Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/666FD3D82EEA11EFBC63294B762E951A.roa
File: 666FD3D82EEA11EFBC63294B762E951A.roa (raw, json)
Hash identifier: MTXkIou//Guz3KRl/9YKtpj6n9ZVBkXEGaijhN0evTk=
Subject key identifier: 71:04:00:B6:7D:76:54:E1:BC:46:78:50:02:11:10:DE:75:A6:D4:45
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0495
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/666FD3D82EEA11EFBC63294B762E951A.roa
Signing time: Thu 20 Jun 2024 09:49:35 +0000
ROA not before: Thu 20 Jun 2024 09:49:31 +0000
ROA not after: Thu 20 Jun 2030 09:49:31 +0000
asID: 62390
IP address blocks: 102.216.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1173 (0x495)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Jun 20 09:49:31 2024 GMT
Not After : Jun 20 09:49:31 2030 GMT
Subject: CN=6673fb2f-09e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a0:5e:be:85:d9:63:ca:c2:ca:b4:f7:59:7d:
91:bd:f9:7d:48:d4:3e:d0:60:15:5d:dc:e5:93:bb:
cb:85:38:a0:2a:b5:0e:d7:ff:98:74:9b:eb:0b:f3:
04:ae:03:1c:16:ab:5b:0b:a2:8b:1b:87:d5:9b:a9:
39:42:c8:7b:4a:f5:70:3d:61:54:b0:55:00:41:19:
16:92:cc:a4:33:f8:26:22:c6:06:35:34:57:4c:23:
c3:a2:74:86:ac:75:e3:09:4d:c4:04:30:12:e6:2d:
fa:56:dc:cf:8b:90:a8:74:ec:b0:46:f4:59:2c:e0:
a9:f9:76:ab:d8:6b:b5:c9:28:ba:75:ed:da:90:52:
46:32:65:d9:bb:47:54:3b:c5:b1:dc:e5:5b:96:98:
d2:d2:c4:f0:20:14:d4:2a:60:26:c8:6f:b4:bc:8c:
77:30:be:5c:d4:63:55:14:00:91:71:8b:f9:a1:2f:
7f:bd:1c:d0:a9:fa:3a:aa:65:c3:f2:fb:a1:29:04:
eb:1b:b9:df:5e:6e:66:60:60:fe:d4:bb:c0:69:ee:
72:cf:78:b7:9c:cd:d4:ff:13:59:5a:e0:69:7f:b8:
b9:02:90:72:df:5c:9a:2e:fe:ee:6c:74:a4:86:d5:
3d:ff:f8:d6:ad:8f:73:61:19:9a:e9:e4:2b:d2:96:
d5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:04:00:B6:7D:76:54:E1:BC:46:78:50:02:11:10:DE:75:A6:D4:45
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/666FD3D82EEA11EFBC63294B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:67:86:24:2f:3b:5d:9e:ca:33:23:55:9a:47:5c:96:1c:48:
bd:fd:89:f1:5a:ba:ff:d6:da:35:28:f7:79:d6:2b:84:18:ac:
74:22:97:89:70:85:49:7e:ce:7d:a4:c7:14:19:7e:a6:d4:ec:
20:9e:00:26:9d:3e:1b:d4:0b:d9:4a:c3:b8:dc:09:d0:e3:06:
b8:b6:69:83:c2:2e:ca:57:26:a8:8e:a6:e6:e4:6a:f9:3d:8a:
62:56:9b:6b:83:40:3d:d3:00:17:fa:0a:cc:fa:1d:15:a4:dd:
cb:bd:df:f7:34:a5:c4:c7:f9:81:ec:da:0c:b9:a7:f2:95:05:
6b:f3:98:09:8b:ac:3a:26:6b:6a:9e:ac:ee:83:fa:97:32:2b:
49:c3:7c:8a:2f:c9:aa:81:d1:b4:ad:1c:57:e4:3f:7b:71:ca:
8d:5a:4f:b7:07:ee:65:90:61:37:21:ff:1f:26:6d:b7:aa:41:
ad:59:0f:62:54:12:2f:de:c1:17:6e:6e:44:f9:a3:fa:c7:59:
8d:60:ed:8e:f4:2e:79:d7:69:5b:8d:99:34:b7:76:24:0f:c6:
c9:3d:f7:97:81:4e:2b:b0:0e:d7:d6:c7:24:75:ca:33:58:21:
81:db:b8:96:95:9a:0b:a3:8a:da:a6:88:11:c8:c7:a4:a7:8d:
bd:ee:1d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:17 2024 by rpki-client on console-ams.rpki-client.org