Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/1D7A7458BFC311EE87E957B5775412E6.roa
File: 1D7A7458BFC311EE87E957B5775412E6.roa (raw, json)
Hash identifier: J6x3YduO7NoRYCnR3Wx+jPh/ZgFTIi54OWjHk1rIktE=
Subject key identifier: 19:DD:D4:60:C8:54:12:29:9E:85:23:87:73:0D:9D:A0:CF:3B:67:DC
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 027D
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/1D7A7458BFC311EE87E957B5775412E6.roa
Signing time: Tue 30 Jan 2024 22:58:43 +0000
ROA not before: Wed 31 Jan 2024 22:58:39 +0000
ROA not after: Thu 31 Jan 2030 22:58:39 +0000
asID: 25818
IP address blocks: 102.177.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 637 (0x27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Jan 31 22:58:39 2024 GMT
Not After : Jan 31 22:58:39 2030 GMT
Subject: CN=65b97f23-87ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d7:df:6f:e9:98:cb:18:e5:21:c8:12:42:ea:
4c:86:ab:a5:97:ae:ef:ad:c8:17:36:91:cd:01:0d:
62:f0:ce:35:a1:88:62:fe:f8:1f:30:04:f7:62:60:
9e:f5:ed:d8:9f:e0:e6:4a:a0:c8:89:85:bc:99:37:
f3:95:da:6e:bf:df:d2:28:dd:d6:b6:00:2e:d2:30:
1a:b3:c9:bd:83:3d:e8:bd:3a:cf:07:3d:b0:fa:f7:
8e:4d:9f:ae:3f:9c:d7:94:97:89:5a:42:bd:8e:67:
73:2c:d1:ec:27:21:87:16:d0:bc:a0:0c:10:13:57:
84:fb:91:9a:69:ec:18:a9:e9:08:37:29:d7:e7:a3:
8e:fe:c1:fb:66:fd:3e:6d:12:99:33:44:5a:8a:1c:
db:20:0f:d2:8a:be:71:03:19:98:c8:64:d8:e8:c8:
1a:e7:87:73:1f:2c:59:8d:0f:b5:b0:b6:3e:f7:ba:
4a:22:cb:1f:26:4f:02:63:5c:8f:bd:2b:4d:87:74:
bd:76:dd:34:34:9c:c8:67:1d:ec:bc:71:c3:b6:58:
5c:4b:6a:af:33:55:b4:f9:57:73:7a:1a:bc:b0:a4:
d0:ab:72:47:9f:bd:6c:b4:48:d2:a4:15:7a:46:d8:
91:61:91:94:b9:ba:ec:f5:4b:0b:f3:fa:c2:da:94:
37:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:DD:D4:60:C8:54:12:29:9E:85:23:87:73:0D:9D:A0:CF:3B:67:DC
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/1D7A7458BFC311EE87E957B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.122.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:37:5e:af:f1:63:10:55:66:ee:24:9a:3a:de:a4:b2:9a:e4:
8b:54:27:c4:6b:52:dd:5a:45:12:dd:18:b8:d0:da:cd:49:98:
7c:6e:75:4a:ea:62:87:d8:59:6d:50:3d:a1:2e:18:bf:78:c4:
28:b7:f4:9f:da:42:e5:24:c7:af:09:6e:9c:e6:8b:84:4f:ba:
9f:79:7c:d3:6b:c1:af:6f:94:ad:e2:6c:2f:9a:0e:9f:04:57:
ae:42:02:d7:75:88:fe:d2:ce:a0:cd:4f:6b:cf:47:cf:fe:3e:
21:3d:a0:1b:e3:c1:9a:55:97:ec:87:27:57:e3:5d:0f:69:11:
a4:04:7a:e2:90:61:72:cd:85:59:42:dc:0f:90:80:c0:20:3d:
b0:87:70:03:0e:83:c4:fb:b7:d5:70:54:70:d6:dd:53:09:d5:
ae:4d:21:ed:70:7d:4a:c4:87:9c:08:f7:73:c7:46:21:ad:7c:
c4:e2:90:07:80:58:8f:81:09:01:fa:dc:f6:88:b2:92:5c:c6:
13:c1:80:ba:d9:a4:65:39:dc:66:f8:fa:e0:87:d4:f0:28:06:
82:aa:d1:0b:8d:42:42:19:83:34:76:45:44:00:25:bd:6a:97:
2a:bc:b9:86:54:9c:15:5e:18:5b:89:29:48:4e:d4:f4:16:0b:
b2:b7:49:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org