Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/7F06AC424A5511EF847D7647762E951A.roa
File: 7F06AC424A5511EF847D7647762E951A.roa (raw, json)
Hash identifier: m1YaSJxlvo4/xMjLwyZO3fMsyfrWMwenxomvjkn8HSs=
Subject key identifier: 8B:77:C9:2A:D7:74:03:E8:48:ED:7E:08:58:0D:5B:7B:16:18:81:9C
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 04CD
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/7F06AC424A5511EF847D7647762E951A.roa
Signing time: Thu 25 Jul 2024 07:14:14 +0000
ROA not before: Thu 25 Jul 2024 07:14:10 +0000
ROA not after: Thu 25 Jul 2030 07:14:10 +0000
asID: 7018
IP address blocks: 102.216.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1229 (0x4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Jul 25 07:14:10 2024 GMT
Not After : Jul 25 07:14:10 2030 GMT
Subject: CN=66a1fb45-8b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:96:47:cd:58:a4:24:01:79:b0:f3:69:4a:f4:
f9:23:7c:78:f0:db:3c:82:05:e2:48:24:cd:2b:fe:
f1:2f:6a:1b:8c:bb:4e:10:ea:22:bd:bb:c2:09:59:
d3:fa:c0:09:b3:08:52:f9:e1:6d:4a:b4:3e:2d:f7:
3f:8b:ab:b4:4a:6a:d7:4e:50:a9:62:fd:0d:c9:04:
06:74:bc:92:d6:38:73:7c:81:8c:56:76:34:40:00:
f7:83:04:92:6d:2d:da:96:ef:f9:fd:83:54:e2:bd:
16:8d:ad:30:fb:fa:7e:3c:3a:93:3f:93:21:2b:0f:
ea:b4:bc:55:4b:ad:c7:a7:f8:08:06:80:e5:0f:b0:
f9:c1:ff:fe:00:6e:66:a9:81:ef:e9:be:ff:d6:66:
ec:aa:3f:be:d9:b2:39:2c:c7:77:d1:ce:6d:4c:93:
5d:d4:6e:5d:aa:ff:fb:50:d0:59:5f:fd:15:9c:f3:
d3:5a:9f:eb:46:e4:ef:36:3d:a1:a4:5d:02:71:8b:
cb:3d:b5:16:a6:37:ea:1d:91:81:c2:88:21:e6:5e:
f2:cd:2f:88:c3:b9:60:22:81:c9:6d:66:46:09:57:
73:04:31:40:dd:15:c8:3f:c4:d6:cc:1d:2e:ca:54:
59:85:fb:00:87:b9:46:79:ed:f6:b4:50:11:9c:6a:
fa:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:77:C9:2A:D7:74:03:E8:48:ED:7E:08:58:0D:5B:7B:16:18:81:9C
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/7F06AC424A5511EF847D7647762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.82.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3a:b1:1a:b9:90:e6:65:b4:ed:7e:b4:63:f5:5a:31:b4:08:
76:76:90:60:fe:21:9d:6f:02:c7:37:79:49:84:ca:1b:29:81:
46:a4:6e:da:17:99:aa:39:aa:a6:cb:fa:e0:f6:7e:30:14:55:
79:81:0a:82:87:78:12:b1:a9:2f:51:bb:91:1e:24:ef:10:e8:
e5:bd:44:87:81:84:5e:98:76:f3:cb:31:71:4a:12:33:9d:d0:
3d:09:09:ba:07:fa:d8:57:9b:a6:91:ba:f2:e3:c5:f9:f1:27:
0d:99:4d:9c:90:91:fe:44:31:87:c9:a3:e4:78:a6:c0:7a:f6:
c6:50:33:d5:df:52:8b:b5:a4:43:91:6f:0d:72:07:cb:a9:96:
9a:9a:a2:12:eb:bc:bb:3d:37:45:46:cd:6f:48:66:5a:0c:6f:
22:11:73:f5:f6:e7:59:ed:68:03:1f:8c:03:16:59:3d:a2:90:
ac:f4:b7:62:90:c6:44:8c:db:65:4a:02:2e:35:52:77:4c:ae:
c0:6d:c2:21:e8:e5:cc:a9:e2:e1:c0:fe:24:c4:1e:db:b1:60:
be:c1:d2:9f:0d:bc:71:71:f6:00:a7:b6:c8:8a:30:cc:1f:e9:
b2:a5:8c:79:fd:84:9d:fc:58:15:f3:2f:71:6c:74:1a:68:98:
c9:cf:23:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:10:14 2024 by rpki-client on console-fra.rpki-client.org