Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/51E304A0EC2711ED9BA54C1B4AD9E6FC.roa
File: 51E304A0EC2711ED9BA54C1B4AD9E6FC.roa (raw, json)
Hash identifier: 7a9rpkcEGw7JyQsWukjfkTEVfb6tWe/HTlWVrmcsPFA=
Subject key identifier: 12:54:E5:28:F2:55:C4:29:D0:F5:C5:01:E1:0A:33:31:58:DD:02:C2
Certificate issuer: /CN=F36797C7AF/serialNumber=F4171D4EA249CA147AB8DEC205DCB51F49988B50
Certificate serial: 01D1
Authority key identifier: F4:17:1D:4E:A2:49:CA:14:7A:B8:DE:C2:05:DC:B5:1F:49:98:8B:50
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9BcdTqJJyhR6uN7CBdy1H0mYi1A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/51E304A0EC2711ED9BA54C1B4AD9E6FC.roa
Signing time: Sat 06 May 2023 16:01:54 +0000
ROA not before: Sat 06 May 2023 16:01:50 +0000
ROA not after: Tue 31 May 2033 16:01:50 +0000
asID: 328964
IP address blocks: 102.217.253.0/24 maxlen: 24
2c0f:4880::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/9BcdTqJJyhR6uN7CBdy1H0mYi1A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/9BcdTqJJyhR6uN7CBdy1H0mYi1A.mft
rsync://rpki.afrinic.net/repository/afrinic/9BcdTqJJyhR6uN7CBdy1H0mYi1A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465 (0x1d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36797C7AF/serialNumber=F4171D4EA249CA147AB8DEC205DCB51F49988B50
Validity
Not Before: May 6 16:01:50 2023 GMT
Not After : May 31 16:01:50 2033 GMT
Subject: CN=645679f2-2cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5e:b3:86:72:79:76:61:2a:9c:10:a5:3c:45:
53:e1:b6:78:3c:2d:ad:8c:b0:56:c9:76:41:52:14:
37:b4:b6:e8:cf:25:8b:a3:c1:ff:75:01:0e:67:26:
2b:a5:e8:95:c9:9d:27:fc:13:ba:9c:65:8f:56:e0:
3c:82:7b:f6:45:70:32:ce:c2:21:72:4e:6f:62:53:
36:6d:2c:6a:52:50:93:70:bd:4d:6c:fb:e5:6d:9c:
ec:63:27:33:d9:17:75:52:63:65:11:01:19:e1:bd:
38:e5:3d:0e:da:1b:5e:f1:09:94:b7:53:52:55:a3:
12:a6:ca:45:b0:3b:3b:88:83:c6:e8:fe:ab:58:a4:
6e:c6:ad:35:c0:0c:f7:75:a5:10:9f:8e:89:90:a9:
57:c8:d7:5f:27:73:e9:9e:75:27:e8:dc:c0:e7:ab:
26:94:0d:ac:36:dd:c0:5b:c1:1b:7f:f3:44:7c:d4:
8e:de:be:29:14:10:aa:43:28:c2:fa:aa:34:fb:94:
54:f6:91:b0:de:df:0e:44:f1:a5:4b:88:fa:f9:7e:
40:73:8a:3e:00:5d:ef:38:20:95:c3:02:c4:ee:8c:
37:b6:cc:8b:51:b0:5f:72:71:f2:07:8f:5b:df:56:
fb:06:30:c4:7f:ec:9d:9c:88:2e:9b:69:06:f5:56:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:54:E5:28:F2:55:C4:29:D0:F5:C5:01:E1:0A:33:31:58:DD:02:C2
X509v3 Authority Key Identifier:
keyid:F4:17:1D:4E:A2:49:CA:14:7A:B8:DE:C2:05:DC:B5:1F:49:98:8B:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/9BcdTqJJyhR6uN7CBdy1H0mYi1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9BcdTqJJyhR6uN7CBdy1H0mYi1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36797C7/DEACBA2E94E011ECBFBC4E955A40D577/51E304A0EC2711ED9BA54C1B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.253.0/24
IPv6:
2c0f:4880::/32
Signature Algorithm: sha256WithRSAEncryption
12:98:0a:d5:13:65:2f:ea:1b:c2:1b:82:bb:9d:35:49:93:51:
2c:e4:1f:af:36:4b:4e:41:d8:5b:ca:b0:06:bc:7c:13:88:03:
bf:e4:71:91:a8:54:70:11:59:dd:ca:51:ad:54:3d:4d:41:4e:
f7:21:09:34:28:76:ea:c4:37:b9:3f:22:c0:c2:d8:22:2d:fb:
46:c2:a9:ea:59:9b:f6:d8:19:2d:15:a5:87:20:47:69:3c:51:
c4:40:4f:45:ed:f6:d7:07:f8:c7:9b:df:8f:e8:12:65:2c:fd:
a1:71:9b:4f:b6:04:92:66:2d:a9:f6:1d:12:d6:dc:d8:9f:94:
b6:78:3c:a0:35:e5:81:b0:96:02:38:c1:40:28:f0:03:4d:a2:
7f:40:f9:74:cc:a9:21:81:f8:51:e9:cb:72:02:5a:05:a4:cd:
b9:db:d1:43:77:aa:15:7d:67:97:ea:39:20:f1:cc:58:43:a0:
6f:19:16:ec:9d:b6:11:71:df:3d:4a:57:27:95:37:08:ec:f4:
29:de:bf:9c:c6:03:b0:ab:13:73:d5:5f:89:bb:5a:f7:34:b1:
35:b9:e7:ed:35:cf:b5:62:f0:c1:a3:c3:3b:e0:73:58:28:7b:
41:11:4c:aa:83:26:02:11:64:78:b3:5a:a2:5c:fc:27:1d:59:
10:52:78:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:55 2024 by rpki-client on console-ams.rpki-client.org