952C38BF2611EDA08F35AFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a6:a2:d4:4e:b9:12:26:33:48:ee:11:1c:f6:ed:3b:a5:3d:
02:8d:a6:91:f5:12:2c:c0:34:8c:96:5d:78:a8:ff:f5:b8:5f:
95:98:fe:1f:13:c7:60:bb:32:52:1b:52:80:c7:bd:0b:cc:62:
e6:68:a6:c9:00:85:65:df:d8:14:9a:b6:32:db:91:3b:ad:4f:
e0:8c:24:11:85:99:7d:d3:cb:ed:be:94:d5:f4:21:dc:8c:16:
84:34:ed:6a:56:ee:ed:98:30:11:93:34:81:e0:61:33:63:8f:
7e:d1:7f:da:21:6b:bb:53:5b:24:9b:26:c4:75:c1:47:d7:41:
a1:a6:38:9c:55:2b:4e:9b:2b:98:71:f8:29:3f:3e:d8:fd:49:
b9:61:53:44:13:0e:39:eb:b0:dd:75:a7:d8:5a:d9:7e:e9:1b:
b0:12:0f:12:52:33:61:c4:27:6a:8c:30:44:39:83:d7:e2:4c:
28:36:b4:6f:8b:06:69:3b:13:33:c3:c0:d8:43:20:e0:71:1d:
79:92:5e:e7:0f:e2:21:ee:b7:4f:46:36:81:d0:a1:08:3c:e5:
af:ea:fd:8e:cd:c9:ab:15:56:23:f4:5c:09:a1:4d:9e:59:5e:
48:5b:fa:7a:a8:ae:37:f9:35:02:e8:aa:f8:4e:04:d9:6b:6b:
e6:b5:78:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 03:29:11 2024 by rpki-client on console-ams.rpki-client.org