Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/79B6ED848E5B11EF851CEABB762E951A.roa
File: 79B6ED848E5B11EF851CEABB762E951A.roa (raw, json)
Hash identifier: ILTQ76ddOt6IO6Rj+/7PM38BEpmBRxTKckxJRWtJf0Y=
Subject key identifier: 17:81:3D:56:C0:86:17:14:BB:F4:0F:3C:74:6A:24:F3:F9:90:AD:69
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0548
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/79B6ED848E5B11EF851CEABB762E951A.roa
Signing time: Sat 19 Oct 2024 20:48:21 +0000
ROA not before: Sat 19 Oct 2024 20:48:16 +0000
ROA not after: Thu 17 Oct 2030 20:48:16 +0000
asID: 135402
IP address blocks: 102.217.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1352 (0x548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Oct 19 20:48:16 2024 GMT
Not After : Oct 17 20:48:16 2030 GMT
Subject: CN=67141b15-5d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:34:fb:5e:c5:03:b8:1c:36:40:f6:2e:1d:22:
59:03:f4:01:7d:f5:e4:bf:04:02:bb:8a:52:30:45:
e7:8c:30:95:08:f6:c6:83:41:10:5b:bf:24:2d:05:
50:0a:a4:a9:c0:81:fb:6d:df:1f:49:29:aa:bf:29:
64:20:b6:21:37:53:ac:cc:eb:aa:c0:0a:bb:b8:c3:
9b:17:8e:e1:b2:b5:c0:28:a7:33:49:f0:b8:4c:73:
5a:51:ba:14:4f:5f:ca:9d:80:fc:5b:0a:9d:c0:3b:
47:76:5a:30:cd:cc:1f:6c:67:08:0c:10:e1:1a:fe:
6e:84:d7:f7:c1:11:84:a7:a4:0a:38:f2:d7:1b:41:
88:86:6c:55:82:29:64:b4:4d:73:92:2b:ec:76:11:
ac:19:67:7b:2e:b4:8d:23:9e:ba:1a:4f:4d:e4:b2:
df:c4:bc:97:1b:b7:70:3b:70:a7:b8:1a:d8:5f:44:
20:b0:7b:b0:46:0d:a0:ca:43:06:dd:e5:43:05:ee:
7b:86:8d:27:11:ff:e6:cb:bf:ed:f6:a5:bb:80:59:
fb:c0:32:f4:2f:e7:fc:71:6a:52:5a:a0:74:f4:6a:
ff:7d:4e:6d:4b:88:1c:d2:b6:d6:c5:4d:9d:49:a5:
45:a3:0a:94:94:43:e7:9e:70:9c:e3:de:0a:3c:cd:
ea:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:81:3D:56:C0:86:17:14:BB:F4:0F:3C:74:6A:24:F3:F9:90:AD:69
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/79B6ED848E5B11EF851CEABB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.104.0/24
Signature Algorithm: sha256WithRSAEncryption
53:1c:7e:22:9b:b8:0e:96:d9:4b:d3:39:5a:e2:77:c5:f1:61:
14:b7:b9:18:ab:00:7d:14:7e:48:94:f9:1f:90:00:0b:07:2e:
d0:61:59:3e:b0:11:99:75:a7:2e:d2:f6:b8:23:27:32:6b:35:
1d:dd:91:bf:07:97:12:22:90:e9:47:31:85:e3:f8:06:3f:fd:
b1:d3:4d:73:c7:93:74:3a:5d:e6:2b:d4:9b:1c:70:91:bb:a7:
e7:28:ec:23:84:75:20:f0:74:94:f1:87:77:1e:f4:66:07:05:
10:1a:a4:f4:3d:d7:9b:a1:5d:54:cd:56:09:64:79:55:90:a3:
4c:7d:56:a4:5a:05:33:81:16:e0:7c:2c:df:65:14:36:fe:84:
ae:a1:e6:d1:9f:db:ca:40:8d:60:05:d2:54:5f:79:50:f0:ed:
22:70:26:db:26:05:91:98:e9:d9:70:27:43:04:ef:ec:38:7d:
ee:af:27:af:49:51:b7:91:7e:a3:af:d3:fd:b3:1e:97:35:cc:
7f:8f:51:21:3b:47:c8:1a:04:5c:f1:93:21:36:52:26:3f:ed:
26:d1:b2:6c:c4:86:79:c1:f9:1e:af:ab:4a:5d:3c:26:ba:1d:
bd:56:9b:49:d3:1d:97:e3:46:60:15:aa:fd:53:da:ed:be:ac:
80:fa:83:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org