Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/D47EE42ACB7811EE8C9C3767775412E6.roa
File: D47EE42ACB7811EE8C9C3767775412E6.roa (raw, json)
Hash identifier: Dx5slGiNObgUVruc7hEebMCJv6ZcwSLJi+h5RAHJyoQ=
Subject key identifier: 16:83:4C:6D:4D:68:42:AF:9A:FD:60:4E:3A:98:0B:ED:74:1D:36:73
Certificate issuer: /CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Certificate serial: 01A1
Authority key identifier: E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/D47EE42ACB7811EE8C9C3767775412E6.roa
Signing time: Wed 14 Feb 2024 20:37:12 +0000
ROA not before: Wed 14 Feb 2024 20:37:08 +0000
ROA not after: Fri 14 Feb 2025 20:37:08 +0000
asID: 37284
IP address blocks: 102.223.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.mft
rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 25 May 2024 00:04:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417 (0x1a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Validity
Not Before: Feb 14 20:37:08 2024 GMT
Not After : Feb 14 20:37:08 2025 GMT
Subject: CN=65cd2478-9c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:82:ee:17:c6:59:c2:64:a4:2a:e3:61:11:
b8:bd:f0:a1:81:7f:71:5a:20:45:89:7e:f3:52:37:
d5:65:e6:54:43:b5:d1:e1:fd:1e:1e:fb:07:8d:81:
a8:11:d3:9c:24:87:9c:57:4f:92:ba:90:a4:9d:5b:
22:8a:ba:06:74:e6:a5:6b:b9:b3:df:ff:01:b7:92:
a1:62:08:75:1a:88:bd:cf:1c:d2:07:74:16:19:cc:
71:4f:1e:8d:6e:d0:52:98:ea:b6:42:c7:78:c8:fc:
08:2d:c4:ef:03:44:e8:2b:81:cf:cb:9a:2d:47:e0:
ab:73:77:9f:08:be:08:fd:5d:54:b8:07:66:d1:30:
83:36:f3:7f:b7:30:e4:ac:e1:36:3c:d3:c3:fd:36:
a5:b4:ba:08:38:84:62:b9:d8:ea:3b:35:c7:f1:82:
82:dc:c6:c1:b4:87:f3:a9:be:89:b1:9c:ea:b8:1e:
3a:ee:50:b8:f8:29:a7:79:a5:6a:7f:58:c8:6b:ea:
eb:e5:8b:6b:e4:dc:3e:77:98:64:6b:26:eb:0f:47:
fa:dd:f3:f9:a0:23:4e:8e:b6:04:df:b6:03:26:89:
d4:b1:ae:5a:49:8e:9d:a7:8e:3e:ef:d5:1a:db:d5:
7e:63:ca:f1:68:12:f4:ff:0a:de:2e:a5:2c:38:10:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:83:4C:6D:4D:68:42:AF:9A:FD:60:4E:3A:98:0B:ED:74:1D:36:73
X509v3 Authority Key Identifier:
keyid:E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/D47EE42ACB7811EE8C9C3767775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.159.0/24
Signature Algorithm: sha256WithRSAEncryption
96:8f:a5:47:87:18:91:93:1b:b2:72:b6:24:bd:6f:27:b4:c0:
56:04:62:63:c2:ea:61:61:dc:27:ce:ea:cb:25:88:96:0a:d3:
ac:65:9d:d8:58:b9:a0:83:fd:cd:90:48:35:5d:fd:f8:f1:90:
2a:e0:fa:a3:0e:9a:f8:28:80:37:fd:26:1a:ea:df:7d:10:ac:
1d:af:c0:85:53:5d:74:da:5b:22:52:85:16:ef:57:ed:be:78:
a2:50:6f:d1:23:c5:e5:01:7e:ac:e6:e2:bd:c7:59:36:32:77:
28:98:b5:ac:ed:e5:df:04:a8:6e:1b:2c:0c:62:ea:9b:13:8f:
a7:ab:3a:96:97:d2:6b:3f:1a:37:6c:45:59:4c:ab:9d:a6:7e:
27:b7:a6:c1:62:bc:48:5f:c0:e7:1d:19:58:e2:92:62:fc:9c:
80:d1:0d:24:14:b3:74:e2:98:75:08:8d:eb:04:09:fb:28:f9:
40:92:a8:7f:e8:8f:2b:14:c2:63:29:77:e5:ae:69:c3:1c:ab:
05:cc:7a:6e:99:f2:40:a7:9a:b6:09:86:a2:dd:16:7b:2f:73:
a1:14:70:f0:0d:60:1b:1b:b9:ff:dc:6c:29:4f:cc:46:62:e4:
10:84:a0:e0:a8:fe:e1:1c:b4:af:e9:fc:f2:30:c2:57:25:b6:
fa:c3:b1:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 02:34:40 2024 by rpki-client on console-fra.rpki-client.org