Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/3429AD648C7711EFA20BEB5B762E951A.roa
File: 3429AD648C7711EFA20BEB5B762E951A.roa (raw, json)
Hash identifier: em0xHhe3JjGKnJp91YEgF4F795GLTNdp0eys+FZqMc8=
Subject key identifier: 16:AD:BC:06:F9:D7:9F:78:69:9F:57:86:3E:6E:E8:81:72:80:1C:79
Certificate issuer: /CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Certificate serial: 0342
Authority key identifier: 03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/3429AD648C7711EFA20BEB5B762E951A.roa
Signing time: Thu 17 Oct 2024 11:01:48 +0000
ROA not before: Thu 17 Oct 2024 11:01:44 +0000
ROA not after: Fri 17 Oct 2025 11:01:44 +0000
asID: 328660
IP address blocks: 102.214.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.mft
rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 834 (0x342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Validity
Not Before: Oct 17 11:01:44 2024 GMT
Not After : Oct 17 11:01:44 2025 GMT
Subject: CN=6710ee9b-3e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fc:03:6f:4a:7e:d6:66:ba:37:2e:00:a9:fe:
2a:73:3c:ff:f3:d2:6a:e6:2d:c0:e6:a4:8b:e5:2e:
fa:77:41:c5:c2:f3:c3:89:6c:3f:cf:43:05:d9:fa:
12:a4:ac:69:60:bd:fb:19:ad:16:d9:a9:fe:b5:46:
f1:11:6f:cd:8e:50:91:a0:3d:d8:d0:79:c6:98:71:
ff:45:07:10:38:40:26:d4:52:fd:62:d6:8b:9d:15:
3b:43:28:9f:a2:23:63:66:ac:17:d6:6b:ba:28:d9:
30:14:56:5a:e3:5b:48:63:d7:49:a8:ec:6e:25:df:
ae:4b:03:50:24:57:e0:dc:0c:1e:fc:79:f6:9b:ee:
d4:b9:61:60:30:79:cd:91:7d:6f:6c:06:72:b7:2f:
75:c9:f2:48:c2:cc:24:55:fb:56:8a:f4:45:f3:d3:
96:2c:65:34:47:dc:c0:1d:fd:81:88:be:88:e5:88:
6b:b2:7a:ab:14:42:51:9c:b8:d8:5f:b6:c8:75:ab:
13:b9:90:29:b8:cb:c9:6e:a2:b3:c9:c8:e8:ed:d1:
44:de:72:72:22:87:bf:f5:40:9e:57:7c:80:c5:e9:
97:59:22:48:0f:a2:87:f4:0f:37:a8:62:60:18:12:
2b:ae:04:d7:99:45:04:b8:ce:7c:94:79:5f:5b:51:
09:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:AD:BC:06:F9:D7:9F:78:69:9F:57:86:3E:6E:E8:81:72:80:1C:79
X509v3 Authority Key Identifier:
keyid:03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/3429AD648C7711EFA20BEB5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4c:1b:19:38:9b:77:5f:0d:b9:85:84:93:af:5e:50:0d:dd:
0d:05:39:9f:34:09:e8:0f:a6:bf:fd:58:e4:61:25:22:ed:1a:
0a:1c:37:56:6d:4a:c8:25:c3:ff:1d:16:a5:ef:6f:db:3f:48:
cb:0d:74:25:10:ef:d4:90:df:7e:95:00:51:9b:9a:d9:bb:b6:
3b:97:77:de:3c:82:34:ee:de:0d:bc:70:5c:70:12:98:6d:79:
41:0c:8e:c1:8e:70:58:a5:2c:aa:5f:26:ff:00:ec:b2:8b:a9:
19:19:a7:e1:ce:3f:ee:9d:bd:59:48:f2:c2:75:95:a2:e9:60:
25:93:fc:9a:24:1c:7a:77:b1:6e:4d:dc:81:1d:29:e3:d6:c0:
2c:c9:7b:5b:29:06:d9:f2:fb:2d:4c:c8:eb:24:84:1f:b4:54:
68:b5:14:ea:a6:5c:af:8d:c7:d4:0d:4a:e3:c2:61:47:48:28:
77:aa:58:48:d0:84:a8:5f:32:06:8b:78:39:96:eb:e1:dd:57:
b2:de:58:61:c3:1c:a1:3c:94:02:1e:8f:7d:68:4c:3f:b0:72:
de:fd:be:ed:d3:b0:9d:fd:8a:39:5e:7a:49:df:0a:ab:2b:de:
7c:6a:14:d6:1b:a2:a6:8b:66:b5:69:9a:0a:38:77:c7:dd:ca:
cc:6d:a3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org