Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ADFDD638EB9111EE8994F05E775412E6.roa
File: ADFDD638EB9111EE8994F05E775412E6.roa (raw, json)
Hash identifier: HgUtVZGF2zVnHpTvtsIBoHMyW/9Q6TvkzQCyA1j4k3k=
Subject key identifier: A6:CA:70:B5:49:86:CD:68:66:75:C4:EC:8A:C4:C3:AD:E3:2A:FE:57
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1020
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ADFDD638EB9111EE8994F05E775412E6.roa
Signing time: Tue 26 Mar 2024 16:55:42 +0000
ROA not before: Tue 26 Mar 2024 16:55:38 +0000
ROA not after: Sat 28 Mar 2026 16:55:38 +0000
asID: 29802
IP address blocks: 102.165.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4128 (0x1020)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 26 16:55:38 2024 GMT
Not After : Mar 28 16:55:38 2026 GMT
Subject: CN=6602fe0e-43c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:f8:37:ea:9b:8b:4a:86:02:c2:bf:4c:4f:
d4:77:cb:1a:d6:17:fe:13:25:78:f1:81:d9:33:c9:
ef:3b:5a:a1:8c:41:29:4b:20:8f:b9:a7:65:c5:6f:
d9:c9:77:5f:6e:5d:35:f6:57:83:73:f8:43:e2:69:
83:bb:4d:b4:84:70:b2:bf:82:b2:ad:02:1a:47:f6:
f0:e7:88:39:06:c6:67:0c:4b:d3:fc:6e:7d:41:a9:
e4:e0:52:97:c0:c0:de:90:c7:99:f3:e8:b6:b1:ed:
2a:88:00:b2:6c:d9:ef:7f:59:7d:d7:9f:10:73:dd:
3a:3a:e8:1d:92:f1:55:23:ea:1f:cd:59:5d:15:1d:
c5:54:18:22:2f:97:af:ea:67:60:4b:52:4b:4f:5f:
a3:70:7f:f2:77:4c:92:0e:a6:1f:21:d2:a3:82:9a:
dd:6d:d3:8a:d1:ed:c2:02:82:d6:3b:29:92:60:60:
0a:2b:5f:01:cf:41:39:f9:19:77:e1:42:b6:82:4d:
cf:0b:51:35:71:48:b6:10:b0:78:12:c0:72:e3:e2:
0d:dd:5e:84:b3:88:bd:51:a4:74:cf:34:b0:15:b8:
d8:96:2f:e5:be:49:0e:bd:2d:e5:81:1f:fa:86:b0:
1e:96:0d:e2:5c:f2:5f:9c:5f:8f:e8:8d:b5:7f:b2:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CA:70:B5:49:86:CD:68:66:75:C4:EC:8A:C4:C3:AD:E3:2A:FE:57
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ADFDD638EB9111EE8994F05E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.38.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e8:60:cd:f8:bb:79:07:1a:c2:17:40:3d:18:13:78:24:b2:
e1:44:c8:e3:f3:53:a9:1e:88:be:d0:05:e8:f0:f6:09:8a:d2:
4f:f5:6d:d2:ce:eb:cd:02:36:a0:87:3f:22:50:21:f6:f7:1d:
98:a7:2a:a6:2d:04:6c:24:e4:06:0c:94:3a:d7:33:a9:0a:ed:
cf:64:8e:05:ff:eb:9f:8c:6e:be:9f:0f:13:e5:a2:27:49:7f:
b2:8b:ca:8f:15:92:98:f6:e9:90:ba:2d:e3:09:fd:c7:9b:2c:
5f:75:62:c5:b8:99:87:c5:a2:34:6f:06:3b:1c:56:40:fe:35:
03:89:d3:ce:d3:46:e0:e8:3f:39:b8:71:57:a0:4b:9a:3e:61:
1e:d3:31:de:a1:31:81:a7:80:68:36:d7:0c:45:bd:05:e1:b3:
40:a3:55:9d:99:e8:2c:3e:e1:8b:bd:8f:69:34:2b:49:17:73:
db:56:d2:1c:ff:1c:df:28:f9:ea:d3:78:a3:0b:10:9c:df:2c:
db:5b:c1:1c:35:68:42:c0:02:ef:e2:e7:6a:23:6d:23:99:57:
6c:30:95:50:1e:c3:2d:6e:5c:b2:11:f5:d0:df:b4:da:07:b9:
03:a4:e0:91:b1:0b:a9:05:dc:9a:95:2a:b9:4d:56:1b:dc:ab:
34:ec:c1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 02:03:10 2024 by rpki-client on console-fra.rpki-client.org