Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/D91B9FD2905311EF97DBC8B6762E951A.roa
File: D91B9FD2905311EF97DBC8B6762E951A.roa (raw, json)
Hash identifier: //pQLXl186UK+YngQ4Oqc4YBM5xFv+Ww/aM3Yp8J0R4=
Subject key identifier: C6:24:C8:36:07:FB:E7:88:2C:25:C1:34:0F:CA:0E:F9:E6:96:96:95
Certificate issuer: /CN=F3656BB8AF/serialNumber=F67066439ACD9EAFD4899FC68C6075C70CE39AD5
Certificate serial: 0174
Authority key identifier: F6:70:66:43:9A:CD:9E:AF:D4:89:9F:C6:8C:60:75:C7:0C:E3:9A:D5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/D91B9FD2905311EF97DBC8B6762E951A.roa
Signing time: Tue 22 Oct 2024 08:58:47 +0000
ROA not before: Tue 22 Oct 2024 08:58:43 +0000
ROA not after: Sun 22 Oct 2034 08:58:43 +0000
asID: 14618
IP address blocks: 102.210.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.mft
rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 24 Oct 2024 00:19:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372 (0x174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656BB8AF/serialNumber=F67066439ACD9EAFD4899FC68C6075C70CE39AD5
Validity
Not Before: Oct 22 08:58:43 2024 GMT
Not After : Oct 22 08:58:43 2034 GMT
Subject: CN=67176947-9809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:81:96:e4:00:63:9a:63:c9:bd:f8:88:36:42:
52:f7:7f:eb:15:e5:91:a5:17:dd:d5:87:b0:a1:d3:
fe:c3:a2:04:6b:19:dd:49:37:72:4b:4d:27:fc:ee:
5f:2e:48:9c:35:a2:57:46:2e:86:e0:79:e8:38:d3:
e3:ce:95:b2:b1:f5:5e:e8:4a:6f:59:e8:8a:17:12:
c4:c2:47:da:f7:4f:19:42:58:4e:1d:7c:3d:c7:05:
7e:b9:46:8d:93:6f:af:ae:0d:80:ce:36:15:0f:60:
ba:fa:49:4f:24:24:ec:06:b1:cd:dc:0f:af:a2:33:
e9:f1:2c:01:4b:ba:c5:b0:b0:77:be:be:57:65:5e:
45:95:3e:c5:ed:e9:a1:11:d9:0d:ad:d7:b8:92:00:
bd:50:37:87:88:a0:f3:7f:d4:6d:ec:41:7d:a9:3e:
2a:45:6b:c3:c2:f5:a1:5e:13:4c:11:bc:5c:d7:ac:
87:11:41:8a:32:d3:da:94:b9:b6:c6:b3:07:c1:0b:
71:f6:e6:c2:f5:1d:b2:08:86:b2:1a:30:34:bd:7d:
b1:9c:00:6b:17:db:01:1a:9b:e1:4f:d4:bb:62:7b:
9b:11:21:9c:54:eb:68:64:27:09:df:00:5a:d2:2d:
0a:f7:25:5d:26:f1:53:0e:ff:8a:d4:c9:c2:66:c3:
c6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:24:C8:36:07:FB:E7:88:2C:25:C1:34:0F:CA:0E:F9:E6:96:96:95
X509v3 Authority Key Identifier:
keyid:F6:70:66:43:9A:CD:9E:AF:D4:89:9F:C6:8C:60:75:C7:0C:E3:9A:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/D91B9FD2905311EF97DBC8B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.191.0/24
Signature Algorithm: sha256WithRSAEncryption
03:25:cb:5b:87:19:71:9b:8e:8d:b2:40:f2:9b:a6:e6:02:a4:
1e:d5:c6:35:64:3e:0d:1b:5c:19:57:56:4a:0f:41:43:ed:e9:
17:f8:ef:78:b6:cf:7c:82:5d:fd:c4:1c:44:c9:2a:a9:99:ba:
0c:d3:1c:c5:ae:6a:f2:d0:65:e8:6b:64:11:f7:5f:19:8c:6c:
56:65:03:ef:43:41:9b:8e:ca:bd:9f:0e:33:78:3f:85:33:5d:
8b:c6:a3:c9:38:5f:70:92:c7:2f:6e:70:92:13:fc:d0:7a:42:
95:24:6e:63:ff:44:db:8d:e4:bb:2e:a2:4a:3f:23:7e:72:e4:
ba:52:b4:89:40:4f:a4:76:45:e8:e3:85:8a:6e:fe:b1:7d:b7:
ef:ab:2b:1f:9d:9d:c4:de:c9:c4:de:04:fd:5a:42:c2:28:67:
2a:f7:7f:98:60:cd:78:e3:87:0e:cf:33:bc:3a:dc:58:1b:24:
d8:f2:c3:fb:f9:44:31:d2:22:ba:56:4d:5f:5e:7e:b1:64:c2:
74:32:79:07:35:f1:1a:3b:86:12:8e:9f:5e:18:0f:1e:84:e9:
f0:93:7a:09:2d:9b:a0:c9:f0:28:75:9d:cf:3f:24:4c:87:4c:
95:60:5b:17:0b:92:e8:1a:a7:2c:68:08:9d:c9:14:c6:d7:7e:
69:46:12:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 11:11:37 2024 by rpki-client on console-fra.rpki-client.org