Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/93F6BF08D1D611EFA285465B762E951A.roa
File: 93F6BF08D1D611EFA285465B762E951A.roa (raw, json)
Hash identifier: tVKwje6T2o4eP3SDnHXNKWk8+gEDaKos+OkXYB9+jE0=
Subject key identifier: 8E:48:83:D8:86:10:2C:15:83:F0:DD:76:28:82:E5:58:95:01:CF:40
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 02C7
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/93F6BF08D1D611EFA285465B762E951A.roa
Signing time: Mon 13 Jan 2025 17:48:21 +0000
ROA not before: Mon 13 Jan 2025 17:48:17 +0000
ROA not after: Sat 13 Jan 2035 17:48:17 +0000
asID: 37105
IP address blocks: 41.73.52.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:37:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 711 (0x2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF
Validity
Not Before: Jan 13 17:48:17 2025 GMT
Not After : Jan 13 17:48:17 2035 GMT
Subject: CN=678551e5-69c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1d:25:a1:1f:3d:5e:3e:1d:b9:57:eb:79:5f:
65:fd:a2:f7:d6:d0:61:5f:54:dc:30:d8:9b:96:f0:
8b:0f:8d:e9:20:a7:c1:34:82:ab:39:09:12:d4:de:
b9:cc:07:41:9f:ca:66:9e:7c:53:01:4f:6a:e0:1e:
0c:a8:a7:6c:0e:f4:40:61:8e:58:e1:50:b3:c2:24:
e2:82:22:c7:42:33:ad:ce:07:c9:2d:43:f0:c6:25:
4c:1f:a9:67:c3:cd:0f:22:1a:c4:4a:1a:34:0b:ae:
0d:f2:ff:53:2c:2a:f4:cd:50:8b:89:6f:5b:9b:15:
ed:2c:0b:81:96:70:74:d6:a5:72:b2:53:b0:1b:93:
d9:fa:15:d8:89:de:87:dc:78:6d:ed:dc:3b:19:c5:
0a:f7:df:6e:26:8a:76:51:bd:7c:c8:9d:00:74:b3:
b5:b3:4d:17:8d:e4:80:4b:f7:4d:5b:fc:67:ca:cf:
f7:1f:3d:7c:7e:17:ba:24:5e:66:06:2c:c0:d8:79:
d6:b4:66:30:53:4a:fc:a8:c5:f6:c7:9a:95:29:d7:
71:1e:8d:53:26:6b:51:00:b9:1e:73:c7:11:32:74:
c0:3a:38:c7:21:e6:a0:66:84:ea:df:32:4a:16:fa:
5f:3f:1d:2f:ea:64:49:3c:b0:71:99:b5:53:e7:aa:
41:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:48:83:D8:86:10:2C:15:83:F0:DD:76:28:82:E5:58:95:01:CF:40
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/93F6BF08D1D611EFA285465B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.52.0/22
Signature Algorithm: sha256WithRSAEncryption
49:8b:50:3f:cb:9b:e2:d0:ad:26:2c:36:6f:20:7d:87:89:e0:
de:5f:16:a7:c4:9c:91:20:1f:24:71:93:41:50:80:97:68:89:
61:b8:78:b0:e2:40:9d:ca:3c:17:21:d1:1c:77:c6:ef:ff:df:
51:dd:eb:4c:f5:0b:f4:7c:d4:41:ea:86:8e:b4:09:77:81:8d:
d2:3e:54:4b:5d:cc:35:30:ee:84:87:32:5f:d3:f1:7f:16:ba:
f5:71:f0:00:32:20:f3:38:f7:e6:69:83:77:fb:fe:62:53:76:
7a:b1:89:d6:97:48:aa:fe:df:ab:29:c3:ab:ee:1e:ce:13:04:
24:2b:d5:7a:fc:bb:bd:70:96:a7:e6:ba:e5:c7:f5:1c:70:2d:
51:20:82:c5:16:72:87:dd:21:b2:d5:88:50:ee:7e:13:57:33:
c5:d1:00:4c:f9:01:6a:fa:a1:b9:ff:4e:8f:ab:22:b6:2a:2b:
4f:82:9f:1c:3f:92:63:0c:15:9d:38:26:b7:a8:bb:0b:08:db:
9a:31:76:cf:69:db:ff:f6:34:1c:e0:53:42:66:0b:6c:96:df:
df:fc:c1:76:c8:75:23:7f:44:f2:ad:df:99:f0:91:f9:91:7f:
09:fe:c1:9f:31:11:69:92:3f:eb:69:37:c5:1c:de:fa:09:d5:
7b:52:84:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:55 2025 by rpki-client