Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/03F77036732811EEB870F2764AD9E6FC.roa
File: 03F77036732811EEB870F2764AD9E6FC.roa (raw, json)
Hash identifier: dpDcr6I3CyS+CZ5oduKBVVacg+OZWXhwHi+rlcWvB+k=
Subject key identifier: 69:24:85:21:35:85:2B:C2:2E:D7:ED:71:31:7C:1B:B2:BE:01:A6:BB
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 020B
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/03F77036732811EEB870F2764AD9E6FC.roa
Signing time: Wed 25 Oct 2023 11:17:00 +0000
ROA not before: Wed 25 Oct 2023 11:16:56 +0000
ROA not after: Fri 25 Oct 2030 11:16:56 +0000
asID: 25818
IP address blocks: 102.177.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523 (0x20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 25 11:16:56 2023 GMT
Not After : Oct 25 11:16:56 2030 GMT
Subject: CN=6538f92c-86a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:06:21:2c:ef:31:80:a4:fe:56:fc:c5:bd:
ac:55:16:3e:63:02:6e:12:e3:89:aa:89:0c:bb:76:
99:e1:60:4d:4d:6d:57:4e:7a:ff:51:29:be:5a:03:
4e:4c:70:af:4c:2b:ae:b3:5f:dc:eb:d2:80:bf:0f:
b3:91:97:33:3b:73:8d:f5:b9:c1:7e:c5:44:1c:e3:
fa:a7:db:2d:47:f0:9f:c6:cd:dd:02:42:17:13:cc:
2c:5c:8f:e3:cc:f0:9d:be:90:af:51:83:c1:50:83:
bc:b5:84:32:2b:90:47:1f:9d:3d:40:47:b5:a7:c5:
f3:be:9b:2a:bb:bc:5d:72:18:80:88:a7:25:5d:cb:
00:d5:c6:e0:67:69:08:b4:18:c4:d1:eb:f7:b8:59:
e7:a7:98:88:79:5e:01:89:dc:6d:4e:a6:fc:81:8c:
89:70:fb:18:98:bc:48:2b:29:29:e1:93:6d:e2:f9:
ba:6a:06:c0:26:46:92:b5:5d:a8:d3:de:33:9e:d4:
51:24:15:ac:16:49:82:1e:45:33:d7:0e:10:e2:16:
04:38:cd:0e:9d:98:47:39:8a:69:e3:cf:1d:d5:f2:
b4:a4:15:7e:5e:1b:ef:3b:49:a9:a2:05:c3:18:b0:
92:90:97:0f:c2:bc:32:18:66:32:a6:1f:e9:c2:1e:
32:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:24:85:21:35:85:2B:C2:2E:D7:ED:71:31:7C:1B:B2:BE:01:A6:BB
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/03F77036732811EEB870F2764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.125.0/24
Signature Algorithm: sha256WithRSAEncryption
31:13:85:3c:9e:5d:62:7c:f2:39:93:8b:23:77:51:03:8a:1d:
d8:ef:39:7c:81:30:16:f7:ad:32:f2:7f:8a:42:59:99:ea:3e:
c8:90:74:cd:dc:69:e5:74:eb:8c:c5:48:8c:cc:bf:82:62:99:
1b:20:4f:89:56:57:af:41:ed:ec:cf:1f:d3:82:51:14:46:a3:
5a:43:4c:40:1d:de:3f:7c:77:bd:97:b5:40:c3:bf:76:25:79:
53:00:1f:bf:e6:7a:26:20:a1:9a:a7:ed:43:c6:5e:d3:1e:4d:
97:34:38:f6:a8:76:cf:e2:38:63:7b:e8:3a:76:1d:2b:06:14:
65:ae:ac:cd:30:cf:36:dc:17:6e:bc:27:fe:6e:a1:e6:d7:22:
9c:24:cf:58:c6:83:22:74:40:ea:e4:4c:da:1c:af:14:3d:42:
4e:56:ed:4d:be:34:b5:38:58:dc:58:03:69:4b:46:b3:37:f4:
c1:e1:7c:36:c8:91:55:e9:1b:2a:26:de:4e:61:b7:44:e3:3f:
43:5b:d8:9a:26:44:d2:d7:b5:ef:ce:46:99:f3:9c:0c:28:dc:
fc:84:2e:21:b7:7c:04:e9:60:9e:d2:41:8c:27:37:53:2a:61:
f1:e2:4e:9d:1c:fa:a7:85:ce:4c:a8:80:c7:d0:35:8e:7e:90:
d8:3f:7c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org