Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/431E183C79EE11EFAA7EEE76762E951A.roa
File: 431E183C79EE11EFAA7EEE76762E951A.roa (raw, json)
Hash identifier: 7aSukpXTBzkjxwef0CwTrreS0uSqRQoE76LmOrIjIRE=
Subject key identifier: E1:5B:59:41:CB:75:51:3E:7E:D1:F3:47:B1:2B:18:BC:27:4B:B5:B6
Certificate issuer: /CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Certificate serial: 0143
Authority key identifier: B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/431E183C79EE11EFAA7EEE76762E951A.roa
Signing time: Mon 23 Sep 2024 20:56:11 +0000
ROA not before: Mon 23 Sep 2024 20:56:07 +0000
ROA not after: Fri 31 Dec 2049 20:56:07 +0000
asID: 329057
IP address blocks: 102.216.8.0/24 maxlen: 24
102.216.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.mft
rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323 (0x143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Validity
Not Before: Sep 23 20:56:07 2024 GMT
Not After : Dec 31 20:56:07 2049 GMT
Subject: CN=66f1d5eb-2372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:17:54:ec:de:5f:cf:32:66:05:a0:ea:58:f8:
7d:7e:7a:f6:2f:96:8a:3a:6e:86:56:d1:72:41:a3:
41:8a:fb:06:5a:3b:cd:ba:69:05:32:e5:5c:4f:69:
ac:90:c1:68:5a:4c:17:da:ce:d7:b5:92:1c:f9:aa:
75:79:e3:b8:4a:1f:93:40:2b:fd:79:77:40:3c:ae:
9e:0a:59:ca:b3:98:4f:68:ca:95:61:19:a9:10:dd:
6e:51:c2:b1:31:35:86:40:18:97:b3:27:68:37:20:
f1:e8:c4:9f:c0:0d:4b:9f:14:c7:e3:19:c9:8b:5f:
3a:96:a4:b6:bd:f1:b4:52:cd:dc:4c:36:8e:bd:4d:
00:97:0a:c1:43:90:36:18:fd:60:1f:a1:99:ca:bc:
5d:a6:2d:90:45:e2:63:f0:8c:92:b4:71:95:2a:cf:
d3:0d:0d:5f:23:4a:79:1b:ec:f5:a3:ef:f0:14:89:
39:78:d7:f5:5d:79:f7:0d:87:c8:28:e8:20:3c:a0:
56:2c:75:19:51:f3:2f:60:5c:fc:67:62:16:9e:2b:
27:83:63:f6:b1:a3:a0:76:24:5a:0d:0a:f0:4e:cf:
a4:57:1a:5f:bc:6a:18:f1:37:a1:0c:5b:7c:62:8a:
26:9d:3f:a8:41:05:c7:9c:22:8a:43:b4:b3:2b:b2:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5B:59:41:CB:75:51:3E:7E:D1:F3:47:B1:2B:18:BC:27:4B:B5:B6
X509v3 Authority Key Identifier:
keyid:B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/431E183C79EE11EFAA7EEE76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.8.0/23
Signature Algorithm: sha256WithRSAEncryption
58:4b:f0:d9:32:8a:01:8a:d4:22:ca:56:f1:ca:96:27:6b:49:
e5:cb:95:47:2c:dd:57:42:cc:af:69:b9:41:23:f3:8b:2c:c7:
46:ae:c1:c5:e3:dd:4e:fd:0d:e5:68:07:7b:2d:4d:0a:8c:7a:
c4:d6:bf:28:e7:08:ec:10:ca:32:25:21:3c:1d:3a:bf:23:7f:
c8:77:6c:f5:fd:8f:9f:cb:00:f2:35:a0:8b:80:35:10:91:3b:
16:c5:69:ac:bf:72:fc:d4:31:10:5d:6c:0a:a6:5e:dd:52:84:
cd:11:70:df:1e:de:34:39:95:b8:e5:46:e0:5d:8a:84:62:96:
92:e9:46:a2:50:1a:c5:bb:67:87:57:00:91:e7:b5:3d:42:bb:
39:40:4b:10:b2:97:12:32:a4:ae:23:6b:07:21:25:e0:23:13:
76:f9:2e:6a:47:9d:35:0f:d9:cf:84:ec:db:62:ec:e0:f2:e9:
2a:a6:66:17:26:06:59:a4:de:d6:bc:76:c6:0c:fd:77:b7:93:
5c:25:11:6b:15:90:99:3a:dc:f7:15:67:32:65:6a:6f:5e:6c:
83:72:31:4a:19:23:68:35:43:bd:c8:9e:df:74:9a:03:af:29:
46:02:14:08:7d:9b:49:47:2b:2f:5a:ea:20:e1:db:91:53:4f:
2c:9e:f8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:46 2024 by rpki-client on console-ams.rpki-client.org