Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/1E0FB6D08F7F11EF9FB0AB79762E951A.roa
File: 1E0FB6D08F7F11EF9FB0AB79762E951A.roa (raw, json)
Hash identifier: n2vu7XcWUsUwNbwSyI0njlOuXL62v3NdBUhJvSGejV4=
Subject key identifier: AD:C0:80:CE:D7:DB:01:7E:B6:9F:13:EF:4F:B4:3D:3E:DE:5E:C1:A2
Certificate issuer: /CN=F366D4FEAF/serialNumber=5B99DEF0BA6545154DE2598559B3AEA8D26250B7
Certificate serial: DB
Authority key identifier: 5B:99:DE:F0:BA:65:45:15:4D:E2:59:85:59:B3:AE:A8:D2:62:50:B7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/W5ne8LplRRVN4lmFWbOuqNJiULc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/1E0FB6D08F7F11EF9FB0AB79762E951A.roa
Signing time: Mon 21 Oct 2024 07:36:00 +0000
ROA not before: Mon 21 Oct 2024 07:35:56 +0000
ROA not after: Sun 31 Dec 2034 07:35:56 +0000
asID: 329504
IP address blocks: 102.210.29.0/24 maxlen: 24
102.210.31.0/24 maxlen: 24
2c0f:5740:8000::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/W5ne8LplRRVN4lmFWbOuqNJiULc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/W5ne8LplRRVN4lmFWbOuqNJiULc.mft
rsync://rpki.afrinic.net/repository/afrinic/W5ne8LplRRVN4lmFWbOuqNJiULc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366D4FEAF/serialNumber=5B99DEF0BA6545154DE2598559B3AEA8D26250B7
Validity
Not Before: Oct 21 07:35:56 2024 GMT
Not After : Dec 31 07:35:56 2034 GMT
Subject: CN=67160460-24f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2d:81:95:c3:fa:30:ca:b2:9e:cc:d0:cc:e8:
bb:8a:89:dc:f6:bd:78:d6:ff:38:88:e0:9c:38:bd:
cd:f0:ed:39:96:5b:ab:50:2c:85:db:a5:99:4d:7a:
b6:fc:59:08:13:fd:fb:55:17:04:ee:22:82:1a:b8:
2c:41:7b:9f:1f:1f:68:ed:8e:0f:55:57:85:a0:ea:
21:ac:c9:8e:d0:0d:1a:a5:1c:8f:69:f1:dd:af:8e:
25:be:c6:44:a6:98:eb:60:62:f6:0a:fa:fb:ee:2e:
6d:f2:e7:ba:59:b4:79:67:52:7b:6d:22:fa:9c:11:
f0:f3:c1:9d:35:31:42:15:d9:9f:82:9b:9a:f0:02:
4a:e7:22:d1:b4:ed:fe:da:b6:5a:d4:7f:ad:17:c5:
81:8a:4c:05:f2:39:16:48:24:00:1b:12:8b:35:2b:
1f:a0:44:f3:f8:23:ba:fb:86:7f:b9:52:df:68:5e:
50:42:88:13:8e:96:20:00:ca:1c:af:a2:d6:18:3f:
60:06:43:4d:eb:6a:31:41:96:8f:9a:18:fd:8a:61:
cb:7e:d0:43:3c:05:3f:e3:20:b5:38:11:55:e1:dd:
8a:d8:65:8b:4c:f5:7a:10:05:ac:a9:a5:fe:de:d5:
93:ca:f9:bf:4f:06:48:e0:df:e1:83:7a:ac:58:64:
37:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C0:80:CE:D7:DB:01:7E:B6:9F:13:EF:4F:B4:3D:3E:DE:5E:C1:A2
X509v3 Authority Key Identifier:
keyid:5B:99:DE:F0:BA:65:45:15:4D:E2:59:85:59:B3:AE:A8:D2:62:50:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/W5ne8LplRRVN4lmFWbOuqNJiULc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/W5ne8LplRRVN4lmFWbOuqNJiULc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366D4FE/514F0DB8ECDA11EE87AC6871775412E6/1E0FB6D08F7F11EF9FB0AB79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.29.0/24
102.210.31.0/24
IPv6:
2c0f:5740:8000::/33
Signature Algorithm: sha256WithRSAEncryption
90:6e:58:92:55:00:a1:19:00:90:d3:79:fc:1c:11:cb:93:bc:
8d:e7:e4:f8:14:4c:66:7a:49:ca:5a:8a:bc:15:aa:bb:76:bf:
d1:b0:6e:8b:98:e5:e2:76:bf:ce:0b:cc:aa:23:9e:2b:cb:bb:
1a:94:88:96:25:64:07:35:56:f1:a1:c1:14:4c:1c:88:be:cb:
4a:98:19:54:ca:2c:d0:23:57:42:28:b8:0f:ad:4f:23:e7:95:
f1:6b:3e:78:e3:cf:2a:49:21:2e:ba:2c:29:ce:b4:67:bc:81:
fa:58:18:d4:44:65:8e:ea:be:58:a8:60:e5:df:f3:be:d3:00:
78:ee:d9:c8:77:15:e0:e6:6c:67:fd:5f:ec:c3:46:e0:66:75:
d4:63:a9:2f:30:83:d9:7d:20:d1:0f:3a:4f:eb:85:8c:3e:89:
82:32:1a:e6:9c:de:af:96:09:7a:3c:9f:79:f3:74:e8:99:a4:
7d:5f:3a:b6:22:de:78:5c:cb:31:af:24:29:0b:bb:87:a9:15:
58:a6:b3:b7:af:a8:cd:6e:9e:1a:db:ea:b8:a5:c1:a4:98:65:
5c:71:3d:10:c4:09:51:f7:a5:a6:54:b8:0c:08:30:34:3d:c6:
40:ed:1c:8f:e7:a6:70:3f:3b:76:2a:05:76:aa:00:5c:bc:78:
03:61:b3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:37 2024 by rpki-client on console-fra.rpki-client.org