Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/948EB766BE9C11EEA876EEA6775412E6.roa
File: 948EB766BE9C11EEA876EEA6775412E6.roa (raw, json)
Hash identifier: nC8yYXnLMq8zCmiLa8fcLRhOJAWhlPxS9VmBsCGk1WM=
Subject key identifier: 8F:3D:C5:94:16:C2:FC:71:A1:21:DD:5A:F2:B5:6D:66:64:9C:6E:27
Certificate issuer: /CN=F36114AAAF/serialNumber=CD5232B63C6A832990C86707CB739BDC04DB9A59
Certificate serial: 0A
Authority key identifier: CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/948EB766BE9C11EEA876EEA6775412E6.roa
Signing time: Mon 29 Jan 2024 11:50:21 +0000
ROA not before: Mon 29 Jan 2024 11:50:18 +0000
ROA not after: Mon 26 Jan 2026 11:50:18 +0000
asID: 21003
IP address blocks: 102.68.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.mft
rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36114AAAF/serialNumber=CD5232B63C6A832990C86707CB739BDC04DB9A59
Validity
Not Before: Jan 29 11:50:18 2024 GMT
Not After : Jan 26 11:50:18 2026 GMT
Subject: CN=65b790fd-8b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:dc:d4:98:bf:29:93:9b:da:aa:48:35:0f:
5f:ad:07:be:92:c6:f3:a7:e7:45:d1:52:b9:7e:e0:
46:c5:79:16:ef:ce:43:cd:95:1a:16:4f:4a:10:97:
05:08:b3:40:cd:00:10:9e:37:c6:13:30:0b:3b:2f:
a9:21:4c:a5:f4:51:4d:02:c3:ca:ab:2a:d4:1a:ca:
75:df:5e:ca:98:dd:09:07:c9:9d:4e:99:00:39:37:
14:e3:22:46:ca:12:78:d0:94:ff:f2:6b:9d:45:95:
d2:df:32:5c:08:3d:ad:ff:18:07:8e:c8:ed:71:08:
80:88:d8:0f:2d:1d:11:d6:fd:d4:bb:de:e2:67:fa:
47:a1:da:68:68:ce:cd:ae:f0:0e:db:e6:1f:e8:a4:
be:50:85:33:f9:8c:a6:f6:ee:d6:57:e5:c5:06:42:
a7:1e:53:10:fd:f6:27:ba:55:a7:44:70:27:80:66:
fc:3a:30:d6:b9:9e:3c:42:3d:f2:8f:70:b4:dc:2c:
a5:b2:91:52:02:5b:20:54:01:1d:34:eb:0e:be:3e:
ac:df:b3:e3:e6:7f:07:3e:9c:ee:09:5f:03:d5:5f:
74:f2:ef:53:eb:8b:48:f3:b6:65:8c:20:b9:81:57:
a0:4d:c4:df:bd:0c:85:20:32:69:10:81:50:73:16:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3D:C5:94:16:C2:FC:71:A1:21:DD:5A:F2:B5:6D:66:64:9C:6E:27
X509v3 Authority Key Identifier:
keyid:CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/948EB766BE9C11EEA876EEA6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.132.0/24
Signature Algorithm: sha256WithRSAEncryption
92:95:f5:56:c3:59:bf:af:73:05:0b:ac:78:0e:dc:0a:10:19:
92:80:98:1b:a9:e8:31:8b:50:4b:8f:3a:ec:24:08:65:49:2c:
fa:f5:da:71:1c:14:ba:b8:8f:0b:5b:c7:66:a8:8b:09:ca:a6:
aa:11:55:58:55:7a:9e:6e:6b:ee:48:dc:76:55:f0:e0:a5:0f:
4b:4f:43:ce:8b:60:ff:9e:0d:f2:83:ca:cb:95:6e:c6:f4:d1:
d9:c2:11:a6:fd:80:ca:76:34:ff:14:92:b0:1e:65:00:4f:b1:
c4:8d:b6:6f:64:37:ee:bd:ea:96:ef:52:6c:f9:70:32:cb:1e:
57:e7:3a:8b:b0:ec:57:dd:c8:53:9c:f5:7a:cf:15:0a:9a:17:
77:bf:01:3d:f7:32:8d:76:12:a7:32:d1:47:15:27:62:61:57:
60:0d:f8:3f:08:b5:a0:6b:28:b1:f4:d4:03:6b:58:a9:54:79:
9d:ef:b9:1b:d3:e6:7f:d8:e1:df:31:a6:13:99:e4:20:cc:72:
62:ec:1a:25:32:69:8e:2e:1e:01:20:80:fc:4f:78:9c:ed:d1:
4e:07:d6:dc:6b:77:d7:71:4c:1e:50:10:13:29:88:91:3a:d2:
18:2f:67:80:85:cb:52:f1:90:ce:ed:a4:ba:57:6f:68:d3:3b:
ff:46:2c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org