Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/813EC5F0695311EE900FB3784AD9E6FC.roa
File: 813EC5F0695311EE900FB3784AD9E6FC.roa (raw, json)
Hash identifier: rYBEnWZCTOIvjNGLGQGfrPSdlM64KIqO/WOBlKJR1ws=
Subject key identifier: 1E:64:9E:AA:68:68:32:45:DD:47:23:FA:84:22:D2:40:E3:91:69:43
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01DD
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/813EC5F0695311EE900FB3784AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:03:07 +0000
ROA not before: Fri 13 Oct 2023 23:03:03 +0000
ROA not after: Sun 13 Oct 2030 23:03:03 +0000
asID: 25818
IP address blocks: 102.177.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477 (0x1dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:03:03 2023 GMT
Not After : Oct 13 23:03:03 2030 GMT
Subject: CN=65287b2b-ed9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:45:91:6e:c1:c6:1f:2c:68:2c:24:ac:38:88:
d0:ef:75:6b:fe:60:92:c3:64:53:3e:34:25:0b:49:
49:02:00:74:45:8d:71:f6:f8:55:0b:d0:c6:e1:37:
12:39:6d:76:e4:6a:8b:19:44:1c:7f:52:c6:c2:9d:
9f:56:9c:82:ca:d9:ab:84:0b:56:93:d5:39:53:45:
01:c2:74:08:5f:2c:e4:02:20:7d:2a:d1:14:0f:73:
4b:b4:53:7b:3a:58:84:24:61:c5:0f:70:58:fd:18:
00:cc:39:c0:09:68:1c:3f:1e:a3:fb:8d:b1:81:26:
08:06:1c:a7:8d:16:e8:d2:98:c0:4b:d0:e0:c9:a5:
93:90:f3:fa:6d:7e:52:61:0f:c6:7a:17:14:0e:8c:
4b:a7:b7:c8:89:12:4d:e7:a2:54:5b:ad:09:ab:58:
d0:ed:88:c9:aa:1a:96:35:d4:cb:4a:1d:58:89:94:
d5:07:12:e1:ed:dc:df:90:c4:44:3b:8f:77:4e:6f:
af:77:14:c6:27:6c:b6:99:11:3a:f8:7c:f0:19:08:
41:f5:09:67:45:2c:3b:e5:91:fa:e7:ab:40:7d:51:
16:91:cf:c9:d8:6f:e1:67:f3:07:58:fa:e7:1e:fa:
30:4a:b6:ad:2b:55:ea:31:e8:f9:f4:89:4f:9d:5b:
23:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:64:9E:AA:68:68:32:45:DD:47:23:FA:84:22:D2:40:E3:91:69:43
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/813EC5F0695311EE900FB3784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.114.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c0:11:11:55:49:11:dd:c2:15:9d:53:bc:d3:74:3b:af:d9:
04:e7:6e:8f:f3:2c:15:9a:e5:68:c6:3e:64:69:f1:52:6c:66:
82:b4:fa:59:4c:8f:ad:63:63:f5:75:10:02:75:fc:d1:77:14:
8d:03:41:50:10:4b:c4:69:d1:d0:aa:3f:32:f7:c6:0d:1c:a4:
1a:52:f7:f3:9b:5d:e1:0c:00:3f:e8:55:93:38:7a:b7:58:7c:
4d:55:5c:4f:93:2a:20:43:46:cb:b8:24:d1:18:58:6d:a7:cb:
3e:92:ba:46:82:53:be:2e:16:de:57:d7:33:e6:38:97:2d:12:
55:b5:e4:b5:82:73:f0:e0:92:7a:c9:4e:12:1d:d0:44:99:9c:
63:70:04:4d:58:8b:41:fe:cd:88:d7:83:3e:ff:e5:ea:56:20:
9a:37:5f:b3:db:73:b9:7c:7f:65:fb:11:9a:71:ef:46:06:f6:
68:09:3e:f6:e5:42:86:a9:4c:87:68:02:f2:ef:8e:1a:b5:d3:
83:9c:4b:eb:69:e1:c6:31:c7:5a:d1:07:2f:dc:7f:02:7b:7b:
8e:16:6a:bb:17:25:e6:0b:da:65:5b:fa:cd:6f:27:1b:8f:90:
d6:10:01:d7:f9:e3:3d:96:fc:81:7c:16:01:ce:53:46:e7:8c:
8b:95:e0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org