Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/488D3EB060B211EF87A97782762E951A.roa
File: 488D3EB060B211EF87A97782762E951A.roa (raw, json)
Hash identifier: MVYbN3+gCL8uNH5R81Zu9Ge2lQxWhVsfh/rM4ZRyn/w=
Subject key identifier: E2:B2:0F:60:88:1A:C7:EE:5E:89:DD:D2:80:17:C7:B3:A0:F6:98:8A
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 04F8
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/488D3EB060B211EF87A97782762E951A.roa
Signing time: Thu 22 Aug 2024 18:13:51 +0000
ROA not before: Thu 22 Aug 2024 18:13:47 +0000
ROA not after: Thu 22 Aug 2030 18:13:47 +0000
asID: 214795
IP address blocks: 102.215.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1272 (0x4f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Aug 22 18:13:47 2024 GMT
Not After : Aug 22 18:13:47 2030 GMT
Subject: CN=66c77fdf-d433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:9e:73:4b:b7:2c:b3:37:b0:3e:03:6f:dd:
17:2f:5d:b2:6d:10:cc:4c:4e:4d:57:d6:fa:71:8e:
49:7d:4b:a8:8a:22:f4:0f:47:38:03:03:c3:9a:4e:
08:fb:10:fc:d6:31:1f:85:a0:3c:fe:78:48:7c:f8:
ed:60:a6:a9:6a:ec:61:30:ad:90:44:f8:c4:c4:ef:
77:1e:c2:10:fc:cf:3b:8e:99:bc:f1:8c:03:3b:ed:
6b:ae:ea:20:49:de:0c:b1:41:79:fe:72:1e:7e:e6:
de:8a:a2:02:9b:38:eb:df:bd:24:60:73:bd:12:6d:
40:ad:86:51:e3:0b:42:88:7b:14:ec:47:b9:f2:16:
5d:33:ec:44:d7:3f:0e:28:80:79:f4:50:19:50:fe:
b2:f1:53:e8:85:6c:79:18:8b:f9:47:05:55:8a:3d:
fd:df:6b:37:65:a8:7c:29:ea:27:1d:67:ff:3c:53:
11:f6:ff:bc:ce:83:8b:73:1e:eb:ed:2f:70:67:52:
f1:fa:51:4c:5d:ac:4d:74:3a:c2:8a:7a:81:36:90:
b7:9d:77:10:99:ad:2b:8d:b2:eb:f9:a8:8b:d8:b2:
b7:50:40:f0:7a:e3:23:e8:c2:72:05:80:8e:67:1f:
55:f1:a8:22:69:a0:38:04:c5:69:3e:ad:af:98:25:
c2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B2:0F:60:88:1A:C7:EE:5E:89:DD:D2:80:17:C7:B3:A0:F6:98:8A
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/488D3EB060B211EF87A97782762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.226.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ac:6c:10:f0:ee:91:bd:41:ef:8a:53:b1:aa:84:db:16:1c:
f2:48:c8:b8:da:e2:4c:9a:26:f7:8c:71:ed:de:e0:a6:cf:c9:
e4:00:ce:2f:3b:4e:53:29:92:49:8d:b6:d1:b7:d4:d7:8a:f0:
55:3c:12:20:19:5b:d7:6f:be:e1:66:ff:62:e5:2b:66:70:fc:
a1:6a:40:30:d7:bf:65:48:b0:e5:dd:71:82:e4:85:48:eb:aa:
21:0a:91:a5:0c:3a:ae:09:fc:9e:45:51:5b:c2:ad:b3:a7:47:
7e:15:49:41:db:27:cc:b7:47:76:ac:3a:bc:c2:09:87:a1:04:
70:31:1a:3f:d6:d9:00:e6:88:56:57:ca:df:b7:e2:de:61:c9:
df:15:c5:ff:ab:b1:0a:be:ff:7d:7e:c6:66:27:19:07:f8:0e:
7f:0b:67:20:ca:79:ef:ae:a7:c2:1f:15:72:1b:7e:5a:ce:94:
83:cf:3f:f0:54:a7:ec:99:c5:c5:54:47:4d:0e:94:a1:97:0e:
d7:35:05:59:50:f9:c7:62:6d:49:65:93:80:8c:1f:3e:9d:70:
93:e5:cb:66:be:58:ef:0c:45:ba:8d:c7:df:11:d2:9a:70:2b:
75:9e:61:7f:d7:fd:fb:f9:9f:b8:4d:fc:73:00:fb:94:7c:96:
79:b7:8d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org