Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/73DBD4FA428511EFA029B45B762E951A.roa
File: 73DBD4FA428511EFA029B45B762E951A.roa (raw, json)
Hash identifier: QAi6WbgSVfhI+TNStf+5Kn/V9ArZCu3jwOYAtj3nVxk=
Subject key identifier: 83:43:7E:B5:21:9C:F5:5B:FB:AF:05:B4:75:FF:08:6A:15:DE:C7:0B
Certificate issuer: /CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Certificate serial: 05A8
Authority key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/73DBD4FA428511EFA029B45B762E951A.roa
Signing time: Mon 15 Jul 2024 08:37:21 +0000
ROA not before: Mon 15 Jul 2024 08:37:18 +0000
ROA not after: Wed 15 Jul 2026 08:37:18 +0000
asID: 328748
IP address blocks: 102.216.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1448 (0x5a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Validity
Not Before: Jul 15 08:37:18 2024 GMT
Not After : Jul 15 08:37:18 2026 GMT
Subject: CN=6694dfc1-f972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5b:f6:d0:48:7a:80:7c:59:da:a6:98:80:f2:
3b:9b:b5:08:ae:c6:46:45:64:ec:bd:80:5f:7c:7e:
0a:24:0e:51:55:a9:dd:a8:52:1f:bb:ab:26:a6:4c:
92:10:1c:1a:5b:d7:3e:3d:8b:13:18:f5:c5:5c:ef:
5b:47:56:f3:58:9e:46:fb:15:8d:cd:85:ad:3d:4a:
dd:fc:5f:0c:4c:64:7e:a8:42:1f:b2:5b:e5:d2:22:
3c:af:3e:b7:46:c1:98:9e:c8:a5:52:52:a9:77:91:
6f:e9:64:61:32:5a:ba:93:8d:03:e6:66:b9:37:db:
4e:8a:ab:27:a3:00:0c:14:3a:4d:92:54:e9:77:e6:
83:7b:05:de:2f:0b:7b:f4:ce:cf:e6:01:7e:87:0d:
79:55:c0:38:be:6e:f1:ac:9b:fb:3c:af:c7:6a:04:
8d:8f:65:b9:9f:dd:40:07:96:c7:59:8b:ca:3b:31:
3a:c6:c8:54:0c:f8:a3:bb:4e:3a:26:cb:e0:72:e2:
e8:8b:12:75:8a:9d:10:fe:c6:1c:0e:45:15:d3:d8:
1a:8a:87:a8:f9:89:ae:c2:5d:08:5f:7f:e2:68:2b:
24:1e:5e:21:bf:dd:e2:3a:78:39:39:e3:a4:de:05:
23:71:9e:81:4f:50:be:9e:23:df:d1:f8:b1:e0:dd:
7a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:43:7E:B5:21:9C:F5:5B:FB:AF:05:B4:75:FF:08:6A:15:DE:C7:0B
X509v3 Authority Key Identifier:
keyid:4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/73DBD4FA428511EFA029B45B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ac:ea:96:1a:23:d4:b7:a4:bd:e7:8c:4e:ea:58:ce:7b:af:
31:6d:04:55:45:ae:c0:36:e6:c7:22:3f:9b:10:6f:76:ec:8d:
10:a3:0a:ee:56:4a:a8:16:3c:a3:c4:c2:a8:b2:c4:dd:67:bd:
fb:a1:4c:0f:30:10:52:d5:2b:49:44:c5:5b:29:2b:43:12:d8:
cd:d2:af:bb:fa:4d:f8:12:f1:cc:78:30:24:7c:2d:f2:ad:b8:
1f:e9:0d:aa:2e:5e:6c:a3:52:69:74:af:77:ec:58:51:93:93:
c5:f3:c6:7c:44:70:b5:f9:50:3a:5c:75:c4:b2:15:8a:9d:31:
72:90:6e:a1:f7:af:f5:72:e7:5b:09:27:c1:6e:0e:c5:c3:90:
2d:78:fc:9d:96:1f:9c:b6:dc:c9:54:94:da:df:23:16:8d:51:
b4:d7:d3:17:30:b9:d7:b6:da:9f:74:92:16:db:f8:2b:53:f9:
2f:30:43:db:7b:bb:0f:82:e6:a9:91:4d:95:35:17:7c:5c:c1:
e1:f7:1a:7b:e9:e8:85:96:1f:33:47:39:70:5f:6a:e4:2d:dc:
66:23:78:06:de:db:3a:10:be:2e:a4:35:a3:16:9e:f8:e2:f0:
c6:26:f0:2c:be:2d:40:25:be:12:9e:21:73:85:f1:de:ed:3c:
71:c4:e4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org