Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/225E1C1A5D0111EE84F476554AD9E6FC.roa
File: 225E1C1A5D0111EE84F476554AD9E6FC.roa (raw, json)
Hash identifier: kq88ZlOyKB7THOoMNssLdpQ02h8ia/xXQ+2iVZ7J2UI=
Subject key identifier: D1:0E:E7:64:7D:2E:B6:81:3B:3D:04:19:76:38:7F:2C:AD:61:F7:76
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0328
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/225E1C1A5D0111EE84F476554AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:43:15 +0000
ROA not before: Wed 27 Sep 2023 06:43:12 +0000
ROA not after: Tue 30 Sep 2025 06:43:12 +0000
asID: 328327
IP address blocks: 102.140.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 808 (0x328)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:43:12 2023 GMT
Not After : Sep 30 06:43:12 2025 GMT
Subject: CN=6513cf03-6759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:20:97:38:f9:08:b2:c4:03:c6:81:9f:1d:85:
11:0f:a5:46:d7:a6:c4:10:d9:ad:f5:fa:08:89:db:
17:a5:b4:1a:9b:dd:a1:27:47:03:ae:33:8f:8c:ef:
b1:fd:a3:5a:49:d1:2b:ff:92:ad:63:9e:c1:94:d2:
58:73:9e:35:ea:f7:b6:42:4d:24:be:5d:c0:71:d7:
11:de:87:0e:4a:d3:d2:b4:cb:42:e3:d5:b6:53:f3:
1d:2b:a8:08:97:5f:92:9d:3b:31:ce:23:d1:36:16:
66:39:19:6a:62:d5:d7:9a:cd:5e:db:ec:ad:a5:f7:
db:9e:63:38:ac:e9:f0:8e:3d:72:be:5f:ca:8d:d3:
cb:6a:9d:2f:01:d6:e9:b3:17:70:2b:d3:da:fa:db:
fd:08:34:5e:9f:85:ab:e5:bb:a7:1b:65:16:3b:d4:
81:21:99:cf:b2:9b:bc:c2:a9:36:64:51:c9:12:5b:
34:35:01:2b:1a:bd:bf:a9:a9:29:31:ea:81:a0:3a:
5b:74:a9:b2:97:4d:48:3e:d9:92:10:34:82:fe:58:
b4:37:5b:de:4a:87:8f:7f:52:e2:7a:22:53:9b:0f:
5e:67:b0:82:2c:75:88:ca:16:01:e9:a6:c9:ee:1f:
ec:0d:14:a2:9a:9e:a2:55:83:be:04:9d:7d:07:e9:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0E:E7:64:7D:2E:B6:81:3B:3D:04:19:76:38:7F:2C:AD:61:F7:76
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/225E1C1A5D0111EE84F476554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.71.0/24
Signature Algorithm: sha256WithRSAEncryption
96:bc:5e:02:88:3d:03:53:47:22:1f:de:1c:dc:b6:25:a2:47:
1a:5f:e6:67:cb:ad:5b:3a:55:32:e2:ad:92:56:a6:84:c9:02:
6a:51:47:01:8b:0f:eb:4e:63:a4:73:ad:c0:74:48:b9:81:4e:
2c:ad:a5:17:91:1a:9e:ff:f1:da:d0:8b:26:f6:3c:da:8c:a7:
61:47:8e:10:6d:5d:8e:5f:4e:f9:99:94:6c:9c:19:7b:ce:c8:
5c:98:5d:de:3e:d4:eb:5c:78:bb:9d:13:28:df:68:ce:35:29:
a4:10:80:0f:2b:40:90:8c:24:a5:24:b2:45:35:5e:d5:f7:8a:
45:b5:95:ce:74:0f:91:0b:e6:b9:fb:03:c3:e0:08:ca:74:01:
90:bb:a0:fe:a2:d6:42:09:4c:bb:52:c2:73:ec:71:a3:80:1c:
c5:ec:3d:f3:d6:41:f9:d0:ef:ce:82:fb:bc:30:bc:ce:97:c2:
55:1b:f2:2d:b0:0f:54:8e:00:8c:3e:f7:5f:f7:b3:95:c8:2f:
fb:22:56:49:e8:14:9a:f3:0e:ab:05:c5:4b:1f:85:ea:6d:84:
6a:af:35:1c:dd:07:f0:aa:a2:e6:70:d5:19:53:4c:1c:58:a7:
59:4b:55:e0:6f:a4:a4:75:7b:03:b4:1b:e6:e5:60:d8:26:1c:
e9:06:58:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:24 2024 by rpki-client on console-fra.rpki-client.org