Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/6C7ACBF26E0A11EFAC0C4258762E951A.roa
File: 6C7ACBF26E0A11EFAC0C4258762E951A.roa (raw, json)
Hash identifier: 4grD6nGcP4ytHOjXft0LrvgGLuVL2rG269xNQf6k+eI=
Subject key identifier: 7A:1E:43:A5:36:F5:A5:BE:D5:5D:FA:29:C5:9E:0F:75:48:9A:07:E4
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0513
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/6C7ACBF26E0A11EFAC0C4258762E951A.roa
Signing time: Sun 08 Sep 2024 17:47:32 +0000
ROA not before: Sun 08 Sep 2024 17:47:29 +0000
ROA not after: Sun 15 Sep 2030 17:47:29 +0000
asID: 214879
IP address blocks: 102.216.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1299 (0x513)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Sep 8 17:47:29 2024 GMT
Not After : Sep 15 17:47:29 2030 GMT
Subject: CN=66dde334-ab0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e4:f7:49:31:1f:0f:3a:ef:49:95:cc:83:4b:
6b:03:17:9c:fc:25:23:91:bb:43:f3:c7:a7:4e:da:
bc:26:cb:50:3e:57:88:03:83:f5:62:ea:7f:c7:f4:
59:c1:3d:2f:8b:55:86:6b:dc:b3:d8:67:c4:8b:aa:
fa:c0:5e:73:80:68:c5:49:e0:a2:65:a4:76:b6:2f:
cc:43:6a:6f:dd:27:af:5e:a2:38:a9:90:5d:c0:83:
37:55:5c:f3:3d:bb:b5:d7:90:be:82:fd:22:45:bc:
6a:fa:09:6a:32:33:f4:3e:9c:bd:d3:27:53:b6:bc:
6d:67:5b:f6:5c:ec:4f:40:26:9c:ae:d0:34:39:23:
74:f3:be:ce:ae:b5:10:41:40:3a:6a:12:a2:bd:a9:
24:62:29:7a:05:01:ab:4a:b6:f9:17:70:3d:4a:b0:
19:33:60:8b:ab:19:3d:9e:d3:a7:16:58:44:8c:96:
2e:6e:51:69:8a:5a:86:2d:d2:28:a4:c6:ab:97:09:
ed:f9:8a:cb:b5:a6:0d:fa:84:51:e2:dd:2e:f6:d4:
95:c4:18:a9:c6:e4:3d:e6:83:35:52:08:df:e0:80:
93:a5:08:5b:7a:b1:8a:06:ac:66:91:3d:a1:df:eb:
ca:dd:8f:42:ad:80:4e:57:d3:01:24:f5:c4:5a:fb:
21:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1E:43:A5:36:F5:A5:BE:D5:5D:FA:29:C5:9E:0F:75:48:9A:07:E4
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/6C7ACBF26E0A11EFAC0C4258762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.83.0/24
Signature Algorithm: sha256WithRSAEncryption
48:16:86:d8:77:d9:6a:71:35:d3:df:ec:3f:72:1b:a3:c0:d0:
3d:17:48:87:eb:52:de:0b:96:63:cd:08:f7:5c:78:6d:41:c2:
a4:73:33:1f:3d:15:08:17:bd:c2:c9:02:7d:2d:2d:fb:11:d8:
77:ac:60:92:8e:c4:1f:a5:50:16:94:73:8d:8f:41:7e:cc:ec:
3f:d5:7c:6d:ca:9d:b4:f6:95:dc:ab:f6:2b:df:bb:f8:8d:d7:
7a:3e:c5:f1:80:f3:e2:97:dc:d0:9a:90:26:92:18:97:e9:bc:
38:1c:ee:fd:6d:38:24:17:d4:13:5c:38:47:5f:f3:b8:65:ab:
7e:21:37:91:26:9d:1c:b7:51:36:18:f5:f9:45:9f:d1:ea:8e:
34:74:a2:50:8b:fc:12:9d:41:4a:90:bf:e8:99:a9:94:38:64:
4f:fd:fd:2b:2f:00:0a:83:6c:34:39:77:f4:11:e0:5a:7f:97:
62:a6:4e:93:38:b5:78:36:43:9f:63:ad:4a:3e:f4:de:42:da:
3c:a3:f0:cd:42:de:53:67:d6:26:6a:80:44:06:8a:55:ee:2c:
6a:ce:0b:d3:80:45:f6:a1:95:c9:92:14:d0:7e:1f:00:1d:44:
de:ae:3f:5d:d7:a3:13:ae:09:8e:0b:55:a6:d0:12:f2:04:31:
60:6b:4d:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org