Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/7D17B42896CB11EE95131775D25BE465.roa
File: 7D17B42896CB11EE95131775D25BE465.roa (raw, json)
Hash identifier: lyBR/cQIvWWlFcZm6KCvK7zlk6UMRx5/0YmgP37XBjY=
Subject key identifier: F8:2C:D9:00:74:79:C0:81:8C:A1:59:B3:93:D4:10:33:2A:57:D7:B7
Certificate issuer: /CN=F365F7E8AF/serialNumber=C5A50FDB63C3C5BD1F474875E094F18AD17E1F96
Certificate serial: 01
Authority key identifier: C5:A5:0F:DB:63:C3:C5:BD:1F:47:48:75:E0:94:F1:8A:D1:7E:1F:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xaUP22PDxb0fR0h14JTxitF-H5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/7D17B42896CB11EE95131775D25BE465.roa
Signing time: Sat 09 Dec 2023 19:45:22 +0000
ROA not before: Sat 09 Dec 2023 19:45:12 +0000
ROA not after: Mon 09 Dec 2024 19:45:12 +0000
asID: 328176
IP address blocks: 102.128.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/xaUP22PDxb0fR0h14JTxitF-H5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/xaUP22PDxb0fR0h14JTxitF-H5Y.mft
rsync://rpki.afrinic.net/repository/afrinic/xaUP22PDxb0fR0h14JTxitF-H5Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1 (0x1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365F7E8AF/serialNumber=C5A50FDB63C3C5BD1F474875E094F18AD17E1F96
Validity
Not Before: Dec 9 19:45:12 2023 GMT
Not After : Dec 9 19:45:12 2024 GMT
Subject: CN=6574c3d2-5cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:29:6c:de:9b:28:f4:db:44:35:6d:52:d6:4c:
a8:6c:e1:ba:34:3e:79:2c:9f:61:15:f1:0b:9b:b8:
41:23:33:19:e9:8b:ca:01:b3:49:af:66:40:fe:51:
ed:ce:74:8c:7d:fa:9f:42:2e:53:bb:d3:e7:58:c0:
67:d8:ad:0a:51:13:83:ad:31:e0:c5:7b:12:07:07:
ff:98:a7:18:d2:4e:b4:63:72:54:90:45:ae:ed:16:
e3:fd:08:8b:12:da:34:e9:db:15:1a:6f:b4:ab:a1:
20:85:55:e7:1c:40:fd:6a:89:dc:5e:3c:db:18:c4:
39:f8:32:79:b3:d5:a8:17:a2:24:b4:c6:52:d0:de:
21:2b:fd:f4:50:31:80:b0:6c:bc:68:54:96:ce:1b:
95:33:e7:5a:48:72:7d:97:8d:58:d4:44:ef:98:b8:
5a:fc:6d:aa:3e:9f:2c:be:ef:54:d8:6e:1d:94:c5:
b3:31:2e:e4:94:cd:6c:cd:1d:4b:21:c4:ee:60:d8:
11:3f:fc:4f:be:20:b0:42:bd:1b:d0:63:27:05:0c:
03:83:9d:a3:b3:1a:c1:25:9f:91:e5:02:b1:02:75:
7b:43:ce:0a:ed:0e:88:6c:9a:d9:d6:32:1a:06:5a:
e9:de:44:3a:ed:b7:93:3e:92:5b:63:74:69:1d:d5:
ad:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2C:D9:00:74:79:C0:81:8C:A1:59:B3:93:D4:10:33:2A:57:D7:B7
X509v3 Authority Key Identifier:
keyid:C5:A5:0F:DB:63:C3:C5:BD:1F:47:48:75:E0:94:F1:8A:D1:7E:1F:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/xaUP22PDxb0fR0h14JTxitF-H5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xaUP22PDxb0fR0h14JTxitF-H5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/D868211096CA11EEA01BDA73D25BE465/7D17B42896CB11EE95131775D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.128.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:a2:c7:b2:e2:6b:e9:b4:c6:f9:35:7a:4e:1e:95:26:9a:4c:
71:3c:60:d2:90:85:82:b3:bb:0e:d2:bb:a6:cd:63:6c:0d:8f:
14:7e:78:89:8a:0c:c8:d2:13:98:62:47:9c:c4:80:c4:57:3f:
ec:8c:29:88:59:eb:e0:23:6d:90:94:7f:33:3d:24:18:88:ad:
34:10:db:af:2a:3e:50:93:0e:56:86:08:5b:70:f0:fc:f8:55:
1d:b5:28:d5:e1:23:57:ce:d2:59:27:2f:3f:63:b6:8d:3a:25:
f3:7a:e9:f3:cc:15:95:f1:3c:6b:eb:7b:ed:ef:b6:c9:05:8d:
00:fd:ea:2f:7b:3c:f3:2e:66:6f:98:94:c4:8a:8a:a6:c2:43:
50:1f:30:29:8c:c4:f5:8f:fd:4a:48:9d:44:61:da:1a:d2:bb:
3c:3d:5c:79:bc:00:fd:32:31:a8:99:69:e6:90:fe:0c:7d:33:
88:14:30:3e:c8:95:1b:74:dc:cf:0c:b3:e0:1b:6f:ff:5c:73:
08:0e:de:1f:c2:64:26:64:52:20:c6:fc:17:25:cd:b1:36:e0:
3c:dd:63:25:c9:5f:ca:9e:b8:fa:4d:78:f3:02:a8:f6:2d:1e:
2a:db:ce:9d:1d:f0:c8:b5:dd:36:df:35:b2:1c:8c:45:b1:9d:
d9:95:fb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org