Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/12F6BC8EA65F11EFBD05BFB7762E951A.roa
File: 12F6BC8EA65F11EFBD05BFB7762E951A.roa (raw, json)
Hash identifier: As2odCsPm4vEHElY0hwwZoUwDbYLoyLhd4dK1enI6Hg=
Subject key identifier: 02:F4:41:27:37:EC:3C:E0:C6:6D:F2:EF:02:04:10:E3:BC:83:60:E8
Certificate issuer: /CN=F3654AD1AF/serialNumber=80D435BBC77094E85B7BF3082580D127B910779E
Certificate serial: 0129
Authority key identifier: 80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/12F6BC8EA65F11EFBD05BFB7762E951A.roa
Signing time: Tue 19 Nov 2024 10:14:34 +0000
ROA not before: Tue 19 Nov 2024 10:14:30 +0000
ROA not after: Mon 22 Nov 2027 10:14:30 +0000
asID: 328331
IP address blocks: 102.135.170.252/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.mft
rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297 (0x129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654AD1AF/serialNumber=80D435BBC77094E85B7BF3082580D127B910779E
Validity
Not Before: Nov 19 10:14:30 2024 GMT
Not After : Nov 22 10:14:30 2027 GMT
Subject: CN=673c650a-eb1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:84:e8:3e:21:a4:3e:51:93:64:a7:63:87:
e5:8f:59:c4:1f:fd:d7:c4:8a:fb:88:9a:99:90:78:
c6:80:a1:96:99:5c:6c:25:cc:c2:07:31:2e:61:3f:
db:13:fe:63:d6:26:57:52:d2:46:35:07:77:ed:08:
a0:f1:34:ad:a1:bb:60:d1:a9:a4:33:b8:10:cd:66:
e9:cc:e1:5e:b6:66:70:41:c4:cf:d5:e8:8f:fc:9d:
15:87:6d:9b:d2:01:99:9c:02:12:f5:f4:49:df:5f:
1b:e1:52:bf:16:b4:06:d3:40:ff:99:c8:3a:1b:e5:
03:85:82:94:a0:92:01:5b:20:52:d5:1f:35:a2:4c:
f3:4c:45:4a:bf:56:17:8c:97:0c:74:42:b1:5a:eb:
5c:35:0a:b7:33:81:6d:85:25:49:fc:78:4c:3b:ff:
d4:b9:34:ba:69:6c:3e:42:0e:e9:38:af:b5:4b:ad:
d2:f6:7e:80:7d:96:86:d1:5a:bf:d0:35:3e:da:f0:
13:74:46:64:cb:c4:cc:5a:03:be:15:0c:d6:42:80:
2a:57:57:57:3c:63:5f:0a:8a:e5:55:16:a6:7b:1e:
04:f8:b4:d1:de:ea:0c:ff:bb:a0:1f:c4:aa:57:13:
e2:33:9d:f5:f5:9c:f2:6d:cd:52:19:1a:2f:8a:e9:
8c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F4:41:27:37:EC:3C:E0:C6:6D:F2:EF:02:04:10:E3:BC:83:60:E8
X509v3 Authority Key Identifier:
keyid:80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/12F6BC8EA65F11EFBD05BFB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.170.252/30
Signature Algorithm: sha256WithRSAEncryption
7d:27:69:e8:b7:51:f5:74:dd:f9:93:cb:55:72:60:7c:02:ca:
a1:37:2d:82:46:81:bc:3c:4b:d9:e5:a5:a7:f2:54:0a:97:5b:
0f:1a:7a:e6:d8:a3:d7:c4:b3:a0:09:02:ba:64:6f:d6:3f:a7:
3f:c4:21:85:53:04:5b:58:64:08:35:56:5d:ce:63:a4:9b:24:
19:75:15:c3:ec:9c:5c:3d:04:e5:af:7a:dd:86:7b:5e:28:3d:
98:b6:0d:13:75:d1:1e:75:6a:0a:85:1d:ce:83:ac:d5:7e:17:
a8:76:9a:77:b9:de:e3:a1:48:fc:df:d6:a0:f1:03:05:ce:dc:
37:37:6f:d5:51:83:9b:22:34:87:8f:55:3e:8b:12:84:20:b5:
97:35:3c:b6:9c:c1:8e:a1:88:08:ed:e6:3f:42:ca:4e:1c:16:
c4:14:db:44:fc:88:90:b0:48:6c:a7:91:e4:79:38:49:bb:3f:
42:cd:b1:f3:c4:4b:5a:83:77:d4:b5:eb:89:c3:45:54:f1:6c:
c4:99:d6:f4:ef:5a:a7:82:66:d9:4c:f5:18:4d:d1:86:0b:82:
ae:39:35:54:9d:45:e1:c6:f3:ee:90:85:fe:41:89:cc:b5:e0:
47:0b:d3:82:53:55:58:c7:d8:e7:84:55:e9:cc:4f:fb:8f:1f:
0b:bf:94:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:31 2024 by rpki-client on console-ams.rpki-client.org