Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/0145205ABE9F11EEAB4694AB775412E6.roa
File: 0145205ABE9F11EEAB4694AB775412E6.roa (raw, json)
Hash identifier: nCtysz82HWpQKRVxjrkp1CPdrS4qO3BX0cqzzKNO/pQ=
Subject key identifier: 58:2A:2D:2C:23:ED:9C:99:39:EE:15:6C:55:75:AB:21:5A:8F:3E:D5
Certificate issuer: /CN=F3675292AF/serialNumber=8579BC27E73D7B29108EBFF397FB6CFD5C6B0247
Certificate serial: 0B
Authority key identifier: 85:79:BC:27:E7:3D:7B:29:10:8E:BF:F3:97:FB:6C:FD:5C:6B:02:47
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/0145205ABE9F11EEAB4694AB775412E6.roa
Signing time: Mon 29 Jan 2024 12:07:43 +0000
ROA not before: Mon 29 Jan 2024 12:07:39 +0000
ROA not after: Thu 29 Jan 2026 12:07:39 +0000
asID: 21003
IP address blocks: 102.222.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.crl
rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.mft
rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3675292AF/serialNumber=8579BC27E73D7B29108EBFF397FB6CFD5C6B0247
Validity
Not Before: Jan 29 12:07:39 2024 GMT
Not After : Jan 29 12:07:39 2026 GMT
Subject: CN=65b7950e-454b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:b0:10:6a:03:09:fb:03:93:01:6f:e6:8e:
b5:58:bf:55:bc:41:dc:59:fa:42:e2:8f:ea:51:a7:
48:18:01:38:fc:76:a2:4e:39:4d:47:41:aa:f4:bb:
a7:68:b1:bd:9c:e0:29:ab:ed:0e:da:fd:8c:f7:9e:
34:0f:0a:f2:50:76:84:99:2a:2d:a7:87:7a:6c:49:
65:04:7b:5d:0c:34:a9:da:ee:71:34:a7:a1:43:88:
7a:ff:70:8b:4e:e6:5f:46:c9:10:de:0e:3f:0e:79:
c1:51:3a:ca:93:39:05:9d:63:1e:e5:d5:8c:76:09:
13:62:e9:4a:4f:8a:54:af:bd:74:a5:04:11:b2:7f:
89:f4:27:02:1d:9c:ef:f5:10:28:60:de:f4:f9:c7:
11:47:d2:81:73:89:a1:fb:1d:1d:58:3a:61:aa:29:
64:10:1f:1e:11:42:47:d0:f9:8d:45:e9:c8:67:3e:
d2:4b:8c:7a:4b:29:6b:59:7e:d6:e0:86:40:9f:02:
c3:c9:37:7c:47:9e:4b:81:f1:9e:94:a0:31:7c:8a:
9b:31:93:34:e3:2d:b8:c5:ab:e9:49:58:c0:cf:b0:
96:2d:71:78:7b:a5:a7:27:e5:f9:34:f4:4f:47:1f:
10:20:67:7c:d9:e8:d5:20:4c:49:a6:9d:a5:31:09:
80:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2A:2D:2C:23:ED:9C:99:39:EE:15:6C:55:75:AB:21:5A:8F:3E:D5
X509v3 Authority Key Identifier:
keyid:85:79:BC:27:E7:3D:7B:29:10:8E:BF:F3:97:FB:6C:FD:5C:6B:02:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/0145205ABE9F11EEAB4694AB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.253.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c4:0e:3d:1b:43:ca:e5:b9:20:66:27:a7:ab:ec:c1:c1:23:
de:fe:f6:6d:a8:82:15:41:16:90:95:be:a6:5d:95:18:4e:34:
38:c4:93:49:ab:cd:21:23:cf:4d:b6:9b:8f:ab:53:b0:4d:67:
3d:3e:6d:74:9a:9e:b6:4f:97:a0:8a:58:85:0c:48:b6:cc:a6:
c4:d7:a3:0e:1e:1a:b6:04:6d:57:be:06:08:8d:d4:f2:db:78:
f5:36:4a:cb:14:0b:f2:6c:39:b3:0e:07:29:d9:17:93:76:35:
af:d3:3b:0c:09:44:27:39:87:70:7a:1e:81:ba:23:65:06:8d:
0c:39:ae:21:01:a9:a4:fd:07:cf:0f:ed:60:4e:ab:e4:48:c1:
5f:22:67:b8:46:2f:a7:a6:82:33:8f:3f:7a:e2:5b:35:c9:7c:
55:1e:e7:e3:1b:3f:4c:a8:8a:60:45:b2:a2:10:bb:b1:f7:b5:
30:80:63:1b:da:33:cc:b7:02:35:db:54:85:f1:7e:41:7e:ed:
e4:d2:cb:91:2f:11:bf:59:38:ff:4e:97:64:78:79:9a:92:bd:
3a:65:38:3e:dd:3b:4d:4f:df:76:e8:f5:99:a6:cc:49:b3:31:
d2:30:a3:93:04:87:5d:ad:2d:6a:05:12:a3:fb:a1:29:5c:b7:
1b:28:9d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 04:04:16 2024 by rpki-client on console-fra.rpki-client.org