Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/23D327BA3B9111EF8FF3E059762E951A.roa
File: 23D327BA3B9111EF8FF3E059762E951A.roa (raw, json)
Hash identifier: ZJ3xXOXKk7e28z2xIgECvNbu0qz58iXckPb6BX56yvQ=
Subject key identifier: 7F:F3:A8:A7:29:C0:AB:5C:02:85:2F:D7:D1:EF:28:2D:8D:ED:25:A9
Certificate issuer: /CN=F3644DABAF/serialNumber=5D5C2A96B2E372B0AC47F48DBDC7D7FD1FBDB132
Certificate serial: 0308
Authority key identifier: 5D:5C:2A:96:B2:E3:72:B0:AC:47:F4:8D:BD:C7:D7:FD:1F:BD:B1:32
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XVwqlrLjcrCsR_SNvcfX_R-9sTI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/23D327BA3B9111EF8FF3E059762E951A.roa
Signing time: Sat 06 Jul 2024 12:13:23 +0000
ROA not before: Sat 06 Jul 2024 12:13:19 +0000
ROA not after: Fri 06 Jul 2029 12:13:19 +0000
asID: 329050
IP address blocks: 102.216.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/XVwqlrLjcrCsR_SNvcfX_R-9sTI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/XVwqlrLjcrCsR_SNvcfX_R-9sTI.mft
rsync://rpki.afrinic.net/repository/afrinic/XVwqlrLjcrCsR_SNvcfX_R-9sTI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 776 (0x308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644DABAF/serialNumber=5D5C2A96B2E372B0AC47F48DBDC7D7FD1FBDB132
Validity
Not Before: Jul 6 12:13:19 2024 GMT
Not After : Jul 6 12:13:19 2029 GMT
Subject: CN=668934e3-275b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e1:53:90:7a:76:90:a3:ac:34:31:8e:47:4b:
a7:4a:cb:c4:71:87:e7:73:ed:73:42:08:b1:33:ae:
8b:e7:41:7d:98:e0:8e:8d:11:21:2a:b1:4a:16:db:
7e:ed:14:f2:03:11:1a:48:ee:cd:ea:65:64:e2:75:
13:72:5e:42:d5:df:b9:90:ad:6e:02:6e:7c:dc:64:
91:2d:2a:3b:d0:cd:47:19:77:7f:cc:db:38:f5:91:
8c:23:87:5c:78:95:08:c6:59:3c:c1:23:f7:43:61:
38:11:4e:85:27:55:5b:43:fd:cf:2e:bf:12:8d:74:
aa:c6:50:42:ff:45:bc:72:74:7b:a1:1e:9e:15:3f:
8c:54:3b:48:da:7e:dd:e9:94:e5:4e:a5:bf:68:72:
ed:0e:05:6d:22:6a:e3:2a:4c:58:87:c0:08:5e:39:
df:8e:8e:ae:aa:af:12:66:4d:26:1b:ec:0d:7c:e2:
73:ea:8f:aa:62:80:a8:52:0d:47:cb:31:39:29:dc:
ec:6e:2b:8c:87:be:1b:8e:f0:1c:fa:72:ef:a3:73:
e7:ac:ea:48:e2:e6:9b:e2:bb:9c:7a:17:1e:5c:51:
39:07:31:a7:93:61:c4:17:a2:03:7c:e1:27:4b:27:
e5:79:15:91:f7:7c:11:3e:97:ad:98:eb:18:d7:57:
15:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F3:A8:A7:29:C0:AB:5C:02:85:2F:D7:D1:EF:28:2D:8D:ED:25:A9
X509v3 Authority Key Identifier:
keyid:5D:5C:2A:96:B2:E3:72:B0:AC:47:F4:8D:BD:C7:D7:FD:1F:BD:B1:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/XVwqlrLjcrCsR_SNvcfX_R-9sTI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XVwqlrLjcrCsR_SNvcfX_R-9sTI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/23D327BA3B9111EF8FF3E059762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.21.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:64:53:09:0f:9d:97:be:f9:c2:75:9c:3c:97:a8:b8:46:aa:
cd:1a:5e:f0:80:a3:7b:d0:07:c9:f1:72:5a:7c:68:0a:9c:6d:
ab:52:4a:9e:39:bd:3b:f9:2b:35:1a:e2:12:46:c1:9b:0c:66:
5d:10:db:75:5d:f6:9e:4a:a5:f0:77:b6:4e:6b:c8:46:57:45:
10:1e:60:69:11:29:e3:3c:ab:5c:51:0e:27:1e:0a:71:ed:82:
f9:00:1f:26:a6:cb:de:b1:e8:e3:6a:e6:8e:5b:fe:c8:f6:f4:
62:0b:ee:aa:5f:6b:53:67:2a:f8:6f:f7:aa:76:0d:5e:d4:72:
fd:6f:1e:88:41:11:c5:ee:d7:20:15:2d:99:7d:2c:63:88:98:
b3:cc:8e:dd:37:d6:21:90:9d:69:23:2c:14:24:8c:2e:3b:e5:
c3:5e:ba:e5:ad:4b:fd:16:30:77:18:79:ff:16:c6:29:6b:5e:
58:59:3e:81:7b:ac:3d:60:52:6b:47:27:15:bd:7f:54:c0:f0:
90:ea:5c:17:af:67:34:e5:9b:b5:7d:97:8c:26:c4:1a:df:11:
9d:5d:ec:10:a6:6e:26:ca:67:6a:87:23:bf:fc:13:10:c4:dd:
48:4f:20:39:80:a9:13:21:ed:5e:c2:bf:1a:d4:4c:98:42:d5:
04:e9:ce:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org