Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C1F93F70E86611EEAF39E68F775412E6.roa
File: C1F93F70E86611EEAF39E68F775412E6.roa (raw, json)
Hash identifier: y3ujYCQBO9Rurr1oujGhTqmppp67K6Yl69ok1fuFZtQ=
Subject key identifier: 63:D4:CA:8F:26:BA:6F:79:AC:41:27:7F:35:BB:35:C9:6E:07:CF:15
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 100D
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C1F93F70E86611EEAF39E68F775412E6.roa
Signing time: Fri 22 Mar 2024 16:10:53 +0000
ROA not before: Fri 22 Mar 2024 16:10:50 +0000
ROA not after: Sun 22 Mar 2026 16:10:50 +0000
asID: 29802
IP address blocks: 102.165.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4109 (0x100d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 22 16:10:50 2024 GMT
Not After : Mar 22 16:10:50 2026 GMT
Subject: CN=65fdad8d-e926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ae:3f:7d:4c:77:32:22:fc:fa:cc:75:fc:0c:
1c:e2:18:59:0e:4e:0f:2f:aa:14:61:36:4f:95:7a:
0f:03:d0:3a:9c:96:ea:51:5f:56:15:3a:72:b0:e5:
cf:73:fb:90:0f:89:23:36:8a:09:48:90:ed:41:93:
52:7d:3e:ec:44:cd:6d:8c:bc:0f:76:62:dc:7a:b7:
03:49:71:99:08:5e:ef:8c:18:0f:13:88:f6:92:62:
11:f8:6c:a5:e9:b4:23:a7:40:36:71:d8:e2:10:39:
26:ae:c9:4b:cd:62:48:2d:68:23:e0:cc:31:2d:77:
67:79:c7:dc:a4:65:a2:6c:ac:68:71:a7:b7:56:af:
f6:f3:e6:85:0a:1d:98:e3:49:be:67:09:c3:e6:a5:
d3:e6:de:41:be:52:ef:36:5b:80:7d:08:13:83:a3:
67:e3:7f:69:3c:5e:64:33:4b:48:38:64:d4:31:7c:
c0:43:2c:8d:40:de:72:ec:6f:bf:61:85:b7:27:d8:
94:31:cf:84:a7:2a:26:12:9e:75:fa:72:0f:73:cc:
16:93:cb:9e:42:ec:a4:26:0c:b9:d3:9d:ab:bb:6d:
5e:10:78:99:74:1b:39:4f:af:37:4b:c5:f6:51:e3:
7a:91:23:ed:a7:fa:50:52:74:23:a6:d6:dd:26:44:
9b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D4:CA:8F:26:BA:6F:79:AC:41:27:7F:35:BB:35:C9:6E:07:CF:15
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C1F93F70E86611EEAF39E68F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.60.0/24
Signature Algorithm: sha256WithRSAEncryption
82:36:48:d4:f3:f0:87:75:00:f8:56:84:5d:86:e4:81:d3:a9:
fd:e1:fd:b9:c1:e4:47:61:7f:85:12:c1:f4:25:af:31:b2:ae:
df:6c:e2:65:e0:5d:0e:4f:44:6b:e7:d3:da:a6:57:97:83:93:
9b:58:8f:e5:df:97:c4:70:72:6b:17:a6:64:3c:71:20:78:5f:
20:b2:58:4b:02:20:2d:ce:26:67:8e:fb:b5:c6:89:65:c3:61:
17:21:8a:42:dc:6b:33:8c:76:e1:52:9a:75:73:a8:bf:2c:f0:
34:f0:09:42:05:cc:87:22:b2:3b:9b:6b:b3:77:50:56:8a:a6:
a6:ce:64:97:5c:28:16:eb:da:a2:5d:e9:54:08:90:00:85:a9:
13:48:ae:57:6c:f7:ac:a2:ea:66:fc:28:00:b3:70:f9:7a:f7:
dd:11:95:81:01:25:b9:bf:be:09:00:5d:43:4c:fa:13:2c:46:
26:b7:45:f1:42:aa:f6:c3:81:ec:ea:57:77:b3:0b:a6:34:55:
9c:78:76:87:40:46:5c:cc:32:e0:a3:46:77:89:63:cf:a2:fe:
9c:a3:6b:ea:c3:e7:21:56:3f:2e:02:6a:39:4a:5c:0f:b7:a0:
f9:a4:82:07:75:64:b5:b3:e6:81:76:ad:be:ef:fa:79:1f:b3:
0e:74:fc:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 02:03:10 2024 by rpki-client on console-fra.rpki-client.org