Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/20D18CF4EB9211EE95255F63775412E6.roa
File: 20D18CF4EB9211EE95255F63775412E6.roa (raw, json)
Hash identifier: MTPlo+PiwmrRcOKxEyfJltvnSMaJ5gTTvkQzrwDqOk4=
Subject key identifier: 81:11:8F:38:CC:B2:D4:9F:A1:6F:D1:9D:A8:1D:3F:5A:24:0B:DD:A4
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1026
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/20D18CF4EB9211EE95255F63775412E6.roa
Signing time: Tue 26 Mar 2024 16:58:54 +0000
ROA not before: Tue 26 Mar 2024 16:58:51 +0000
ROA not after: Sat 28 Mar 2026 16:58:51 +0000
asID: 29802
IP address blocks: 102.129.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4134 (0x1026)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 26 16:58:51 2024 GMT
Not After : Mar 28 16:58:51 2026 GMT
Subject: CN=6602fece-d90d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:84:0f:c5:9d:54:38:52:1c:5b:4f:e1:8d:ca:
1d:6a:af:bb:ce:80:8f:43:92:39:d0:ee:15:17:32:
f3:e8:2a:f2:83:dc:d3:0f:03:ac:fd:7d:55:b8:5d:
9e:83:67:72:c1:2f:b1:d5:14:d7:0a:8f:78:91:f0:
b9:ae:d9:95:b7:f3:70:22:00:b6:23:f2:71:54:27:
85:56:a6:f6:a9:a8:ca:6c:84:4a:08:38:d2:04:3c:
9f:b7:c8:15:21:e2:11:f9:6b:9e:1f:13:0d:63:e7:
92:19:68:84:75:bd:07:8e:66:6c:5a:0d:71:c8:63:
dd:29:8b:82:e6:75:85:f0:be:63:a4:17:06:1a:70:
f8:7f:b5:d2:3b:1c:84:39:26:fa:97:cf:c8:58:f5:
a7:97:8a:31:4b:37:29:10:6c:a1:b8:5f:54:82:eb:
33:44:33:f9:f0:8d:c5:b9:a2:c1:8d:41:51:41:61:
fc:6a:5d:d0:31:68:c7:29:88:a3:f9:91:a3:47:88:
1f:11:de:ad:cf:d6:27:82:e1:1f:2f:32:23:7f:46:
1f:e0:f9:0d:eb:f2:81:14:11:82:a3:95:03:b4:5a:
f3:85:b5:a6:3f:a1:e0:a1:c2:3e:7f:08:2f:3b:7e:
ab:28:72:7a:d6:af:af:a6:02:e2:71:14:37:2b:02:
be:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:11:8F:38:CC:B2:D4:9F:A1:6F:D1:9D:A8:1D:3F:5A:24:0B:DD:A4
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/20D18CF4EB9211EE95255F63775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.142.0/24
Signature Algorithm: sha256WithRSAEncryption
92:c4:fc:69:cf:10:1f:ca:c7:07:02:4b:1c:e7:0f:09:72:8a:
f9:6c:ea:60:df:14:d8:68:d5:1b:80:34:9a:b1:0e:7b:a8:94:
75:5c:fd:52:24:22:65:7f:db:0a:1e:fc:02:0d:ee:2d:37:3d:
fe:08:1e:01:e3:09:fb:4e:42:88:26:78:08:52:8a:7d:d9:7f:
ea:dd:38:ea:2a:b5:ed:8e:d1:88:13:9e:b2:47:04:2f:82:21:
6d:24:f9:7b:9b:3f:77:28:ed:ed:18:ac:1f:c4:ed:2d:d4:91:
61:5c:df:c5:1b:e6:10:ae:17:f1:8a:f1:f3:84:d6:53:b6:de:
99:d4:1a:36:e9:83:86:e6:ce:87:af:10:ed:4b:f4:e9:99:0b:
06:13:68:f1:23:72:0e:fc:ec:9f:c2:10:af:de:cc:e9:fe:95:
c4:21:df:f4:df:85:3d:01:c1:4f:fa:e3:54:b4:49:8a:25:c6:
3e:e3:e1:3f:70:ee:e3:40:c9:e9:0e:b5:68:de:28:fb:5c:e7:
86:d0:19:29:78:43:70:dd:eb:a7:de:74:e1:62:74:13:ef:f2:
df:da:42:ee:32:f8:fb:3d:ba:c2:62:66:f2:d5:b2:50:c5:86:
25:57:ad:52:ff:0a:dc:01:80:cc:4e:4f:05:90:2b:92:a6:24:
7c:03:d2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 02:03:10 2024 by rpki-client on console-fra.rpki-client.org