Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/8E74FB4879B211EF8A6E278A762E951A.roa
File: 8E74FB4879B211EF8A6E278A762E951A.roa (raw, json)
Hash identifier: HVgCoNFWTE1lwq+yr47vjP6O5PwPrCMNfBORofraa3A=
Subject key identifier: CE:A5:58:63:CE:CF:BE:4E:11:3F:5B:FA:48:63:E9:58:15:B0:5E:D5
Certificate issuer: /CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Certificate serial: 013F
Authority key identifier: B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/8E74FB4879B211EF8A6E278A762E951A.roa
Signing time: Mon 23 Sep 2024 13:48:47 +0000
ROA not before: Mon 23 Sep 2024 13:48:44 +0000
ROA not after: Sun 31 Dec 2034 13:48:44 +0000
asID: 329057
IP address blocks: 102.216.10.0/24 maxlen: 24
102.216.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.mft
rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319 (0x13f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Validity
Not Before: Sep 23 13:48:44 2024 GMT
Not After : Dec 31 13:48:44 2034 GMT
Subject: CN=66f171bf-4875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:54:8e:86:96:75:2a:d6:70:32:71:0b:fe:44:
73:97:c8:55:e8:0c:98:c1:c5:11:37:b0:66:dd:be:
66:3d:bf:cd:11:ef:ce:ed:ac:31:3b:9d:17:b1:46:
10:6a:cf:9e:eb:3f:ff:b2:bf:23:88:7a:28:e3:28:
91:ed:12:cf:b8:48:03:4c:52:50:37:01:f5:e7:63:
2d:3f:37:c3:fc:7a:6a:09:c4:25:4f:be:1b:8a:89:
5e:85:73:e8:f2:27:6b:e7:62:58:f9:d1:c8:60:f1:
b1:5b:21:ab:c0:c8:43:f7:c6:49:d4:4c:90:c6:47:
af:da:d1:51:77:aa:03:b0:42:da:3c:2b:6c:aa:2f:
b2:ff:cf:2f:ba:b5:e7:6d:2f:69:cb:89:4d:52:59:
13:d7:93:3f:f1:61:dc:4a:00:94:5b:c6:9f:67:f8:
08:45:d3:05:4f:44:e9:67:a8:f4:85:e7:80:02:29:
2b:48:1f:ae:93:8f:c6:ed:94:e1:a9:b9:f9:33:cb:
a2:4a:b5:0a:7c:6f:7c:10:7d:7f:bf:a5:54:49:1b:
8d:49:6a:49:b5:ed:1a:b2:fd:8d:cc:77:be:43:92:
03:9c:c8:eb:a6:c4:42:7d:78:e8:78:b7:e6:9a:42:
d1:bb:7e:85:b8:5c:a1:2c:14:7c:0a:24:9f:db:d4:
96:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A5:58:63:CE:CF:BE:4E:11:3F:5B:FA:48:63:E9:58:15:B0:5E:D5
X509v3 Authority Key Identifier:
keyid:B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/8E74FB4879B211EF8A6E278A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.10.0/23
Signature Algorithm: sha256WithRSAEncryption
03:1e:ec:38:72:a1:6d:a9:0d:5d:60:98:18:d5:e7:d9:00:f4:
4a:c7:80:99:b9:ef:bb:c3:0b:fb:61:f1:d0:9b:d8:fd:22:5d:
70:d6:19:cf:df:fc:03:96:34:79:d4:ac:cc:ac:d0:ab:a3:1e:
c2:cb:a8:d0:96:f1:c6:bd:a9:e0:b9:43:79:b0:7c:fc:68:e9:
30:18:79:d8:77:e9:89:b7:72:2e:80:19:01:51:d9:f6:aa:f7:
28:68:d2:82:05:d7:05:04:2e:47:b1:08:8e:cf:83:f6:cd:5d:
27:19:09:33:ce:43:9c:8a:ec:82:2e:30:43:a2:14:bf:be:90:
71:0f:4d:f7:d2:80:62:c9:9a:11:fe:99:12:34:f1:0d:76:b6:
96:7a:16:d2:65:9f:bf:16:65:11:19:40:86:5d:68:d3:09:f1:
28:3d:36:a1:72:ea:07:98:58:9a:ef:3c:cd:21:26:15:ac:03:
91:cd:96:d6:cf:32:a5:20:a3:fc:bc:07:6a:be:15:62:78:42:
dc:65:60:cc:c2:97:0c:10:9e:d7:24:09:5c:2d:97:4f:d1:99:
b2:55:da:b9:fc:16:c8:65:09:20:96:fd:e2:e4:9c:c4:f9:90:
f4:07:ff:d9:82:06:d1:8c:e8:19:84:2f:1f:d9:1c:cb:8c:8e:
1c:e6:86:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:24 2024 by rpki-client on console-fra.rpki-client.org