Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/748BEB066CB611EE8D6C01504AD9E6FC.roa
File: 748BEB066CB611EE8D6C01504AD9E6FC.roa (raw, json)
Hash identifier: 9Nr7hTGhvg8y+DpCJjw/pxjzdvmGp2e5v2ZBaNJrhrU=
Subject key identifier: A2:C0:CE:9D:CF:F5:E2:DA:9F:29:14:A8:78:B7:6E:2B:87:94:27:E7
Certificate issuer: /CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Certificate serial: 0482
Authority key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/748BEB066CB611EE8D6C01504AD9E6FC.roa
Signing time: Tue 17 Oct 2023 06:28:59 +0000
ROA not before: Tue 17 Oct 2023 06:28:55 +0000
ROA not after: Fri 17 Oct 2025 06:28:55 +0000
asID: 20473
IP address blocks: 102.216.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154 (0x482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Validity
Not Before: Oct 17 06:28:55 2023 GMT
Not After : Oct 17 06:28:55 2025 GMT
Subject: CN=652e29ab-8e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:27:49:75:0a:a8:5a:1c:45:65:52:78:de:
a3:12:7b:8c:9d:06:86:2b:0e:26:88:46:16:05:b0:
4d:1b:d0:88:9e:65:e3:31:eb:9e:84:9c:ba:f2:35:
4b:d9:8c:8f:9a:ed:27:ff:19:4e:ba:44:54:d5:86:
4e:05:ce:70:d1:4e:c3:21:68:94:9e:2e:7c:9e:14:
67:85:f0:59:24:d9:2d:43:60:80:82:b5:75:2f:ae:
68:9b:a9:29:f9:14:27:3d:6f:93:96:c9:ba:de:5a:
f4:81:cf:75:6c:e9:5e:ba:0d:3f:a1:ce:8a:b4:ec:
07:2a:2a:0a:b9:eb:9a:7d:ea:56:d1:51:cb:12:54:
b6:ed:2e:94:d1:5c:81:62:7b:8d:bf:6a:c9:25:dd:
1e:d2:a6:d2:64:65:19:8b:5d:9a:8f:ec:d3:4a:f1:
84:ba:ec:44:1f:c9:7c:a1:3e:95:96:14:ce:f3:e1:
0e:21:d3:43:34:10:a8:16:b0:9d:58:d4:55:47:23:
2c:ef:03:fc:53:e0:23:0b:4c:72:2c:ab:49:40:59:
54:1e:27:a6:c4:f3:bb:67:60:7a:e8:cc:a0:64:78:
72:bd:49:37:81:36:03:b1:28:6e:d1:05:aa:9f:d4:
d8:21:21:2f:0d:57:e7:81:5f:00:5e:d1:a7:87:7c:
ac:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C0:CE:9D:CF:F5:E2:DA:9F:29:14:A8:78:B7:6E:2B:87:94:27:E7
X509v3 Authority Key Identifier:
keyid:4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/748BEB066CB611EE8D6C01504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.159.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b7:27:6f:2b:e9:9d:4c:cb:b6:5b:46:d8:50:4f:71:cf:be:
95:a4:4c:8e:ea:3f:bb:ed:8c:dd:77:51:55:0c:64:bf:4f:03:
6a:b2:2b:b3:f7:05:72:07:76:fb:a0:ec:5c:21:3b:2a:89:ea:
eb:ee:be:77:0a:de:7b:e1:c5:00:f6:06:e1:3d:ed:aa:d5:0a:
ea:5c:ee:ee:ae:cf:51:b0:67:43:ca:d9:72:a4:2d:d5:78:5c:
b8:e2:d9:be:0d:b6:6e:15:80:ae:41:3a:e9:4f:d2:33:0a:1b:
ca:69:d0:5d:2f:a5:07:eb:47:a8:3d:62:ac:fe:11:8b:7b:94:
c8:15:61:e9:04:6f:6f:cf:c8:f4:de:82:95:e5:db:b3:69:85:
cf:0b:cc:ac:d1:ba:b0:ca:f7:c3:08:aa:8e:d5:df:5a:a0:4d:
58:18:b9:21:34:75:c5:9c:60:82:59:3b:7b:19:f9:1f:0a:e8:
4c:63:01:65:9b:9a:e1:5e:d7:b4:d4:f3:a2:e4:ff:8a:fd:c5:
06:c8:2d:96:77:be:2e:b6:56:4b:7f:d3:0b:da:7c:bf:d3:27:
90:5c:e6:2f:80:90:08:af:3f:70:65:b4:e4:e6:31:ba:6e:c2:
9d:8b:1b:c1:36:c3:2c:4e:d2:ea:e4:a4:0d:90:5a:dd:84:f5:
2a:a0:a7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:48:16 2024 by rpki-client on console-fra.rpki-client.org