Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AA2D3B38D0AD11EEB3B4C271775412E6.roa
File: AA2D3B38D0AD11EEB3B4C271775412E6.roa (raw, json)
Hash identifier: v8Ga1e2I/t1AHQv97YgEaj+Ha5729uBXMYsB+soddPk=
Subject key identifier: 65:99:04:A5:38:A4:7D:5F:FF:9E:17:A1:3E:ED:9F:38:AA:95:33:8E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F6D
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AA2D3B38D0AD11EEB3B4C271775412E6.roa
Signing time: Wed 21 Feb 2024 11:38:00 +0000
ROA not before: Wed 21 Feb 2024 11:37:56 +0000
ROA not after: Sat 21 Feb 2026 11:37:56 +0000
asID: 61317
IP address blocks: 102.165.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3949 (0xf6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 21 11:37:56 2024 GMT
Not After : Feb 21 11:37:56 2026 GMT
Subject: CN=65d5e098-b3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:af:5b:08:cf:0d:1f:c1:1c:9d:1a:1f:86:88:
d4:f5:4e:a7:6e:e9:8b:34:4e:eb:c6:3e:f7:49:ed:
b6:4d:e5:13:82:45:5b:81:e0:56:e8:1e:0c:62:cf:
33:fa:e5:d5:1a:53:27:a6:ae:97:f3:d9:75:52:f6:
75:14:9a:eb:fd:87:43:91:ba:aa:db:14:92:38:b4:
e4:ee:74:ed:95:56:95:59:40:b3:1d:fd:91:28:c6:
21:75:9f:2b:a5:50:0e:36:95:e7:54:04:cf:30:c9:
fb:d1:e2:a0:3c:5e:04:72:97:fb:b5:71:3e:97:91:
17:82:f5:a0:c4:1a:99:79:50:5f:1e:a1:a1:78:91:
02:74:fd:39:6d:8d:b5:f8:52:49:a2:36:4c:2a:be:
43:34:ea:47:a0:20:94:12:02:ff:d4:89:09:97:6b:
74:45:75:18:d8:d8:0b:a2:d7:8b:4d:75:38:91:ac:
e3:c6:e2:f1:94:63:07:10:4d:2a:86:2d:87:ed:b2:
61:f6:1b:d3:9a:4e:07:7b:e5:71:fd:ee:4a:ce:ec:
c0:1a:83:4d:a1:87:e6:f7:88:41:39:53:fd:53:25:
d0:21:7c:1b:e5:d1:ac:67:dd:9f:b3:26:19:25:11:
db:b2:ab:8e:2f:5d:dc:36:a8:7b:19:06:b6:5e:eb:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:99:04:A5:38:A4:7D:5F:FF:9E:17:A1:3E:ED:9F:38:AA:95:33:8E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AA2D3B38D0AD11EEB3B4C271775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.41.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:89:4a:e5:bc:a9:fa:1b:a9:27:09:fc:0f:b6:8f:02:f4:9c:
6c:76:a6:2b:00:c3:a5:48:aa:47:61:62:bd:8e:17:9d:41:c7:
c7:7e:1a:91:68:d3:13:3c:58:b7:fa:7c:7e:54:ce:3e:bb:cc:
b1:d0:69:f2:83:6c:4e:cb:c6:fa:b8:cd:d9:c7:a0:ad:65:60:
47:d5:28:16:db:1e:09:85:dc:2d:20:2f:32:05:46:0c:b1:19:
e8:32:fd:ae:16:b0:a7:21:3f:6f:04:24:52:c7:78:9f:f3:2f:
24:e1:8c:9e:f7:0c:6d:3e:19:82:7a:10:15:28:2d:81:f6:b7:
f5:df:f4:7e:8c:4e:5c:6a:3a:38:ce:ba:04:b1:39:b8:51:13:
20:38:8d:df:52:14:68:65:51:98:26:13:bf:a9:14:30:45:00:
fd:43:93:01:c0:93:ab:a7:94:11:ea:82:78:58:02:31:cf:d7:
c4:86:f4:8d:bd:c2:9c:ad:5e:42:c3:33:95:1a:b4:db:a3:61:
31:73:87:a9:51:c9:d1:42:f3:d1:dc:fe:d1:ff:50:07:f4:40:
e1:90:05:47:c9:88:31:7f:3e:26:29:12:d7:ef:59:ea:f2:32:
fd:71:4d:77:64:03:25:62:6c:84:80:24:ff:5d:47:47:84:e3:
1e:fd:12:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:58 2024 by rpki-client on console-fra.rpki-client.org