Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/15729B0A690A11EF98BCB26E762E951A.roa
File: 15729B0A690A11EF98BCB26E762E951A.roa (raw, json)
Hash identifier: zmwJVdl5qHRMvkRhugxRriwEy2HQyTI+4DenvO+je1o=
Subject key identifier: 88:29:81:0A:87:36:75:B6:5D:43:DA:B0:58:91:66:DE:D5:23:68:E6
Certificate issuer: /CN=F368FA6AAF/serialNumber=47CAE3C1751A50AB7CE16B1D5922AEB92614FAFA
Certificate serial: 019F
Authority key identifier: 47:CA:E3:C1:75:1A:50:AB:7C:E1:6B:1D:59:22:AE:B9:26:14:FA:FA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/R8rjwXUaUKt84WsdWSKuuSYU-vo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/15729B0A690A11EF98BCB26E762E951A.roa
Signing time: Mon 02 Sep 2024 09:02:30 +0000
ROA not before: Mon 02 Sep 2024 09:02:27 +0000
ROA not after: Sat 02 Sep 2034 09:02:27 +0000
asID: 328384
IP address blocks: 102.134.80.0/22 maxlen: 22
102.134.80.0/24 maxlen: 24
102.134.81.0/24 maxlen: 24
102.134.82.0/24 maxlen: 24
102.134.83.0/24 maxlen: 24
102.214.196.0/22 maxlen: 22
102.214.196.0/24 maxlen: 24
102.214.197.0/24 maxlen: 24
102.214.198.0/24 maxlen: 24
102.214.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/R8rjwXUaUKt84WsdWSKuuSYU-vo.crl
rsync://rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/R8rjwXUaUKt84WsdWSKuuSYU-vo.mft
rsync://rpki.afrinic.net/repository/afrinic/R8rjwXUaUKt84WsdWSKuuSYU-vo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415 (0x19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368FA6AAF/serialNumber=47CAE3C1751A50AB7CE16B1D5922AEB92614FAFA
Validity
Not Before: Sep 2 09:02:27 2024 GMT
Not After : Sep 2 09:02:27 2034 GMT
Subject: CN=66d57f26-1069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4c:5f:ef:61:07:90:1f:d5:0b:fd:18:68:82:
af:41:15:f5:d5:49:ac:e5:76:f6:bb:c0:12:46:6a:
28:15:8e:ae:6d:74:06:c4:6a:89:c8:7a:40:46:64:
38:d7:20:b3:65:b6:2c:35:d1:42:56:56:eb:db:5f:
b8:e2:51:61:c5:c8:3e:6a:cf:b7:ef:ba:e5:f5:55:
19:29:92:ae:86:66:46:e3:88:8a:bf:2f:9b:98:b2:
be:27:cb:4d:3d:70:8e:51:22:ee:d5:40:aa:a6:37:
42:c3:3a:b8:13:e2:86:90:70:c5:0f:9c:88:a1:71:
76:1f:80:85:c3:c1:86:5c:6a:93:56:4c:b0:e7:8d:
bc:a0:a1:86:82:32:36:0a:d0:96:3e:0d:20:f9:67:
9c:36:fa:63:b0:89:f7:c0:dd:4b:d7:40:45:00:e2:
02:7a:68:4a:1c:98:4a:91:2c:cf:d8:51:54:3c:90:
25:b0:71:71:34:ea:da:e6:11:9f:c2:7b:cb:ff:91:
eb:70:cc:bf:68:09:00:4a:c5:39:cb:04:22:12:52:
cc:92:e9:43:66:0e:1b:71:0e:08:90:10:91:94:44:
7b:e9:58:df:da:7b:6c:37:38:19:6e:5b:e3:ea:b1:
9c:30:fd:5d:49:19:8e:24:4d:06:1e:a1:11:93:77:
7b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:29:81:0A:87:36:75:B6:5D:43:DA:B0:58:91:66:DE:D5:23:68:E6
X509v3 Authority Key Identifier:
keyid:47:CA:E3:C1:75:1A:50:AB:7C:E1:6B:1D:59:22:AE:B9:26:14:FA:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/R8rjwXUaUKt84WsdWSKuuSYU-vo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/R8rjwXUaUKt84WsdWSKuuSYU-vo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368FA6A/6CBAEAEA314111EE966FDA354AD9E6FC/15729B0A690A11EF98BCB26E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.134.80.0/22
102.214.196.0/22
Signature Algorithm: sha256WithRSAEncryption
84:a7:c0:2c:1b:8c:62:24:63:70:cc:29:7a:2b:b1:4f:3c:b6:
28:4b:76:37:7e:e4:50:26:2e:e2:f8:2a:83:09:7e:ec:ea:0b:
03:ea:4a:cc:4e:4d:16:1f:01:b0:ad:e2:5e:b6:f7:d9:af:34:
d4:76:df:ee:70:9a:86:e8:a3:e5:d2:58:18:e6:e5:9c:5f:b5:
90:98:f9:4a:a9:4b:53:df:0c:73:ea:43:e9:a1:d3:b2:e1:9d:
84:c0:8e:87:05:31:8f:cd:82:43:b0:01:7d:9c:c1:57:e5:94:
3a:33:ce:34:40:09:4a:fe:f5:5d:cc:72:4d:96:fe:e2:eb:26:
ef:2a:11:1d:c7:0f:cc:06:bd:ad:03:0d:9d:c0:c2:ad:0e:e2:
42:0f:e6:b2:09:ad:f6:da:d6:fb:1b:2f:3c:6f:4e:7f:71:f7:
50:4d:c6:7d:88:41:45:7e:62:4f:5a:16:ff:25:73:5c:43:1f:
a8:a2:4a:8d:14:24:14:0d:f5:3d:de:e5:d7:40:97:e8:89:38:
b0:55:22:bb:dd:b1:ff:36:59:15:17:74:05:50:3a:bf:e5:d8:
3e:05:c5:10:70:e9:ee:a4:3c:60:45:db:c2:64:d1:d3:d6:0c:
dd:87:d1:6a:a0:f0:f5:a4:45:e9:bd:3b:14:02:5e:6e:65:df:
ef:e9:7a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org