Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/6CE0579ABE9E11EEBC7C69AA775412E6.roa
File: 6CE0579ABE9E11EEBC7C69AA775412E6.roa (raw, json)
Hash identifier: kSDEs7oP+jey7M4wMBUDf1oTjGdLGimVQ2c+G5EoTkc=
Subject key identifier: 5C:9D:00:03:6E:6B:6F:43:A2:27:E3:E7:10:E9:B8:C4:88:D8:C8:1E
Certificate issuer: /CN=F3675292AF/serialNumber=8579BC27E73D7B29108EBFF397FB6CFD5C6B0247
Certificate serial: 03
Authority key identifier: 85:79:BC:27:E7:3D:7B:29:10:8E:BF:F3:97:FB:6C:FD:5C:6B:02:47
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/6CE0579ABE9E11EEBC7C69AA775412E6.roa
Signing time: Mon 29 Jan 2024 12:03:34 +0000
ROA not before: Mon 29 Jan 2024 12:03:30 +0000
ROA not after: Thu 29 Jan 2026 12:03:30 +0000
asID: 21003
IP address blocks: 102.215.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.crl
rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.mft
rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3675292AF/serialNumber=8579BC27E73D7B29108EBFF397FB6CFD5C6B0247
Validity
Not Before: Jan 29 12:03:30 2024 GMT
Not After : Jan 29 12:03:30 2026 GMT
Subject: CN=65b79415-d436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:ac:5e:8c:1f:d6:46:43:94:98:fa:91:b2:
cb:1e:d0:fd:87:b3:18:f8:3a:89:36:91:d6:22:08:
50:46:04:1c:eb:8e:36:99:de:03:29:ee:3d:65:c8:
4a:02:c6:e5:a2:df:60:79:27:5a:d9:5b:e1:f4:74:
49:44:6f:b8:33:f3:68:bd:3b:32:75:e7:33:4c:9f:
0d:6c:bd:b8:09:87:75:d6:90:55:b4:7e:c9:1a:bb:
26:a0:8f:2b:95:d6:a6:de:9b:0d:65:33:32:6d:b7:
cc:48:2f:9b:49:4a:0b:38:2e:d1:60:54:de:43:a5:
6b:a8:34:a8:64:3f:25:bd:50:8e:ff:25:ad:72:6c:
4d:0c:fe:27:34:96:82:0f:47:15:59:94:a1:8f:52:
6f:c4:4d:69:d3:41:36:66:7f:fd:5e:12:05:f3:d8:
70:77:e4:70:88:30:3b:85:1d:6c:46:ec:9b:41:35:
d8:e9:16:c4:96:cc:b8:10:c6:40:6f:40:0f:ce:3c:
2e:73:08:64:6a:4c:da:96:6d:d2:8c:7d:75:db:cf:
bc:f7:28:09:c4:a0:a1:c8:ad:79:6e:c1:14:0a:46:
23:b6:08:29:02:d8:34:94:d2:07:24:21:5d:93:b5:
07:b6:84:dc:e1:d1:10:4c:39:54:be:03:35:5d:f7:
6a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9D:00:03:6E:6B:6F:43:A2:27:E3:E7:10:E9:B8:C4:88:D8:C8:1E
X509v3 Authority Key Identifier:
keyid:85:79:BC:27:E7:3D:7B:29:10:8E:BF:F3:97:FB:6C:FD:5C:6B:02:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/hXm8J-c9eykQjr_zl_ts_VxrAkc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hXm8J-c9eykQjr_zl_ts_VxrAkc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3675292/264D17FEBDDC11EEB41E414D775412E6/6CE0579ABE9E11EEBC7C69AA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.196.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:61:18:80:93:87:6c:e3:e8:fe:11:52:bf:d3:d3:5d:f8:b2:
60:40:9d:a5:83:49:f5:18:15:48:d8:7d:76:b6:4e:d9:ba:ad:
ed:89:24:cb:b5:a6:3a:18:b9:aa:64:a1:c0:c0:10:af:0b:20:
c9:53:45:69:49:c3:dd:0d:ff:0a:50:1a:5a:05:8c:ab:a1:ba:
37:21:ed:ff:af:8f:64:98:9b:7f:33:f6:76:a4:22:1d:26:60:
f8:f0:37:14:24:73:5b:db:9c:fa:a0:54:a6:ef:73:c0:6a:0d:
b6:31:cc:45:68:a0:84:7d:5a:95:ab:a6:d4:c4:11:b2:de:43:
94:fd:7a:e9:af:d8:64:c2:3f:16:3b:0c:47:80:e5:d9:6e:89:
ff:3f:13:e0:bc:db:67:d0:94:f6:a5:51:77:9e:68:d9:d8:ae:
9c:60:c2:21:63:01:85:a4:c8:cc:e8:af:b7:06:01:6c:c7:10:
5d:ef:0b:cc:fd:bc:8f:3d:0c:3c:15:0c:15:b8:38:53:43:f2:
88:a5:25:02:01:bd:1d:19:e3:8e:4c:68:42:04:3e:76:86:fe:
67:fa:26:d9:18:26:7b:c1:9a:07:d3:81:c3:ec:50:51:4e:1c:
52:83:ec:45:7f:6c:fc:f2:6e:ca:ae:fe:5b:b4:ea:d8:91:87:
67:68:ce:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 03:41:28 2024 by rpki-client on console-ams.rpki-client.org