Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/2908C1DCB9E511EEB9065888775412E6.roa
File: 2908C1DCB9E511EEB9065888775412E6.roa (raw, json)
Hash identifier: zUZ7frdCVvRhVt6G1jP6YXP6H0Tz6Q6HJTbMKr0ueno=
Subject key identifier: 9C:E2:19:F4:A7:E5:06:B5:A4:E1:14:96:1E:09:38:12:60:33:90:88
Certificate issuer: /CN=F3611484AF/serialNumber=923BF961AD8353983450D3A33F28CCCFE0A8A106
Certificate serial: 04
Authority key identifier: 92:3B:F9:61:AD:83:53:98:34:50:D3:A3:3F:28:CC:CF:E0:A8:A1:06
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/kjv5Ya2DU5g0UNOjPyjMz-CooQY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/2908C1DCB9E511EEB9065888775412E6.roa
Signing time: Tue 23 Jan 2024 11:47:18 +0000
ROA not before: Tue 23 Jan 2024 11:47:15 +0000
ROA not after: Thu 31 Jan 2030 11:47:15 +0000
asID: 13335
IP address blocks: 102.219.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/kjv5Ya2DU5g0UNOjPyjMz-CooQY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/kjv5Ya2DU5g0UNOjPyjMz-CooQY.mft
rsync://rpki.afrinic.net/repository/afrinic/kjv5Ya2DU5g0UNOjPyjMz-CooQY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 13 May 2024 00:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3611484AF/serialNumber=923BF961AD8353983450D3A33F28CCCFE0A8A106
Validity
Not Before: Jan 23 11:47:15 2024 GMT
Not After : Jan 31 11:47:15 2030 GMT
Subject: CN=65afa746-9b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:af:d0:ca:b5:c5:5c:d6:8f:11:05:1d:98:e3:
b7:8c:f6:6c:32:fe:fa:a7:5d:53:fc:60:d8:6e:62:
dd:eb:b6:7b:5a:35:de:ce:c3:28:1d:43:52:88:05:
db:78:9a:22:78:92:fd:0f:93:88:a9:5c:b8:cb:b5:
7e:81:6f:d4:bd:0b:e8:be:e4:1d:32:f8:24:ba:eb:
dc:79:f7:8a:db:1b:63:48:35:f0:ca:a1:72:43:12:
f0:48:9f:6a:75:31:be:e6:31:16:1c:e2:26:03:0b:
06:22:51:5f:c6:06:1c:a4:31:5f:d1:88:a8:dc:c0:
cc:5f:d2:83:09:da:c9:26:4f:94:94:01:b6:56:85:
61:4c:5a:e4:c9:b0:51:c4:9a:e3:5b:6f:30:89:f2:
f3:7a:53:9c:fe:75:3e:ad:0f:08:85:b2:bf:95:c6:
4d:31:bb:3e:ae:01:1f:70:56:b1:39:c7:d4:57:bf:
d2:dc:4b:d2:20:62:be:15:7b:be:cb:f2:bc:98:3c:
0a:57:e2:2e:00:3c:1a:31:17:c0:82:dd:8a:cc:cf:
d8:2a:bf:b6:e1:70:c4:76:11:5d:66:a5:2d:34:44:
64:3f:8c:68:53:f1:9a:31:5f:c6:15:6a:1c:65:13:
fd:d7:fa:fa:bc:77:fe:db:06:e3:d2:03:0a:49:c0:
a2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E2:19:F4:A7:E5:06:B5:A4:E1:14:96:1E:09:38:12:60:33:90:88
X509v3 Authority Key Identifier:
keyid:92:3B:F9:61:AD:83:53:98:34:50:D3:A3:3F:28:CC:CF:E0:A8:A1:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/kjv5Ya2DU5g0UNOjPyjMz-CooQY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/kjv5Ya2DU5g0UNOjPyjMz-CooQY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3611484/E61E0996B9E311EE89052986775412E6/2908C1DCB9E511EEB9065888775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ce:5c:f5:49:5f:59:60:5c:c1:ef:f9:de:8c:7b:89:c8:7e:
f3:9d:24:f5:23:76:36:3b:46:4f:0b:35:7b:89:8c:5a:42:fe:
26:38:44:22:c6:3c:f2:7f:0b:38:a2:76:25:ba:ff:bd:dd:a5:
67:17:28:74:48:a3:0c:18:5c:18:85:11:80:06:48:76:7a:1e:
14:fe:21:2b:b0:2f:48:43:54:ca:7b:5a:82:80:5d:e6:3c:6e:
24:17:56:f9:8c:6f:b8:c4:2e:9e:23:2f:39:ee:15:8a:dc:f8:
d0:cc:ec:65:7c:97:70:17:db:dd:13:37:2b:8e:fe:b4:73:fa:
9d:03:1a:0f:29:08:5a:4c:ad:df:c7:8e:03:51:12:2f:6d:0f:
74:a5:0f:15:25:24:11:d9:36:2f:de:af:22:d3:28:cf:a1:6b:
87:e8:3c:9f:db:da:51:49:82:8d:4b:42:9c:39:69:2f:9f:81:
4c:e1:86:ba:ed:34:f8:22:53:4f:fc:f0:46:71:fc:d0:b4:9d:
d0:3a:f9:46:95:e9:dd:e0:5e:50:fe:8d:5e:62:33:53:85:8b:
bc:e4:8b:20:d7:54:e4:ba:c6:63:f0:02:66:b6:2d:18:d3:d8:
5b:31:3a:c1:58:6b:26:c5:9d:da:3a:c9:c0:52:47:8a:05:8b:
15:b3:14:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 03:57:00 2024 by rpki-client on console-fra.rpki-client.org