Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/0017E4D4A97211EEA3720099775412E6.roa
File: 0017E4D4A97211EEA3720099775412E6.roa (raw, json)
Hash identifier: H8fOPMFbPRz5oS0eFlNLre5s7jTcp4FGPiIDncTFMUk=
Subject key identifier: 47:9F:E5:5D:EB:36:08:F8:E9:58:47:77:F7:3D:DB:77:68:7C:D6:6F
Certificate issuer: /CN=F36709EDAF/serialNumber=6F22BBC87A0F084A04E488AE91F46EC88A0FB6BB
Certificate serial: 02
Authority key identifier: 6F:22:BB:C8:7A:0F:08:4A:04:E4:88:AE:91:F4:6E:C8:8A:0F:B6:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/byK7yHoPCEoE5IiukfRuyIoPtrs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/0017E4D4A97211EEA3720099775412E6.roa
Signing time: Tue 02 Jan 2024 13:22:39 +0000
ROA not before: Tue 02 Jan 2024 13:22:35 +0000
ROA not after: Thu 01 Jan 2026 13:22:35 +0000
asID: 329297
IP address blocks: 102.211.172.0/24 maxlen: 24
102.211.173.0/24 maxlen: 24
102.211.174.0/24 maxlen: 24
102.211.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/byK7yHoPCEoE5IiukfRuyIoPtrs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/byK7yHoPCEoE5IiukfRuyIoPtrs.mft
rsync://rpki.afrinic.net/repository/afrinic/byK7yHoPCEoE5IiukfRuyIoPtrs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36709EDAF/serialNumber=6F22BBC87A0F084A04E488AE91F46EC88A0FB6BB
Validity
Not Before: Jan 2 13:22:35 2024 GMT
Not After : Jan 1 13:22:35 2026 GMT
Subject: CN=65940e1f-397a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f0:9f:ad:29:0d:a9:d7:8d:15:09:18:f2:98:
af:18:54:85:c0:ed:49:23:f6:fd:24:67:54:22:9f:
e4:1c:45:be:80:1e:02:1a:48:f2:11:ff:69:25:48:
dc:2b:ce:95:ba:9c:5e:e0:cf:e4:0e:d0:72:1c:60:
2c:72:81:d1:40:47:37:40:aa:47:f9:d0:2e:af:80:
ff:30:b7:18:e7:36:fb:a2:a4:18:35:13:e3:7a:bd:
21:6a:72:6a:1b:f9:ed:26:31:40:19:6a:12:05:0f:
d4:70:d2:cd:1c:9d:8a:be:3f:65:cc:63:97:41:8e:
89:91:74:a6:11:a9:d7:d0:02:6f:84:92:8e:ce:d9:
b6:df:77:2a:39:23:09:4a:ec:5d:89:0b:94:69:73:
9f:b7:cf:4d:1f:d5:c8:1b:9b:2f:e3:17:c6:1f:9e:
6b:e5:6c:2c:64:79:15:c5:74:5a:94:ad:44:ad:fe:
74:cf:25:54:6d:99:5a:4e:6b:6e:e7:2f:e2:ce:c4:
66:24:57:f3:bd:b0:d5:70:f6:2f:80:93:a7:cc:ba:
11:06:cb:c8:69:90:ee:ab:11:a2:71:27:75:f3:7f:
3e:bc:b7:2a:9b:2a:a8:dc:9e:d9:c6:3b:cd:b3:b1:
b5:4f:fe:5e:92:02:6a:41:86:0a:d2:06:9f:89:b1:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:9F:E5:5D:EB:36:08:F8:E9:58:47:77:F7:3D:DB:77:68:7C:D6:6F
X509v3 Authority Key Identifier:
keyid:6F:22:BB:C8:7A:0F:08:4A:04:E4:88:AE:91:F4:6E:C8:8A:0F:B6:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/byK7yHoPCEoE5IiukfRuyIoPtrs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/byK7yHoPCEoE5IiukfRuyIoPtrs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36709ED/978FB7C6A97011EEB936A996775412E6/0017E4D4A97211EEA3720099775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.172.0/22
Signature Algorithm: sha256WithRSAEncryption
38:74:dc:c6:d8:96:4d:07:4d:1a:dd:e2:96:ef:2f:20:da:17:
e8:59:4f:7c:ee:3b:b9:37:0d:19:cd:85:97:52:1d:e7:9b:a3:
1a:90:12:f7:0a:c3:59:fd:ad:46:9f:a4:35:90:4c:b6:c7:7a:
a8:b9:40:54:d8:e7:23:79:37:f8:10:40:75:e8:69:13:67:57:
c8:f8:38:f8:c0:48:16:c0:6d:e0:ec:2d:9c:a3:7e:05:4c:e4:
1b:ad:ff:24:f4:fe:96:39:73:40:9e:6c:d1:a8:a3:d1:77:af:
6c:48:15:77:ea:48:70:71:90:88:4c:c8:3e:aa:91:f2:56:64:
3e:ec:c8:0c:e6:ed:30:77:81:f5:84:6e:c9:02:80:be:0a:98:
61:ce:29:2a:85:d1:ce:9e:36:f3:0e:75:d3:d3:71:b4:62:d4:
9d:c3:43:8f:c2:ba:97:07:28:74:4f:6c:bb:c2:75:7b:1e:d1:
0e:c6:f6:62:a0:80:81:e3:71:a2:e2:1d:f5:96:b1:7c:41:6c:
0b:0b:ee:41:fa:32:ee:22:ad:e0:5d:60:bf:dd:d1:b2:c3:78:
93:eb:a1:dc:07:99:38:9a:e8:c2:50:ba:ea:fb:a6:a3:40:bf:
42:25:90:c7:71:38:38:36:02:d7:d1:8f:2e:bd:41:d4:f9:79:
a2:d4:43:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org