Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/DD1510B0C8D911EEA08F0CAA775412E6.roa
File: DD1510B0C8D911EEA08F0CAA775412E6.roa (raw, json)
Hash identifier: gbRYUo6qefITeShzLXzdZv1MVuVF+cwRmhc43zCDK5U=
Subject key identifier: 49:2B:40:45:17:0A:F9:57:3D:84:76:75:64:F0:4F:54:F3:1F:C8:26
Certificate issuer: /CN=F365BE89AF/serialNumber=C3B4A3DDB2DACFC5388EEEC7359D214664496A01
Certificate serial: 21
Authority key identifier: C3:B4:A3:DD:B2:DA:CF:C5:38:8E:EE:C7:35:9D:21:46:64:49:6A:01
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/DD1510B0C8D911EEA08F0CAA775412E6.roa
Signing time: Sun 11 Feb 2024 12:34:14 +0000
ROA not before: Sun 11 Feb 2024 12:34:10 +0000
ROA not after: Tue 11 Feb 2025 12:34:10 +0000
asID: 329007
IP address blocks: 102.216.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.crl
rsync://rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.mft
rsync://rpki.afrinic.net/repository/afrinic/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33 (0x21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365BE89AF/serialNumber=C3B4A3DDB2DACFC5388EEEC7359D214664496A01
Validity
Not Before: Feb 11 12:34:10 2024 GMT
Not After : Feb 11 12:34:10 2025 GMT
Subject: CN=65c8bec6-3e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:51:bd:fc:8e:69:c8:a1:56:cf:78:43:67:5d:
8b:0c:d8:67:ea:17:a1:60:8e:95:79:10:54:7d:06:
fb:25:4b:98:74:e9:68:df:be:d9:fb:b1:d4:6c:b8:
3a:0a:e9:ba:03:a8:cc:a4:2b:e8:be:2e:e7:a5:ef:
0a:6e:da:53:d2:c7:56:89:87:c5:be:d6:b1:f9:fe:
a4:b3:21:4b:83:c0:05:d9:36:04:28:33:75:bc:91:
f2:23:86:fe:66:cf:5a:7a:e3:07:83:f2:4d:a3:65:
21:c6:5e:e3:98:0e:8e:e5:1d:74:c8:36:69:2b:27:
e5:6e:b8:ab:cb:5c:7b:3a:38:1c:0b:3b:5c:6d:2f:
8d:7d:08:2b:c2:52:ad:59:1c:f6:6c:60:b9:72:c9:
13:80:5b:65:34:09:ae:82:8b:a0:df:39:f8:46:b7:
a4:78:24:c9:b0:46:9e:5b:8d:38:51:e5:55:b3:93:
e0:13:c1:f3:6a:14:4d:0a:db:46:da:55:34:f0:9a:
c3:7f:e9:02:c4:86:06:94:b2:4a:63:d1:0e:57:16:
8e:f7:59:23:af:98:e0:3f:4d:54:1a:47:b9:20:a6:
de:8e:48:83:0b:d8:9c:93:c6:c4:ac:8b:8f:d8:95:
ce:3d:5b:c5:52:80:3a:b1:c0:23:98:0b:d5:3e:ba:
de:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2B:40:45:17:0A:F9:57:3D:84:76:75:64:F0:4F:54:F3:1F:C8:26
X509v3 Authority Key Identifier:
keyid:C3:B4:A3:DD:B2:DA:CF:C5:38:8E:EE:C7:35:9D:21:46:64:49:6A:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/w7Sj3bLaz8U4ju7HNZ0hRmRJagE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BE89/099B483ABE8E11EEB195A98E775412E6/DD1510B0C8D911EEA08F0CAA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.255.0/24
Signature Algorithm: sha256WithRSAEncryption
56:70:b0:31:05:7a:ae:27:57:0a:b2:dd:6f:0a:80:22:26:45:
d6:b8:80:e6:cd:d1:8b:9f:be:30:38:af:aa:d9:84:8f:4a:7f:
2e:93:49:47:e7:93:e2:5c:80:2f:02:d9:f7:83:da:11:94:08:
32:56:68:79:b7:ab:b9:1f:71:21:35:66:75:9d:f9:9b:de:b2:
1c:83:dd:ab:81:cf:73:d0:2e:1f:81:4e:36:44:17:64:42:bb:
6a:66:f9:20:bd:9c:7d:f8:80:2b:0e:ec:de:b2:a4:49:54:74:
50:34:3b:5e:cc:0b:7e:62:0c:af:d9:75:e9:7d:a8:68:42:4f:
4f:22:72:10:2f:e5:71:2d:e9:27:22:52:6d:32:36:43:26:d2:
ef:0a:aa:c5:2c:46:f0:8d:1f:d2:98:1d:9a:dd:61:41:fe:ee:
d9:70:b1:0e:2c:24:6c:0e:46:b0:c0:d1:4a:a8:b5:9d:d1:ff:
27:7c:01:09:cd:fb:85:5d:89:ee:11:8c:fc:b1:cc:1e:1d:e5:
20:7d:15:db:4a:aa:dc:cc:05:e8:4d:5f:03:b7:09:41:a0:a0:
cd:9b:5c:d6:c5:b7:a7:91:ed:2f:be:80:0a:22:3b:8a:30:e0:
c5:63:d0:5c:d7:22:b3:04:29:a2:0b:5a:b9:9e:3c:5a:48:3e:
32:ca:63:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:39 2024 by rpki-client on console-ams.rpki-client.org