Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/B98C6F385D0111EEB1A76D574AD9E6FC.roa
File: B98C6F385D0111EEB1A76D574AD9E6FC.roa (raw, json)
Hash identifier: F5VVopW+r+g4qZ9la9iHazBSUZj+5NHY9YJ/sA99AGQ=
Subject key identifier: CD:B3:8A:66:F7:3C:88:83:FF:EA:1E:BE:46:BE:FE:71:89:29:6E:E8
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 032F
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/B98C6F385D0111EEB1A76D574AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:47:29 +0000
ROA not before: Wed 27 Sep 2023 06:47:25 +0000
ROA not after: Tue 30 Sep 2025 06:47:25 +0000
asID: 328327
IP address blocks: 102.140.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 20:21:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 815 (0x32f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:47:25 2023 GMT
Not After : Sep 30 06:47:25 2025 GMT
Subject: CN=6513d001-3046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:76:4b:fd:2f:2a:65:02:85:10:ca:45:9f:56:
79:5e:af:fd:42:9c:fa:eb:10:1a:7d:a2:4a:6c:2e:
d7:e1:20:0e:d2:0c:8f:88:e3:bb:05:40:df:4e:e2:
22:97:56:76:b0:6d:e4:bf:80:b9:26:4b:6e:51:75:
9a:aa:af:c0:9b:68:16:24:f6:7d:88:f0:3d:a5:09:
0f:f2:59:33:f2:89:88:52:45:31:03:d9:31:e0:fc:
23:9d:84:1e:44:30:7e:b6:3e:36:cc:22:57:25:67:
32:2f:11:2b:2a:af:a4:be:47:bc:5f:e4:3a:f0:30:
22:eb:1e:15:46:6e:e4:1e:57:05:46:f4:c0:66:7a:
5a:a1:f3:ae:b8:34:21:ee:63:b7:33:29:44:e6:89:
f8:90:8c:0c:0b:8f:36:4c:f2:09:17:88:fd:d1:3b:
e0:2d:09:7f:66:d4:af:28:88:95:26:ed:46:2b:f6:
66:4c:91:01:d5:0c:b0:e5:07:66:e0:7c:6b:2a:4a:
bb:13:b6:4b:b0:29:a7:e6:5d:3e:99:eb:f3:0e:49:
25:20:40:94:71:d6:4b:04:bf:9e:df:ec:61:09:82:
60:d5:e3:11:b8:99:c6:38:72:47:1f:43:1f:41:5e:
6d:28:84:01:49:47:95:b9:63:b0:70:8d:94:21:3f:
2a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B3:8A:66:F7:3C:88:83:FF:EA:1E:BE:46:BE:FE:71:89:29:6E:E8
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/B98C6F385D0111EEB1A76D574AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c5:a3:7c:c3:f2:03:2f:79:ad:f0:ee:7c:13:44:c8:6d:30:
6d:39:d3:5f:21:02:5d:b5:e8:ce:99:c9:59:16:81:25:bc:01:
71:78:8f:1c:e4:b4:f9:cb:ea:05:12:20:6c:4a:7a:3e:fe:2d:
50:9c:23:78:c7:64:d3:cf:bc:26:81:e4:82:26:26:bd:3b:49:
e2:02:6a:ca:82:55:94:46:76:96:d0:b7:03:e8:ba:21:1e:f9:
4c:4f:36:50:82:35:96:ee:51:b7:7a:be:a8:92:ab:a0:fb:ad:
e8:c8:cb:fd:e3:59:11:b3:ec:8f:3e:79:da:ee:d1:24:29:18:
5b:24:ba:85:66:11:a3:35:74:00:c1:5a:b5:f6:f0:93:6c:48:
d8:39:66:71:fa:3f:6d:b3:b6:e6:8b:dd:f0:1d:b0:d8:c9:27:
be:82:4b:69:11:6d:aa:aa:33:ee:38:7d:f3:d1:63:0f:73:6e:
59:64:71:fc:56:cf:84:14:cc:6c:f7:57:cd:80:56:17:d5:58:
bf:bc:1c:4c:e0:c2:3a:ec:85:99:bd:84:77:19:37:12:97:ec:
1d:b5:49:53:eb:d8:a3:4b:5e:f8:22:5b:60:1b:68:e6:dc:fb:
d4:ea:a7:64:67:55:63:de:dc:d2:56:8f:45:ac:bd:61:64:d4:
88:04:9d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 22:32:21 2024 by rpki-client on console-ams.rpki-client.org