Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4D8233AC695611EEA9A654814AD9E6FC.roa
File: 4D8233AC695611EEA9A654814AD9E6FC.roa (raw, json)
Hash identifier: 5shbJVP+OJddMqwr7ZqQz943Swt127SKDu+xzt2IixM=
Subject key identifier: 50:D9:94:C8:DC:B7:FE:B0:4C:66:F9:E0:B9:FB:C7:4D:92:71:6A:30
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01F3
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4D8233AC695611EEA9A654814AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:23:08 +0000
ROA not before: Fri 13 Oct 2023 23:23:05 +0000
ROA not after: Sun 13 Oct 2030 23:23:05 +0000
asID: 25818
IP address blocks: 102.177.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 499 (0x1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:23:05 2023 GMT
Not After : Oct 13 23:23:05 2030 GMT
Subject: CN=65287fdc-41f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:27:78:26:6c:7b:7f:e0:e8:a8:8b:28:dc:0d:
bd:b1:1a:f4:3c:6f:e7:32:3b:e6:a3:66:5e:fc:3f:
cb:d0:16:68:5c:f5:fc:b3:be:cd:d8:c5:35:7c:13:
6f:2e:0d:ce:09:72:16:db:13:0e:8c:3e:62:c5:04:
1c:31:10:05:f8:32:56:e3:27:ed:fc:f2:6f:6b:6f:
47:23:9a:d4:89:96:65:f8:b8:66:e8:ac:37:7b:88:
25:00:65:ee:a6:c7:12:17:56:3c:c9:71:43:63:07:
51:2a:6d:5d:ca:b1:1b:2d:8e:68:9e:b4:d1:69:5b:
82:d4:35:3a:f4:57:35:df:11:ae:84:26:cd:87:76:
78:62:34:1b:32:06:b3:9c:7f:4a:8f:da:2c:33:23:
2c:6f:82:44:d8:71:9a:45:3d:f1:cc:82:c9:6a:d2:
3b:52:a0:66:ba:15:ef:3d:67:e8:8e:99:77:e4:4c:
f0:42:a5:4b:f8:d4:28:75:53:87:9b:cf:39:70:1d:
94:11:ea:98:44:8b:95:ab:40:86:b0:ad:3b:99:c9:
b3:34:a6:d4:75:96:f5:8e:9a:9a:b4:cd:5c:24:48:
b5:de:82:8b:8e:71:53:eb:bf:df:9b:73:95:c1:36:
5f:95:45:f0:f3:25:e5:51:15:66:b0:eb:5b:00:df:
3b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D9:94:C8:DC:B7:FE:B0:4C:66:F9:E0:B9:FB:C7:4D:92:71:6A:30
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/4D8233AC695611EEA9A654814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.126.0/24
Signature Algorithm: sha256WithRSAEncryption
28:59:f6:24:63:e2:cb:00:83:ed:9a:16:c3:18:8d:64:c7:f3:
a9:61:a4:a5:a0:49:51:b6:c4:af:c6:68:f5:44:32:4c:6e:b1:
fb:ea:e7:42:27:9d:3e:22:63:bb:15:c8:0d:45:7a:72:b0:3a:
86:60:ac:b9:96:d4:d6:3e:38:f6:ef:36:0d:4f:0a:f0:49:3e:
ad:a8:26:bb:37:c2:e0:34:c2:d4:0c:f8:f0:71:c7:6e:10:a3:
28:3a:f1:ba:9b:21:fb:de:b5:29:80:58:22:97:ba:9e:04:e1:
b1:c6:c2:c5:0b:c8:b7:cc:76:8e:b9:9f:8d:e6:a9:f4:09:74:
25:4a:bc:6a:ff:fa:88:70:ea:12:17:a7:37:cb:0b:1a:4c:9d:
5b:9f:a4:74:81:24:95:21:27:ad:1b:36:75:71:12:83:c7:af:
bb:c0:4f:63:b2:d7:cd:8e:50:28:39:56:ab:a1:5b:85:16:c1:
c2:1e:a1:ee:45:90:b7:ef:12:05:64:27:01:31:10:f1:70:e2:
89:7e:e7:8c:6c:44:b2:a6:a7:9f:0b:97:bb:2e:32:74:e9:ae:
40:7e:ce:f2:4e:a5:76:c7:d5:bf:18:71:cc:11:4d:ff:77:fd:
23:ea:45:70:96:2f:f2:47:a1:71:7b:28:97:95:f4:fa:fe:8f:
8b:e9:a2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org