Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/2A9617F866B411EFA2140445762E951A.roa
File: 2A9617F866B411EFA2140445762E951A.roa (raw, json)
Hash identifier: aNfthBucjZ9+psYAUe+uWNPR/qRQFUARcMPznxavRTY=
Subject key identifier: D2:11:FF:05:12:48:AE:0B:E9:6F:25:52:4E:76:31:FD:B5:DD:4C:66
Certificate issuer: /CN=F366553AAF/serialNumber=C07079E5175605888D9BE4767F7C2BFD9714E027
Certificate serial: 07D3
Authority key identifier: C0:70:79:E5:17:56:05:88:8D:9B:E4:76:7F:7C:2B:FD:97:14:E0:27
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/2A9617F866B411EFA2140445762E951A.roa
Signing time: Fri 30 Aug 2024 09:42:27 +0000
ROA not before: Fri 30 Aug 2024 09:42:23 +0000
ROA not after: Thu 31 Aug 2034 09:42:23 +0000
asID: 328441
IP address blocks: 102.68.24.0/21 maxlen: 21
2c0f:ecf8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.mft
rsync://rpki.afrinic.net/repository/afrinic/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2003 (0x7d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366553AAF/serialNumber=C07079E5175605888D9BE4767F7C2BFD9714E027
Validity
Not Before: Aug 30 09:42:23 2024 GMT
Not After : Aug 31 09:42:23 2034 GMT
Subject: CN=66d19403-0931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a2:60:52:03:ad:d1:84:87:c0:dc:eb:71:4c:
31:de:e8:ec:cd:74:c2:57:54:68:d3:7d:c4:cc:62:
dd:d3:35:81:2c:c3:ae:bb:d1:f8:40:9a:b4:62:9c:
b9:69:e0:58:ba:65:0f:c6:19:7d:87:a0:a8:2d:eb:
e7:c7:ad:27:f3:22:ea:d3:31:bf:72:0e:52:d0:ae:
1c:56:3a:2c:b5:bb:da:31:85:99:f0:05:a3:9e:95:
3a:53:8f:fd:79:7e:68:35:9c:97:1d:47:5e:4e:a3:
6f:98:fd:09:cb:3e:60:fb:ad:11:4b:f5:ed:4f:7d:
24:99:b4:7d:ce:38:d6:34:e0:25:e6:ec:e8:ba:09:
09:9e:f5:8f:f9:7d:e1:a6:e2:f3:2f:7d:20:b8:4b:
b8:a5:0f:cc:e1:f5:c2:85:60:4a:01:43:c9:27:ea:
17:41:43:29:8c:e0:d4:7f:33:53:50:54:bb:fb:2b:
e0:01:84:a5:8a:7b:62:89:d4:f0:1f:57:e8:42:1e:
ff:e1:5a:a3:72:a6:24:86:9c:f7:b9:34:54:ac:69:
fb:37:e5:68:ea:8a:6b:7e:b3:c5:74:43:d8:28:9a:
67:ab:91:5b:b0:73:52:89:bf:c3:8b:0d:a3:16:29:
17:7e:ba:6d:c0:e8:01:1a:d0:92:e8:ac:b1:bc:a8:
ff:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:11:FF:05:12:48:AE:0B:E9:6F:25:52:4E:76:31:FD:B5:DD:4C:66
X509v3 Authority Key Identifier:
keyid:C0:70:79:E5:17:56:05:88:8D:9B:E4:76:7F:7C:2B:FD:97:14:E0:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wHB55RdWBYiNm-R2f3wr_ZcU4Cc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366553A/859681AC703711E9878A505EF8AEA228/2A9617F866B411EFA2140445762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.24.0/21
IPv6:
2c0f:ecf8::/32
Signature Algorithm: sha256WithRSAEncryption
4f:4e:7a:3a:0b:3b:9c:b7:d3:1e:e7:e8:9e:26:96:50:39:34:
b8:15:cf:df:d2:78:21:95:32:13:b9:90:96:7b:29:a6:e9:45:
6e:ae:63:be:15:1e:d6:4d:68:b6:4b:31:a6:61:37:e6:e7:6b:
7a:8f:c4:77:75:9a:51:72:fd:b9:9f:11:12:e1:f0:e3:70:ff:
50:eb:f1:e5:c9:c1:4e:5c:83:e6:24:e9:d9:78:5b:a0:52:cb:
40:dc:7f:aa:5a:2a:25:1d:b9:b4:f0:b4:8d:f8:81:fe:e2:d7:
24:b9:02:ce:03:16:4c:1a:a4:67:86:4d:2e:65:77:d4:94:1e:
1d:49:d9:19:bb:ef:ad:6a:ce:24:84:d0:a0:9e:de:19:d6:58:
9a:9b:e8:82:53:e5:b5:ac:18:db:7d:84:e1:2d:db:85:eb:d3:
d5:eb:88:86:6e:c3:d4:9b:33:37:6d:34:e9:fd:65:80:dc:fe:
21:60:ec:1c:aa:09:95:e3:fd:69:a7:ef:d8:d7:4e:27:9a:85:
bd:fe:fa:57:e3:b0:b2:63:84:f0:2b:8c:90:93:ba:8c:28:f9:
42:67:a3:cd:bc:02:be:f7:0e:87:89:6e:a4:39:58:79:0e:7b:
7c:6f:c5:4e:ab:a1:fa:05:5c:a4:2d:49:d8:1b:cd:6d:ed:15:
a7:54:85:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org