Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/B2F145D4A65E11EF8E98B0B5762E951A.roa
File: B2F145D4A65E11EF8E98B0B5762E951A.roa (raw, json)
Hash identifier: D8cU2N+EHK3tg0aoMbKQ1AquxfaJi2Vqr4i3VqzQqrQ=
Subject key identifier: B7:79:09:D1:D3:A2:3C:6E:B3:BC:F2:F3:22:20:90:DA:96:FF:3C:62
Certificate issuer: /CN=F3654AD1AF/serialNumber=80D435BBC77094E85B7BF3082580D127B910779E
Certificate serial: 0126
Authority key identifier: 80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/B2F145D4A65E11EF8E98B0B5762E951A.roa
Signing time: Tue 19 Nov 2024 10:11:53 +0000
ROA not before: Tue 19 Nov 2024 10:11:49 +0000
ROA not after: Mon 22 Nov 2027 10:11:49 +0000
asID: 328331
IP address blocks: 102.135.168.0/21 maxlen: 21
102.135.168.0/24 maxlen: 24
102.135.169.0/24 maxlen: 24
102.135.170.0/24 maxlen: 24
102.135.171.0/24 maxlen: 24
102.135.172.0/24 maxlen: 24
102.135.173.0/24 maxlen: 24
102.135.174.0/24 maxlen: 24
102.135.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.mft
rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294 (0x126)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654AD1AF/serialNumber=80D435BBC77094E85B7BF3082580D127B910779E
Validity
Not Before: Nov 19 10:11:49 2024 GMT
Not After : Nov 22 10:11:49 2027 GMT
Subject: CN=673c6469-7458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1b:04:4a:a0:2f:c4:88:cb:c1:53:42:6f:c1:
1e:57:7a:85:93:ef:ee:84:92:9a:d4:f4:39:9f:3e:
2f:3b:cc:11:d0:45:48:87:56:e2:88:0f:b0:64:a9:
50:1c:5c:d8:1f:6f:b2:82:fc:3f:f4:c9:39:00:3f:
b9:f7:63:93:00:61:43:e2:64:b5:0d:80:2b:e3:45:
eb:64:2d:79:0c:d6:b8:b3:e9:9b:a8:52:73:03:d1:
4f:b0:97:95:5c:67:a3:86:4d:8b:ce:c2:8b:89:91:
ad:32:f1:83:0d:23:df:d6:3c:69:97:01:ec:bb:98:
4a:82:e1:ad:79:72:8c:75:14:25:37:4f:84:05:df:
fc:ec:7b:78:67:4b:4d:3b:af:bb:05:e1:9f:fb:30:
9d:b7:fd:bd:c1:2b:b7:e6:4f:e9:ff:96:73:73:3a:
58:28:d6:5c:32:e0:29:ad:7d:71:b4:a3:cf:ba:9f:
9e:d7:51:ac:ca:98:f4:b7:97:f9:2a:af:27:76:62:
49:35:27:94:cb:14:07:6b:0c:fe:b1:b1:54:63:cf:
99:c4:c6:d1:e1:74:a1:a8:68:0b:bf:27:37:ae:51:
95:72:78:d5:ee:e7:79:c4:98:75:9f:c4:9e:5c:20:
b2:ad:3f:e3:d7:0e:23:5a:f5:9b:91:41:7f:e0:be:
bf:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:79:09:D1:D3:A2:3C:6E:B3:BC:F2:F3:22:20:90:DA:96:FF:3C:62
X509v3 Authority Key Identifier:
keyid:80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/B2F145D4A65E11EF8E98B0B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.168.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:09:12:cb:bc:09:60:98:1b:00:20:69:ce:f3:e1:43:35:2f:
c1:ff:ea:df:eb:07:2b:00:b3:bd:25:b4:af:36:87:9f:21:c8:
74:d8:71:e2:c8:44:79:3e:94:a8:17:69:e5:e6:6c:d8:1c:41:
54:13:91:78:71:20:58:95:98:d3:b6:19:77:bc:bf:44:57:2c:
79:bc:c4:55:21:72:38:82:d8:54:8f:78:5a:2e:b9:38:dd:8f:
af:4e:43:c9:71:85:e9:99:0d:37:5d:7d:d7:f6:5c:4c:47:62:
2d:c0:b6:ca:2b:c5:2d:0b:32:da:0f:32:bd:d2:e1:77:07:43:
73:c4:14:66:6f:e6:fc:ab:f4:0d:38:ba:78:f0:b5:e7:c9:4c:
a0:e0:df:b3:76:07:ef:54:a4:61:54:8e:11:1f:71:a7:e4:32:
ef:40:bc:35:be:4e:36:ab:2b:b5:7f:cf:45:73:5a:75:4e:ed:
11:6f:27:b6:f8:48:de:15:c3:48:b7:a3:33:06:c5:8e:86:9e:
e3:45:47:f2:58:92:ef:34:f2:99:d5:e3:79:80:f6:69:cc:fd:
a3:9f:3d:78:6a:f9:24:cf:03:c5:9a:02:0f:48:32:63:78:bd:
19:12:1a:13:ee:49:b3:cb:6b:c9:1c:53:f6:82:47:33:95:70:
70:04:e0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:31 2024 by rpki-client on console-ams.rpki-client.org