Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/3D55B2F0C43211EF8166C3BD762E951A.roa
File: 3D55B2F0C43211EF8166C3BD762E951A.roa (raw, json)
Hash identifier: Af+fAJ8B4YCQU1OF1pDiIpmVk8a59qwsOLlr9TGYlBo=
Subject key identifier: 0B:50:BD:89:93:48:66:B8:49:AA:2E:9A:F3:1A:AA:50:FA:8B:36:9A
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 05B2
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/3D55B2F0C43211EF8166C3BD762E951A.roa
Signing time: Fri 27 Dec 2024 09:09:13 +0000
ROA not before: Fri 27 Dec 2024 09:09:09 +0000
ROA not after: Fri 27 Dec 2030 09:09:09 +0000
asID: 213738
IP address blocks: 102.216.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1458 (0x5b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF
Validity
Not Before: Dec 27 09:09:09 2024 GMT
Not After : Dec 27 09:09:09 2030 GMT
Subject: CN=676e6eb9-5c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d2:f3:97:f2:8c:f9:cf:aa:3c:dc:3d:0c:07:
dc:3e:89:42:3a:1b:c4:5d:fd:97:fa:11:c3:22:5a:
39:c6:19:a3:2d:d1:78:48:60:f5:46:2c:59:13:3e:
71:8a:25:bd:4f:e6:7e:4f:60:63:13:6c:e3:4a:06:
4f:c6:56:63:e9:01:04:75:ae:86:ae:07:b0:f6:09:
03:2c:54:55:e6:54:13:3b:4f:7a:fd:5c:65:c7:22:
a1:5d:6f:21:f5:83:85:ad:8c:51:6f:7f:58:92:5f:
87:e7:48:9b:d8:1f:4b:30:50:5e:aa:13:52:78:41:
98:f6:f7:1a:53:8d:54:87:bd:5b:6c:72:14:89:97:
86:ec:0a:6f:9b:e5:bc:0d:9b:dd:6c:52:7c:3e:8b:
03:33:01:85:e3:e7:f7:fb:77:19:6d:3d:fd:e7:71:
73:03:75:be:86:3a:a6:e0:a4:05:9f:e5:44:87:90:
e7:89:5a:3b:4d:e7:70:5e:93:76:30:56:e5:db:5e:
b3:a1:cc:11:45:78:fe:c6:1b:85:2b:7b:e6:1f:c5:
30:dd:1a:1b:90:f3:9d:71:85:19:9a:d4:d2:47:09:
bd:be:4d:78:8f:e5:09:27:97:69:a8:4e:57:a5:e6:
2c:b8:3c:31:b7:50:b0:5d:2b:d3:cc:22:c9:7a:2d:
54:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:50:BD:89:93:48:66:B8:49:AA:2E:9A:F3:1A:AA:50:FA:8B:36:9A
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/3D55B2F0C43211EF8166C3BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.82.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c2:5b:55:ab:20:ce:86:07:95:59:40:30:e7:01:f1:2d:ff:
5b:3e:6c:8f:af:c2:2a:53:22:8e:a2:bc:19:39:c8:34:69:6f:
ee:f8:c4:57:ed:15:9c:e5:d0:16:b4:07:26:89:ba:33:63:e8:
e6:33:eb:1b:14:61:09:7f:fa:5c:94:18:aa:a5:2c:c2:f1:ec:
d0:93:7d:ca:49:83:ad:92:c2:85:8a:92:10:cb:a0:b0:67:b7:
71:b2:be:54:4a:55:c8:39:54:cb:61:80:8e:1a:09:88:4e:dd:
31:53:bb:70:cc:37:d5:63:58:50:68:ea:23:34:20:c4:ff:29:
4e:23:d2:3a:08:a1:36:b4:37:35:54:12:62:34:e6:96:4e:2e:
64:ab:62:75:bd:4e:2f:01:f5:c2:ef:d2:7b:a6:8b:e3:89:24:
ab:10:0e:0c:ff:4c:1c:73:f0:97:58:7e:04:c3:f8:3c:03:26:
ac:5e:e8:de:d9:3c:25:50:3e:50:32:68:77:0a:6e:d3:d4:3f:
1c:0d:4e:f6:9e:2e:f3:3c:38:bc:ec:20:8c:25:19:ff:05:5f:
88:ef:cf:17:75:ac:5f:d1:8f:12:92:6d:ba:c3:c7:15:f6:f6:
ab:45:ae:35:ca:95:a9:8b:47:08:3c:6b:1c:78:09:84:69:7d:
20:bc:41:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:42:14 2025 by rpki-client