Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/318B732EC01E11EE8B99BA67775412E6.roa
File: 318B732EC01E11EE8B99BA67775412E6.roa (raw, json)
Hash identifier: EvtUtlYSfWZNzMNqGozZFQ05R7pmC383dcyBeyy04bo=
Subject key identifier: B8:66:AA:A5:83:0C:1C:59:46:97:1D:A3:50:36:2C:98:AE:24:3D:4E
Certificate issuer: /CN=F365FB04AF/serialNumber=93CE1F2027182B8129AB0C713A8FF521C13D448F
Certificate serial: 0C
Authority key identifier: 93:CE:1F:20:27:18:2B:81:29:AB:0C:71:3A:8F:F5:21:C1:3D:44:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/318B732EC01E11EE8B99BA67775412E6.roa
Signing time: Wed 31 Jan 2024 09:50:41 +0000
ROA not before: Wed 31 Jan 2024 09:50:37 +0000
ROA not after: Wed 31 Jan 2029 09:50:37 +0000
asID: 37482
IP address blocks: 102.38.32.0/21 maxlen: 21
102.38.40.0/24 maxlen: 24
102.38.41.0/24 maxlen: 24
102.38.42.0/24 maxlen: 24
102.38.43.0/24 maxlen: 24
102.38.44.0/24 maxlen: 24
102.38.45.0/24 maxlen: 24
102.38.46.0/24 maxlen: 24
102.38.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.crl
rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.mft
rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365FB04AF/serialNumber=93CE1F2027182B8129AB0C713A8FF521C13D448F
Validity
Not Before: Jan 31 09:50:37 2024 GMT
Not After : Jan 31 09:50:37 2029 GMT
Subject: CN=65ba17f1-f835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3a:f5:05:f1:88:2e:42:8d:45:25:44:94:9f:
70:b2:21:94:09:63:06:03:16:e0:10:8b:ed:08:ea:
5d:25:e5:de:ec:75:29:9b:4d:72:e0:d4:c9:65:7e:
bf:9e:30:ad:c1:a7:a6:bb:e3:ec:13:ee:da:fa:ad:
fa:31:6b:a9:4d:a8:fa:fa:c4:58:d9:a0:b4:92:47:
94:d5:81:6c:7a:6c:73:ea:a7:7f:cf:c0:51:54:88:
37:64:d1:a4:92:87:7b:7d:89:fe:87:39:44:53:86:
98:4b:2d:08:d1:02:a5:cf:d0:76:35:34:68:52:7d:
7e:ee:b9:f3:ed:b1:b5:c1:38:dd:7c:95:1a:a3:5e:
7b:43:ac:31:48:a4:ab:38:70:a9:3d:d8:27:72:27:
02:bd:11:86:77:9f:a1:8d:36:7b:cc:f2:8e:60:e8:
33:63:9b:83:1a:76:21:cd:59:10:ca:7d:60:5f:64:
1c:84:c9:70:a3:67:dd:5c:12:54:ab:d6:36:ac:b4:
cc:45:de:33:59:b4:2e:37:cf:6c:e0:dc:8f:14:74:
77:1d:e5:ae:5d:03:de:ac:13:37:c4:9a:85:73:65:
a4:14:df:19:98:57:d2:0b:b3:8c:fb:40:09:40:40:
7a:1e:67:a4:88:a8:57:d5:34:31:ed:1e:dc:d7:f0:
c1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:66:AA:A5:83:0C:1C:59:46:97:1D:A3:50:36:2C:98:AE:24:3D:4E
X509v3 Authority Key Identifier:
keyid:93:CE:1F:20:27:18:2B:81:29:AB:0C:71:3A:8F:F5:21:C1:3D:44:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/318B732EC01E11EE8B99BA67775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.38.32.0/20
Signature Algorithm: sha256WithRSAEncryption
33:c6:c6:00:f5:ff:42:e6:0b:82:2e:02:6a:48:18:c8:fd:c7:
79:a9:6b:e5:6a:ed:98:21:cf:b9:0e:41:61:18:f3:d7:1e:ec:
ca:7f:38:56:f5:78:98:a1:45:b0:42:e1:93:d3:3e:a0:d0:d2:
ae:c3:aa:3e:9f:75:9f:7d:23:46:9b:45:8a:32:c9:ae:d9:5b:
12:37:f5:21:4a:24:42:41:d0:75:d1:78:50:00:92:42:00:8a:
56:7e:bc:e3:1d:b8:91:96:48:18:36:54:6f:6e:c8:63:fa:71:
de:6e:3c:70:a7:87:0e:64:00:dc:bf:65:a2:02:61:99:9b:21:
26:49:e0:c1:fb:c7:d0:00:04:ff:68:cb:48:eb:21:2f:b1:aa:
e0:54:e7:96:7c:0b:89:df:30:e1:e9:f1:da:61:e3:2e:21:d7:
c4:ab:ae:a8:20:66:20:68:87:80:75:74:f3:61:d5:69:04:2c:
20:47:91:e7:9b:52:96:66:65:82:f8:3e:c8:a7:6c:e9:22:84:
f4:b3:1d:85:2d:b0:dc:c6:02:a4:05:3d:98:75:b9:b5:60:c5:
87:9f:b9:cb:14:9c:e2:51:f7:cd:fa:09:b1:f7:5c:48:05:23:
da:03:de:ec:3e:ff:80:38:ad:8f:85:e0:92:35:5c:3b:a8:50:
5b:26:02:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org