Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4A2CDC6C136E11EFAB971344017001B1.roa
File: 4A2CDC6C136E11EFAB971344017001B1.roa (raw, json)
Hash identifier: Yvjer7KtxWxGzWdW3Ny93IhyKw3XTQbcNgpr6u6fzl8=
Subject key identifier: 97:69:4B:82:A4:EC:89:73:F6:C8:B8:32:C5:0A:D8:BA:56:68:EB:71
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0508
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4A2CDC6C136E11EFAB971344017001B1.roa
Signing time: Thu 16 May 2024 10:23:08 +0000
ROA not before: Thu 16 May 2024 10:23:05 +0000
ROA not after: Wed 16 Apr 2025 10:23:05 +0000
asID: 21859
IP address blocks: 102.177.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1288 (0x508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 16 10:23:05 2024 GMT
Not After : Apr 16 10:23:05 2025 GMT
Subject: CN=6645de8c-2928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:af:24:32:e3:8e:c7:c6:36:97:4a:50:02:ed:
0b:5a:24:3b:6b:a4:a6:69:40:b5:4a:d9:57:61:74:
10:53:df:82:e2:2b:c1:c8:50:0c:f1:4c:2f:d9:54:
9d:17:15:24:a6:56:51:b7:ed:d9:8e:b1:e7:0e:1e:
b8:c7:fd:24:38:22:a7:2c:c2:8e:2a:c6:84:13:69:
3a:87:2e:33:e8:71:33:eb:b5:45:17:cf:77:29:0f:
53:e1:79:52:7c:4c:4a:cd:aa:0a:62:91:15:d5:67:
ed:1d:49:2a:97:dd:96:59:1c:e1:c2:b5:50:66:95:
fe:b8:a5:57:da:28:c7:7e:7e:e7:74:71:34:22:29:
2c:5d:04:18:98:47:28:52:78:32:06:0b:9e:48:c7:
e2:f4:64:59:8e:7c:9f:cc:95:01:16:14:a8:dd:f6:
87:07:f9:16:ea:67:f7:35:a9:7c:e5:7a:0f:4c:71:
af:5b:bf:0c:13:0f:22:0b:5c:26:80:4a:38:12:fa:
93:99:c3:fb:fb:c2:0a:5b:03:59:e8:c6:ab:1a:30:
c3:6d:9a:bc:3c:c1:00:c5:ed:11:c4:72:0c:10:e4:
31:c0:74:47:0e:75:f3:87:b2:3e:87:94:8a:47:35:
38:be:11:ca:92:f3:ee:71:32:22:0c:db:d7:54:01:
26:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:69:4B:82:A4:EC:89:73:F6:C8:B8:32:C5:0A:D8:BA:56:68:EB:71
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/4A2CDC6C136E11EFAB971344017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.183.0/24
Signature Algorithm: sha256WithRSAEncryption
64:28:2f:87:f2:97:41:36:b5:45:e2:6c:dd:e9:0f:c0:99:4b:
9c:e2:87:85:1b:0c:3f:bf:ff:da:76:52:43:20:60:5e:25:1f:
f1:1b:d2:7c:98:17:66:7b:c3:26:52:e1:ff:8c:fb:7c:f4:d4:
08:59:fb:65:31:0a:8e:74:a3:41:9d:33:73:d9:7d:58:b1:79:
b2:a8:cc:03:98:d0:ec:67:e4:9a:16:40:49:c9:bf:d3:63:94:
1e:09:ce:16:e2:80:e4:d7:9f:6a:40:50:a6:54:1c:60:91:2f:
79:5e:1c:28:6c:fd:4a:a0:03:de:7d:c2:7b:b0:c0:7b:eb:1e:
f8:03:5a:98:a9:d3:47:1d:15:af:c6:f8:4c:70:a7:6f:04:ab:
79:78:c7:a5:36:5d:a5:34:84:5e:d8:9a:50:bb:0d:b1:f0:b9:
8f:f2:60:a4:22:eb:12:f5:24:e2:bb:84:74:22:ce:f6:90:f1:
00:9a:ff:3a:8c:e4:02:3e:b9:28:06:1f:bc:d2:c4:ff:1b:d2:
88:98:ed:00:f5:0d:d8:2b:02:24:0d:7b:06:a7:d9:4b:ef:0a:
ae:ce:24:01:01:35:5e:92:6c:32:6b:9d:63:8a:b6:c5:1b:10:
83:2d:52:14:ac:bb:7a:3e:07:15:60:98:33:ea:cc:f9:86:5d:
51:1e:35:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:17 2024 by rpki-client on console-fra.rpki-client.org