Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/852C2986E78F11EEAB47957D775412E6.roa
File: 852C2986E78F11EEAB47957D775412E6.roa (raw, json)
Hash identifier: Q+d+KlJuOwQdqaReBh3Xd91nZxydlmPwCi1VpBz2Tvc=
Subject key identifier: 2B:22:B6:DC:FC:C0:46:45:21:3B:5A:0C:23:D5:64:68:A3:43:34:87
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0FF1
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/852C2986E78F11EEAB47957D775412E6.roa
Signing time: Thu 21 Mar 2024 14:30:10 +0000
ROA not before: Thu 21 Mar 2024 14:30:06 +0000
ROA not after: Sat 21 Mar 2026 14:30:06 +0000
asID: 29802
IP address blocks: 102.129.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 02 May 2024 00:55:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4081 (0xff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 21 14:30:06 2024 GMT
Not After : Mar 21 14:30:06 2026 GMT
Subject: CN=65fc4472-e4b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:41:d9:64:48:43:e8:34:cf:64:eb:a7:2a:ca:
23:b5:7c:45:1f:e0:dd:d1:5b:6b:c3:59:ff:7f:c8:
6e:44:4e:0c:00:89:85:54:fb:9a:01:5f:f3:c4:57:
2c:2f:0c:87:ea:5a:c8:f2:98:0e:04:c9:50:ff:fd:
a5:d2:f3:cc:fe:ce:eb:50:39:14:f5:96:1a:2a:3e:
bb:e4:1e:eb:ea:1f:0d:9d:69:47:46:4a:c6:27:3b:
73:4b:b3:78:62:b2:de:11:4b:78:23:91:dc:01:94:
50:05:eb:3b:f2:32:57:89:8f:95:c0:16:80:e2:68:
2b:1a:5d:50:a6:27:7d:d9:ad:fd:9d:ab:ba:27:67:
b4:70:eb:90:a4:a8:2b:97:f9:fc:e0:58:ae:02:fb:
c3:c3:2f:ab:d9:e7:ee:d9:64:5e:66:46:58:26:be:
2d:a2:fa:c1:0d:8e:a3:83:fe:91:3d:5d:7f:10:4c:
44:2e:32:55:d9:05:38:1c:16:98:2d:49:dc:38:90:
d4:66:bc:b3:8d:94:c7:aa:49:78:83:4d:9d:21:f2:
1a:42:2c:59:ec:ff:ac:61:2e:dd:5c:76:16:ba:89:
4c:c7:08:ff:91:6f:dd:0e:63:f9:77:13:5f:bf:b9:
83:11:fd:d9:c4:f5:c4:4c:05:4e:09:57:b8:12:21:
6c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:22:B6:DC:FC:C0:46:45:21:3B:5A:0C:23:D5:64:68:A3:43:34:87
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/852C2986E78F11EEAB47957D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e0:d3:17:64:bc:36:57:42:2c:30:de:ac:23:fe:19:49:b7:
4e:4c:f5:d1:78:c4:5e:3f:02:00:12:c6:5c:e4:a4:45:8d:64:
50:af:0c:32:7a:62:59:5e:37:5e:c8:7d:41:49:7e:85:e3:00:
d7:77:f6:7d:a6:79:05:bf:10:2a:6d:7c:0a:9a:95:49:06:45:
e4:56:09:10:ba:a2:77:f3:ed:f7:56:83:77:c7:52:10:0b:36:
d7:26:dc:67:47:ac:62:3d:cf:dc:99:bf:f8:af:0d:a6:b8:a0:
94:42:b4:70:8f:51:f9:d2:d4:13:f0:ae:0b:3c:df:ce:52:da:
69:19:1d:d3:e6:4f:b6:da:84:f7:ea:80:05:62:fc:8c:e0:40:
13:f4:30:88:9f:b4:5c:12:36:2b:e3:27:e4:de:14:d6:b8:bb:
ab:16:9c:ff:2e:2c:be:5b:cc:5c:7b:6d:7f:26:62:bf:0c:f9:
73:e9:17:bc:6f:c7:ff:3e:c3:30:b7:97:a1:1e:5b:50:fa:10:
4d:dc:cf:60:35:2d:a8:6a:c3:ca:92:f5:1a:a8:4a:64:e3:81:
25:bf:6e:7a:36:e2:80:1a:3d:9f:32:00:31:02:09:26:c4:c9:
8b:f4:4d:d4:e7:b5:7d:33:b4:dc:62:e2:9a:bf:d6:aa:5d:11:
d0:f6:0a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 19:20:30 2024 by rpki-client on console-ams.rpki-client.org