Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/60B3D914750111EFA5E0E087762E951A.roa
File: 60B3D914750111EFA5E0E087762E951A.roa (raw, json)
Hash identifier: UtfppmUEN5RqKXCtw1VeKzrsyq6Tj8yeIDmUGAHWijE=
Subject key identifier: 7C:DC:47:2A:68:08:C4:EF:44:E7:0E:8B:A7:9F:6A:A7:A7:35:9C:1A
Certificate issuer: /CN=F368BE0BAF/serialNumber=4F04B3FBE20C1509BAF9AA2CFE83765F2E969CAE
Certificate serial: 02
Authority key identifier: 4F:04:B3:FB:E2:0C:15:09:BA:F9:AA:2C:FE:83:76:5F:2E:96:9C:AE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/TwSz--IMFQm6-aos_oN2Xy6WnK4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/60B3D914750111EFA5E0E087762E951A.roa
Signing time: Tue 17 Sep 2024 14:30:25 +0000
ROA not before: Tue 17 Sep 2024 14:30:20 +0000
ROA not after: Sun 17 Sep 2034 14:30:20 +0000
asID: 329483
IP address blocks: 102.208.52.0/24 maxlen: 24
2001:43fd:f000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/TwSz--IMFQm6-aos_oN2Xy6WnK4.crl
rsync://rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/TwSz--IMFQm6-aos_oN2Xy6WnK4.mft
rsync://rpki.afrinic.net/repository/afrinic/TwSz--IMFQm6-aos_oN2Xy6WnK4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368BE0BAF/serialNumber=4F04B3FBE20C1509BAF9AA2CFE83765F2E969CAE
Validity
Not Before: Sep 17 14:30:20 2024 GMT
Not After : Sep 17 14:30:20 2034 GMT
Subject: CN=66e99281-6882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:57:a8:12:23:35:11:31:0a:1c:fb:96:32:67:
ec:42:7c:e2:21:d3:a1:7d:cb:16:9d:6a:ab:0c:ab:
3f:9e:36:d2:f1:c0:d1:5b:df:e9:5b:0b:0f:d4:96:
00:91:db:e0:59:74:d7:62:34:a0:2a:b1:53:9c:15:
a0:d5:72:c2:88:8a:25:60:10:cf:2a:f4:61:1b:4e:
f1:b7:8b:0f:38:1f:e4:c9:e6:67:e1:6c:2d:e9:23:
11:01:31:25:10:2b:58:17:e1:c2:66:cd:e9:41:52:
39:63:89:72:e9:ca:40:73:58:ef:f4:6f:07:3b:71:
52:f1:7d:68:fd:bd:4e:ce:5b:38:80:aa:ed:62:0f:
13:ab:56:f2:69:6b:8d:b9:78:5b:61:d0:cc:16:ff:
0f:c5:81:64:b7:40:c1:c6:fe:bd:65:5c:c5:1b:a5:
89:69:e3:48:b6:7f:b7:31:89:3d:ff:b5:03:8e:11:
bc:8d:0b:17:a9:8d:7a:18:f5:74:3e:47:92:74:2a:
fe:dd:9d:72:75:18:53:1e:37:b9:b4:6b:fa:35:7a:
d6:fe:55:44:ca:62:58:3e:02:bf:3a:dd:8d:f3:b5:
6a:54:e9:d7:53:0e:37:36:e2:33:f3:2c:d4:a9:ad:
b4:89:e6:e6:59:aa:50:81:fe:7b:69:84:fe:d3:d9:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DC:47:2A:68:08:C4:EF:44:E7:0E:8B:A7:9F:6A:A7:A7:35:9C:1A
X509v3 Authority Key Identifier:
keyid:4F:04:B3:FB:E2:0C:15:09:BA:F9:AA:2C:FE:83:76:5F:2E:96:9C:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/TwSz--IMFQm6-aos_oN2Xy6WnK4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/TwSz--IMFQm6-aos_oN2Xy6WnK4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368BE0B/C1B00036750011EF8664A683762E951A/60B3D914750111EFA5E0E087762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.52.0/24
IPv6:
2001:43fd:f000::/48
Signature Algorithm: sha256WithRSAEncryption
41:ab:16:c4:fd:d6:d1:57:f7:a7:28:a4:71:d3:89:ca:85:aa:
29:bb:87:66:a2:ce:2b:0e:ce:ac:7a:4e:da:50:41:f7:a7:9f:
eb:d0:08:c4:e8:51:cc:17:ec:a1:b0:c1:21:39:57:28:89:75:
e7:c5:ad:f7:ff:3d:95:ae:6e:3f:19:9a:14:da:31:96:3f:7c:
77:35:a4:02:b8:5c:f7:04:9f:d7:1b:f1:8a:55:24:fb:ab:8a:
72:9d:40:45:d0:8f:d7:b0:18:fd:fa:54:79:a6:95:93:75:7d:
56:66:d3:38:82:8a:1f:aa:29:20:cf:c4:a5:6f:36:2a:01:c3:
ab:e5:35:90:df:d9:4b:99:ae:83:47:cd:fb:97:ae:9f:d3:65:
50:53:ad:2e:b5:4a:d5:ad:90:8c:52:97:ff:07:bd:b9:5b:60:
49:bc:ad:c6:2b:d8:43:a8:c6:d9:7c:93:80:60:8a:d2:00:63:
9b:4c:6c:d7:a5:dc:2c:8b:00:81:c0:53:ba:e4:15:2c:4d:5d:
d8:d5:37:7b:9e:1d:13:17:18:45:d5:11:fd:79:01:4a:e7:4a:
a0:52:1d:a8:92:6c:ea:d6:f3:90:88:83:30:08:d6:9c:5f:72:
c5:fe:4c:d9:48:8e:46:cf:a2:d7:db:90:eb:e1:d7:a2:49:1b:
7a:95:d2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:49 2024 by rpki-client on console-fra.rpki-client.org