Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/75F752A6BF2211ED939193A2F1222468.roa
File: 75F752A6BF2211ED939193A2F1222468.roa (raw, json)
Hash identifier: w22CZ4ulB5a2fvkSZND6xf6zWtIbB2KQ7L3Pa4saqGc=
Subject key identifier: 97:8A:55:45:C0:37:A8:C3:49:A0:25:22:02:2A:CC:EF:98:E8:08:FA
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 35
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/75F752A6BF2211ED939193A2F1222468.roa
Signing time: Fri 10 Mar 2023 09:03:45 +0000
ROA not before: Fri 10 Mar 2023 09:03:41 +0000
ROA not after: Thu 10 Mar 2033 09:03:41 +0000
asID: 37182
IP address blocks: 41.93.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.mft
rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53 (0x35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 10 09:03:41 2023 GMT
Not After : Mar 10 09:03:41 2033 GMT
Subject: CN=640af271-8724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3e:0b:44:0f:34:80:9d:d8:bc:56:0a:e8:c1:
11:e2:0e:4d:3e:06:e8:ea:a5:7b:4a:51:e5:ea:51:
fe:19:1c:90:9b:43:5f:83:9c:60:65:ea:66:74:12:
35:55:ec:54:ae:09:26:8a:e2:5a:26:69:33:71:9e:
da:bb:4a:da:da:6f:0e:83:df:dc:fb:78:e5:40:a1:
8f:51:7a:ec:81:fa:ea:1a:40:a6:79:22:56:f3:20:
60:8e:db:f2:21:65:8d:b0:87:22:12:dd:1b:fa:5e:
83:ba:59:c0:9e:e7:71:de:9e:39:65:56:5d:62:a4:
9f:44:51:c7:da:1f:11:eb:2d:9b:34:58:9a:0e:ca:
0d:28:d2:cb:88:e2:a9:b7:10:7e:8b:e4:be:94:4a:
4e:4b:44:5a:9e:f5:79:ea:2b:2d:40:6e:9a:57:c3:
dc:01:99:89:d1:43:0d:7f:ae:28:c2:9c:75:11:ab:
2e:61:58:98:56:3b:94:09:7a:04:e7:f4:fb:74:37:
dd:12:18:15:c1:6c:a8:a4:c3:f9:b2:e3:04:c3:c8:
6b:d6:1a:d4:d2:48:56:bb:f7:15:7f:b8:ec:e6:e4:
6c:f9:13:6c:c2:94:eb:54:46:64:26:f3:5d:72:11:
ea:38:5b:98:74:f8:5e:5d:3a:af:5b:0c:c8:ee:14:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8A:55:45:C0:37:A8:C3:49:A0:25:22:02:2A:CC:EF:98:E8:08:FA
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/75F752A6BF2211ED939193A2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.80.0/24
Signature Algorithm: sha256WithRSAEncryption
02:73:24:9a:21:a0:b3:19:b0:a0:59:a3:1d:ae:4d:60:44:4b:
08:e5:83:fb:dd:2a:8b:6d:84:77:c2:d0:d7:68:f2:2e:88:ee:
5d:32:58:14:e7:2b:ae:54:ba:52:48:1f:8b:45:83:97:6b:91:
8b:f1:73:3c:c8:de:70:39:2d:82:ad:6c:bc:aa:bf:e1:2f:c6:
0a:b8:5d:2f:e4:83:f0:44:92:f7:4f:09:ce:52:7f:c8:7f:a9:
1a:eb:ce:3a:47:e9:7e:52:a3:10:e3:cd:37:05:cc:d0:ea:f1:
56:6e:2d:92:ed:4d:5e:34:14:fb:b8:55:59:90:aa:71:cb:3b:
5b:1a:07:de:18:64:59:56:0f:6e:4b:ef:4c:fb:40:76:c4:32:
b8:47:82:32:8e:2c:bf:59:da:f1:de:58:2d:b3:a3:80:1a:d7:
b7:87:aa:f5:1e:9a:b9:e7:ec:b4:e2:0b:6c:55:97:fa:6a:f1:
13:9c:1e:a7:7c:4b:10:ed:b8:bd:11:f3:4a:34:0e:17:74:62:
3a:6f:07:e4:f3:3f:fc:91:d4:e3:a3:d4:35:9a:33:78:d9:da:
86:a1:62:7c:3e:f0:1f:d6:33:8c:74:ab:dd:a6:76:8a:c3:3e:
5a:c2:f3:e0:fa:65:8c:5b:e4:fd:d3:66:96:aa:5a:c7:9e:0b:
e2:93:88:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 03:29:11 2024 by rpki-client on console-ams.rpki-client.org